Pullix

Privacy Policy

Effective date: 2026-04-14
Last updated: 2026-04-14

This Privacy Policy describes how Duong The ("we", "us", "our"), an individual developer operating the mobile application Pullix – AI Pull Up Coach ("Pullix", the "App"), collects, uses, and protects information when you use the App.

We are committed to transparency, data minimization, and processing your data only for the purposes described below. This policy is designed to meet the requirements of the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA/CPRA), and Apple App Store privacy guidelines.

1. Who we are

ControllerDuong The (individual developer)
Contactsupport@aiinnovators.pro
AppPullix – AI Pull Up Coach (iOS & Android)

If you have any question about this policy or your data, email us at support@aiinnovators.pro.

2. Summary (what to know in 30 seconds)

  • Pullix uses your camera only on-device. Video frames are never uploaded, stored, or shared.
  • We create a device-based account so you can track workouts. We do not require your name, email, or password.
  • We sync your workout results (rep counts, streak, points, challenges) to our servers hosted in Singapore so you can access them across devices.
  • We use Firebase Analytics and Firebase Crashlytics to understand app usage and diagnose crashes.
  • We do not sell your personal data. We do not use it for cross-app advertising tracking.
  • You can request deletion of your account and data at any time by emailing us.

3. Information we collect

3.1 Information processed on your device only (never uploaded)

  • Camera frames. When you start a training session, Pullix processes the live camera feed on-device using Google ML Kit Pose Detection. Frames are analyzed in memory to detect body landmarks and then discarded. Frames are never transmitted, stored, or shared.

3.2 Information we collect and store on our servers

  • Device identifier. A unique identifier generated by the App (Sonyflake ID) is used to identify your account without requiring you to register with an email or password.
  • Workout data. Rep counts, session start and end times, form validation results (not video), estimated velocity, exercise type.
  • Streak and progress data. Daily goals met, streak length, streak freezes used, points earned and spent, challenges joined and completed.
  • Optional location. If you choose to tag a workout photo with its location, we store that approximate location with the photo's metadata. Disabled by default.
  • Notification token. A push notification token (if you enable notifications) so we can send streak reminders.

3.3 Information collected automatically via third-party SDKs

  • Firebase Analytics — product interaction events (screens viewed, features used), approximate region, device model, OS version, app version.
  • Firebase Crashlytics — crash reports, stack traces, device model, OS version, non-personal diagnostic data.

These SDKs may use device identifiers (IDFV on iOS, Android ID on Android) as processed by Google. See Google's privacy policy for details: https://policies.google.com/privacy.

3.4 Information we do not collect

  • Name, email address, phone number, or password (no account registration).
  • Payment information (the App is free, no in-app purchases).
  • Contacts, photos (other than ones you explicitly attach), health records, biometric data.
  • Precise GPS location unless you explicitly tag a photo.
  • Video or audio recordings.

4. How we use your information

PurposeData usedLegal basis (GDPR)
Provide the App's core features (rep counting, streak, challenges)Workout data, device ID, streak/progress dataPerformance of a contract (Art. 6(1)(b))
Sync your progress across sessionsDevice ID, workout dataPerformance of a contract
Send streak reminder notificationsNotification token, streak dataConsent (you enable notifications)
Tag workout photos with locationLocation (if enabled)Consent
Diagnose crashes and improve reliabilityCrash data, device modelLegitimate interest (Art. 6(1)(f))
Understand feature usage to improve the AppAnalytics eventsLegitimate interest
Respond to support requestsEmail content you send usLegitimate interest

We do not use your data for advertising, profiling for marketing, or automated decisions that produce legal effects.

5. How we share your information

We do not sell your personal information. We share data only with the following processors, strictly to operate the App:

ProcessorPurposeLocation
Render, Inc.Backend application hostingSingapore
Google (Firebase Analytics, Crashlytics, ML Kit)Analytics, crash reporting, on-device pose modelGlobal (Google Cloud)
Apple Inc.App distribution, push notifications (APNs)Global
Google LLCAndroid distribution, push notifications (FCM)Global

We may disclose information if required by law, to protect rights or safety, or in connection with a legal claim.

6. International data transfers

Our servers are located in Singapore (Render.com region). If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, your data will be transferred to Singapore and the United States (for Google Firebase). We rely on:

  • the European Commission's adequacy or transfer mechanisms where available, and
  • Standard Contractual Clauses (SCCs) with our processors where required.

You may request a copy of the applicable safeguards by emailing support@aiinnovators.pro.

7. Data retention

  • Workout data, streak, points: retained while your account is active.
  • Crash & analytics data: retained per Firebase defaults (typically 14 months, configurable).
  • Backups: retained up to 30 days after deletion for disaster recovery.
  • Deleted accounts: all personal data is deleted from live systems within 30 days of your request, and from backups within 60 days.

8. Your rights

Depending on where you live, you may have the following rights:

Under the GDPR (EEA, UK, Switzerland):

  • Access, rectification, erasure ("right to be forgotten")
  • Restriction of processing, objection to processing
  • Data portability
  • Withdraw consent at any time
  • Lodge a complaint with your local supervisory authority

Under the CCPA/CPRA (California):

  • Know what personal information is collected
  • Delete personal information
  • Correct inaccurate information
  • Opt out of "sale" or "sharing" (we do not sell or share for cross-context advertising)
  • Non-discrimination for exercising your rights

For all users:

  • Request account deletion at any time via support@aiinnovators.pro or in-app via Profile → Delete Account.

We will respond to verifiable requests within 30 days (GDPR) or 45 days (CCPA).

9. Children's privacy

Pullix is intended for general audiences and does not target children under 13. Because we do not collect names, email addresses, or other direct identifiers, we do not knowingly collect personal information from children under 13 beyond a device identifier used for core functionality.

If you are a parent or guardian and believe your child has provided personal information you want removed, email support@aiinnovators.pro and we will delete the account promptly.

Parents should also be aware that Firebase Analytics and Crashlytics may collect device identifiers. You can disable analytics in your device's system settings.

10. Security

We use industry-standard safeguards, including:

  • TLS encryption for all data in transit between the App and our servers.
  • Encryption at rest for databases.
  • Access controls and logging for production systems.

No system is perfectly secure. If we become aware of a breach affecting your personal data, we will notify you and any applicable regulator as required by law.

11. Changes to this policy

We may update this policy from time to time. If changes are material, we will notify you in the App and update the "Last updated" date above. Continued use of the App after changes means you accept the revised policy.

12. Contact

Duong The
Email: support@aiinnovators.pro

If you are in the EU and are not satisfied with our response, you may contact your national data protection authority.