Privacy Policy – Steepish

Last Updated: February 20261. IntroductionSteepish (“we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data.This Privacy Policy explains how we collect, use, store, and safeguard information when you use the Steepish mobile application (the “App”).By using the App, you acknowledge that you have read and understood this Privacy Policy.2. Data ControllerFor the purposes of applicable data protection laws, Steepish acts as the data controller of the personal data collected through the App.3. Information We Collect3.1 Fitness Data (Health & Activity Data)With your explicit permission, the App accesses step count and activity data through Apple HealthKit.We only access data necessary to operate the App’s core features, including:• Step tracking
• Challenge participation
• Rankings and leaderboard display
• Progress monitoring
We do not access medical records, clinical health records, or unrelated health information.Health data is used solely for app functionality and is not used for advertising, profiling, or marketing purposes.3.2 User-Generated ContentWe collect and store information generated within the App, including:• Challenge participation data
• Step totals shared within challenges
• Rankings and leaderboard positions
• In-app interactions related to challenges
This information may be visible to other users participating in the same challenge.3.3 User IdentifiersWe generate and store a unique user identifier to:• Authenticate users
• Maintain user accounts
• Enable participation in challenges
• Associate fitness data with the correct account
3.4 Technical and Usage DataWe may collect limited technical data such as:• Device information
• Application performance data
• Crash reports
This data is used strictly to maintain app stability, improve performance, and ensure service reliability.4. Legal Basis for Processing (GDPR Compliance)Where applicable under the General Data Protection Regulation (GDPR), we process personal data based on:• User consent (for HealthKit access)
• Performance of a contract (to provide app services)
• Legitimate interests (to maintain and improve the App)
You may withdraw consent at any time by disabling permissions in your device settings.5. How We Use Your DataWe use collected information strictly for:• Providing and maintaining core app functionality
• Operating step challenges
• Displaying rankings and progress
• Ensuring security and preventing misuse
• Improving app performance and reliability
We do not:• Sell personal data
• Share personal data for third-party advertising
• Use health data for marketing purposes
6. Data SharingWe do not share personal data with third parties for advertising or marketing.Data may be processed by secure infrastructure providers (such as Firebase) solely for hosting, storage, authentication, and service operation purposes.Users participating in the same challenge may view step totals and rankings of other participants within that challenge.7. Data RetentionWe retain personal data only for as long as necessary to:• Provide the App’s services
• Maintain user accounts
• Comply with legal obligations
Users may request account deletion, after which associated personal data will be deleted within a reasonable timeframe, except where retention is legally required.8. Data SecurityWe implement appropriate administrative, technical, and organizational safeguards to protect personal data against unauthorized access, alteration, disclosure, or destruction.However, no system can guarantee absolute security.9. International Data TransfersData may be processed in countries outside your country of residence.Where required, we ensure appropriate safeguards are in place in accordance with applicable data protection laws.10. Your RightsWhere applicable under data protection laws, you may have the right to:• Access your personal data
• Request correction of inaccurate data
• Request deletion of your data
• Restrict or object to processing
• Withdraw consent
You may exercise these rights through in-app controls where available.11. Children’s PrivacyThe App is not directed to children under the age of 13.We do not knowingly collect personal data from children.12. Changes to This Privacy PolicyWe may update this Privacy Policy from time to time.Updates become effective upon publication within the App or on the associated website.