Privacy Policy
1. Introduction
Welcome to Momo (Modern Monk) ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you understand how your personal information is collected, used, and protected.
This Privacy Policy explains our practices regarding the collection, use, and disclosure of information when you use our fitness application ("Service"), which includes workout tracking, exercise management, and timer functionality.
By using our Service, you agree to the collection and use of information in accordance with this policy.
2. Information We Collect
2.1 Information You Provide
| Data Type | Examples | Purpose |
|---|---|---|
| Account Information | Email address, name, profile photo | Account creation and authentication |
| Workout Data | Exercises performed, weights used, repetitions, duration | Track your fitness progress |
| Exercise Data | Custom exercises, exercise preferences | Personalize available exercises |
| Timer Configurations | Custom workout timers, presets | Personalize your workout experience |
2.2 Information Collected Automatically
| Data Type | Examples | Purpose |
|---|---|---|
| Device Information | Device type, operating system, browser type | Optimize app performance |
| Usage Data | Features used, time spent, interactions | Improve user experience |
| Log Data | Error logs, crash reports | Debug and fix issues |
| Local Storage Data | Cached content, offline data | Enable offline functionality |
2.3 Information from Third Parties
| Source | Data Type | Purpose |
|---|---|---|
| Clerk (Authentication) | Authentication tokens, user identifiers | Secure sign-in |
3. How We Use Your Information
3.1 Provide and Improve the Service
- Display your workout history and progress
- Calculate and show analytics (personal records, statistics)
- Sync your data across devices
- Enable offline functionality
- Personalize your experience
3.2 Communication
- Send important service updates
- Respond to your support requests
- Notify you of new features (with your consent)
3.3 Security and Compliance
- Protect against unauthorized access
- Detect and prevent fraud
- Comply with legal obligations
4. Data Storage and Security
4.1 Where We Store Your Data
| Location | Data Type | Purpose |
|---|---|---|
| PostgreSQL Database | All user data | Primary data storage |
| IndexedDB (Your Device) | Cached data, offline content | Enable offline access |
4.2 Security Measures
We implement industry-standard security measures including:
- Encryption: Data encrypted in transit (TLS/SSL) and at rest
- Authentication: Secure token-based authentication via Clerk
- Access Control: Role-based access for administrative functions
- Regular Audits: Periodic security reviews
4.3 Data Retention
| Data Type | Retention Period |
|---|---|
| Account Data | Until account deletion |
| Workout Results | Until account deletion |
| Analytics Data | Until account deletion |
| Server Logs | 90 days |
| Error Logs | 30 days |
5. Your Rights and Choices
5.1 Access and Portability
You have the right to:
- Access your personal data through the app
- Export your data in a machine-readable format
- Request a copy of all data we hold about you
5.2 Correction and Deletion
You have the right to:
- Correct inaccurate personal information
- Delete your account and associated data
- Request deletion of specific data
5.3 How to Exercise Your Rights
To exercise any of these rights:
- Go to Settings > Account > Data Management in the app
- Or contact us at: [email protected]
We will respond to your request within 30 days.
6. Data Sharing
6.1 We Do NOT Sell Your Data
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
6.2 Service Providers
We may share data with trusted service providers who assist us in operating the Service:
| Provider | Purpose | Data Shared |
|---|---|---|
| Clerk | Authentication | Email, user ID |
| Hosting Provider | Infrastructure | Encrypted application data |
All service providers are contractually obligated to protect your data.
6.3 Legal Requirements
We may disclose your information if required by law or in response to valid legal requests.
7. Cookies and Local Storage
7.1 What We Use
| Technology | Purpose |
|---|---|
| Session Cookies | Maintain your logged-in state |
| IndexedDB | Store offline data for seamless experience |
| LocalStorage | Store user preferences |
7.2 Your Choices
You can configure your browser to:
- Block cookies (may affect functionality)
- Clear local storage
- Use incognito/private mode
8. Children's Privacy
Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it promptly.
9. International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Posting the new Privacy Policy on this page
- Updating the "Last Updated" date
- Sending an email notification for significant changes
11. Contact Us
If you have questions about this Privacy Policy, please contact us:
Email: [email protected]
12. Jurisdiction-Specific Rights
12.1 European Union (GDPR)
If you are in the EU, you have additional rights including:
- Right to data portability
- Right to restriction of processing
- Right to object to processing
- Right to lodge a complaint with a supervisory authority
Legal Basis for Processing: We process your data based on:
- Performance of contract (providing the Service)
- Legitimate interests (improving the Service)
- Consent (marketing communications)
12.2 California (CCPA)
If you are a California resident, you have the right to:
- Know what personal information is collected
- Know whether your personal information is sold or disclosed
- Say no to the sale of personal information
- Access your personal information
- Request deletion of your personal information
- Equal service and price, even if you exercise your privacy rights
This Privacy Policy is effective as of January 5, 2026 and supersedes all previous privacy policies.