Last updated: May 10, 2026
DO IT ("we", "our", "the app") is a fitness application built by Martins Lasmanis. We take your privacy seriously. This policy explains what data we collect, why, and how we protect it.
Account information: When you sign up, we collect your email address and name. If you sign in with Google, we receive your name and email from Google's authentication service.
Phone sign-in information: If you choose phone sign-in, we collect your phone number and use it to send one-time codes by SMS for authentication. We use your phone number only for sign-in, account security, and account recovery.
Workout data: We store your workout preferences (difficulty level, equipment, hard days, rest duration, notification settings) and workout history (dates, duration, exercises completed). This data is used to personalize your experience and track your progress.
Notifications: If you enable reminders, the app asks for notification permission and schedules push notifications or local notifications for workout reminders, streak milestones, and re-engagement prompts. You can turn notifications off any time in the app's Settings screen or your device settings.
Device information: We do not collect device identifiers, IP addresses, or location data.
Your data is used exclusively to:
- Provide and personalize your workout experience
- Sync your progress across devices
- Calculate streaks and statistics
- Improve the app experience
We do not sell, rent, or share your personal data with third parties for marketing purposes.
Your data is stored locally on your device and synced to our cloud database hosted on Supabase (powered by AWS infrastructure). Data is encrypted in transit using TLS and at rest.
We use the following third-party services:
- Supabase Auth and database: Authentication, optional phone OTP sign-in, and cloud data storage
- Twilio: SMS delivery for phone sign-in one-time codes, through Supabase Auth
- Google Sign-In: Optional authentication method
- Expo Notifications: Notification permission handling and local/push notification delivery
- Vercel: Web hosting
Each service has its own privacy policy governing how they handle data.
You can delete all your data at any time from Settings > Reset All Data. You can also request complete account deletion by emailing us. We will delete all associated data within 30 days of your request.
DO IT is not intended for children under 13. We do not knowingly collect data from children under 13.
We may update this policy from time to time. We will notify users of significant changes through the app.
Questions about this policy? Email us at [email protected].