Reppd

Privacy Policy

Last updated: May 17, 2026

Introduction

Reppd is an AI-powered fitness and nutrition journal operated by Ahmed Tourk ("we", "us"). This policy explains what information we collect when you use Reppd, how we use it, and the choices you have. By using Reppd you agree to this policy.

Information we collect

  • Account information. When you create an account we collect your email address and a password. Passwords are stored as salted hashes by Supabase Auth — we never see or store your password in plain text.
  • Logs you create. Voice recordings, transcribed text, typed entries, meal photos, and the structured workout and meal data extracted from them.
  • Health data (with your permission). Through HealthKit we read body mass, body fat percentage, lean body mass, height, biological sex, and dietary nutrients. We write meals, workouts, and weight back to Health when you ask us to.

How we use your information

We use the information you provide to log your workouts and meals, run AI extraction on your voice and photos, sync data with Apple Health, and show your progress over time. We do not use your data for advertising and we do not sell it.

AI processing and sub-processors

To turn your voice and photos into structured entries, Reppd transmits audio and images to the following AI providers:

  • OpenAI — Whisper for speech transcription and GPT-4o for text and image extraction.
  • Anthropic — Claude for text and image extraction.

Audio and image files are processed in real time and are not retained on Reppd servers. Only the extracted text and structured data (for example, exercise name, sets, reps, food, macros) is stored in your account.

Our other sub-processors are Supabase (managed Postgres hosting, authentication, and file storage) and Apple (HealthKit, when you grant permission).

Data storage and security

Your data is stored in Supabase's managed Postgres database. All traffic is encrypted in transit using TLS. We use row-level security so that each user can only read and write their own records.

HealthKit

Reppd's use of HealthKit data is bound by Apple's requirements:

  • HealthKit data is never used for advertising or marketing.
  • HealthKit data is never sold to or shared with third parties.
  • Reading from and writing to Health is controlled by the permissions you grant in iOS Settings and by in-app sync toggles you can turn off at any time.

Data we do not collect

Reppd does not include:

  • Third-party analytics or tracking SDKs.
  • Advertising identifiers (IDFA).
  • Location data.
  • Crash-reporting SDKs.

Your rights

You can request a copy of your data, ask us to correct it, or ask us to delete your account and associated data by emailing torkahmed93@gmail.com. We'll respond within a reasonable time frame.

Children

Reppd is not directed to children under 13 (or under 16 in the European Economic Area). We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

Changes to this policy

We may update this policy from time to time. When we do, we will change the "Last updated" date at the top of this page. For material changes we will provide additional notice within the app.

Contact

Ahmed Tourk
torkahmed93@gmail.com