Privacy Policy

Last updated: May 26, 2026

This Privacy Policy describes how Igor Ulanov ("we", "us", or "our") collects, uses, and protects your personal information when you use the Plivex mobile application ("App") and related services.

1. Information We Collect

1.1 Account Information

When you sign in using Google Sign-In, we collect:

  • Email address
  • Display name (as provided by Google)
  • Profile picture URL (as provided by Google)

1.2 Workout Data

When you use the App, you may provide:

  • Exercise names and descriptions
  • Sets, repetitions, and weight values
  • Workout dates and duration
  • Personal notes attached to exercises

1.3 Device and Usage Information

We may automatically collect:

  • Device type and operating system version
  • App version
  • Crash reports and performance data (via Sentry)
  • Language and locale preferences

1.4 Health Data

With your explicit permission, the App may access data from Apple Health (iOS) or Health Connect (Android), including steps and heart rate. This data is used solely to display health metrics within the App and is never shared with third parties.

2. Legal Basis for Processing

We process your personal data on the following legal grounds:

  • Performance of a contract: processing necessary to provide the App functionality and cloud synchronization (Article 6(1)(b) GDPR).
  • Consent: for accessing health data from Apple Health or Health Connect, and for sending non-essential notifications (Article 6(1)(a) GDPR).
  • Legitimate interest: for crash reporting, performance monitoring, and improving the App (Article 6(1)(f) GDPR).

3. How We Use Your Information

We use the collected information to:

  • Provide and maintain the App functionality
  • Synchronize your workout data across devices
  • Improve the App and fix bugs
  • Respond to support requests
  • Send important service notifications

4. Data Storage and Security

Your data is stored locally on your device and, if you are signed in, on our secure servers. We use industry-standard encryption (TLS) for data in transit and encrypt sensitive data at rest. Authentication tokens are stored securely using platform-native secure storage (Keychain on iOS, Keystore on Android).

5. Data Sharing and Third-Party Services

We do not sell, rent, or trade your personal information. We may share data only in the following cases:

  • Timeweb (VPS hosting): server infrastructure for cloud synchronization and data storage. Data is stored on servers located in Russia.
  • Sentry (Functional Software, Inc.): crash reporting and performance monitoring. Processes anonymized error data.
  • Google (Google LLC): authentication via Google Sign-In. Processes authentication tokens only.
  • Legal requirements: we may disclose information if required by law or to protect our rights.

6. Your Rights

5.1 Under GDPR (European Union)

If you are located in the EU/EEA, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

5.2 Under Federal Law No. 152-FZ (Russian Federation)

If you are located in Russia, you have the right to:

  • Access your personal data
  • Request correction or deletion of your data
  • Withdraw consent to data processing
  • File a complaint with Roskomnadzor

5.3 Under CCPA (California, USA)

If you are a California resident, you have the right to:

  • Know what personal information is collected
  • Request deletion of your personal information
  • Opt out of the sale of personal information (we do not sell your data)
  • Non-discrimination for exercising your rights

7. Data Retention

We retain your personal data for as long as your account is active. When you delete your account, all associated data is permanently removed from our servers immediately. Local data is deleted immediately upon account deletion from the device.

8. Children's Privacy

The App is not intended for children under 16 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 16, we will delete it promptly.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the App or by other means. Your continued use of the App after changes constitutes acceptance of the updated policy.

11. Data Controller

The data controller responsible for your personal data is:

  • Igor Ulanov
  • Location: Saint Petersburg, Russian Federation
  • Email: plivexapp@gmail.com

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at:

  • Email: plivexapp@gmail.com
  • Developer: Igor Ulanov