Ironbor: Workout Tracker Privacy Policy
Privacy information for this app, separate from the website privacy policy.
Controller
- Nikolay Matorin
- Rüdigerstr. 4, 40472 Düsseldorf, Germany
- Email: [email protected]
Data categories and purposes
Ironbor is a local-first workout app without accounts, analytics, or crash-reporting SDKs. It processes:
- Workout and training data (exercises, sets, weights, timers), stored on the device with SwiftData
- Body weight and height, read from Apple Health only after you grant permission; completed workouts are written to Apple Health as strength-training workouts
- Your IP address, technically processed when the app loads exercise demonstration animations from Ironbor's content delivery network
- Purchase and subscription status for Ironbor Pro, handled by Apple StoreKit
Legal bases
Apple Health access rests on your consent (Art. 6(1)(a) GDPR), which you can withdraw at any time in the Health app. Workout tracking, loading exercise media, and the Ironbor Pro subscription are processed to provide the service you request (Art. 6(1)(b) GDPR).
Recipients and processors
- Apple: StoreKit processes Ironbor Pro subscriptions; Ironbor receives no payment details. Apple Health data stays in Apple Health under your permissions
- Cloudflare: serves the exercise demonstration animations (gymli-cdn.bobkexit.dev); processing is limited to what content delivery requires, such as the device IP address
Storage and duration
Workout data is stored on the device only and remains there until you remove it or delete the app. There is no account system and no backend. Workouts written to Apple Health remain in Apple Health until you delete them there.
Push notifications
Ironbor uses local notifications only, for example for the rest timer. They are scheduled on the device itself; no remote push notifications are sent.
Deletion
Delete the app to remove locally stored Ironbor data from the device. Workouts and health data in Apple Health are managed and deleted through Apple Health settings.
Your rights
Where legal requirements are met, data subjects may have rights of access, rectification, erasure, restriction, portability, objection, and complaint to a data protection supervisory authority.