Available on iOSEffective Date: April 5, 2026
We Fast Together ("WFT", "we", "us", or "our") is committed to protecting the privacy and security of your health information. This Health Data Policy supplements our Privacy Policy and explains specifically how we handle health-related data.
I. MEDICAL DISCLAIMER & AGE REQUIREMENT
This application is rated 18+ on the App Store. Users under 18 may only use the Service with parental or legal guardian consent.
We Fast Together is NOT a medical application and does not provide medical advice. Fasting involves significant dietary changes that may not be suitable for everyone. You engage in fasting practices entirely at your own risk. We strongly recommend seeking guidance from a qualified medical professional before starting any fasting regimen.
II. APPLE HEALTHKIT INTEGRATION
WFT integrates with Apple HealthKit to provide optional health-related features. HealthKit access requires your explicit opt-in permission for each data type.
Data We Read from HealthKit
| HealthKit Type | Purpose | Stored Remotely? |
|---|---|---|
| Step Count | Team activity competitions | Aggregated daily totals only |
| Active Energy Burned | Team activity competitions | Aggregated daily totals only |
| Exercise Minutes | Team activity competitions | Aggregated daily totals only |
Data We Write to HealthKit
| HealthKit Type | Purpose |
|---|---|
| Dietary Water | Sync water intake logged in WFT to Apple Health |
| Body Weight | Sync weight logged in WFT to Apple Health |
III. HOW HEALTH DATA FLOWS
1. You grant HealthKit permission in iOS Settings
2. WFT reads aggregated daily totals (steps, calories, active minutes)
3. Totals are synced to Supabase for team competition features
4. Data is displayed in the app (leaderboards, team scores)
5. When a fast ends, associated activity logs are cleaned up
What We Do NOT Do
- We do NOT store raw HealthKit samples (only aggregated daily totals)
- We do NOT share health data with any third party
- We do NOT use health data for advertising or marketing
- We do NOT sell health data under any circumstances
- We do NOT use health data for insurance underwriting or eligibility
- We do NOT transfer health data to third-party analytics services
IV. HEALTH DATA STORAGE & SECURITY
| Storage Location | Data Stored | Encryption |
|---|---|---|
| Your iOS device (HealthKit) | Full HealthKit data | iOS hardware encryption |
| Supabase (AWS US) | Aggregated daily totals, water logs | AES-256 at rest, TLS in transit |
Health data stored on our servers is protected by Row-Level Security (RLS) policies, ensuring only the authenticated user can access their own data.
V. HEALTH DATA RETENTION
- Activity logs (steps, calories, active minutes): Automatically deleted when the associated fast event ends.
- Water intake logs: Retained until account deletion.
- Feeling/mood logs: Retained until account deletion.
- All health data: Permanently deleted within 30 days of account deletion.
You can delete all your fasting and health data at any time through Settings > Data Management > Delete All Fasting Data, without deleting your account.
VI. APPLE HEALTHKIT COMPLIANCE
In compliance with Apple's HealthKit guidelines, WFT:
- Does not use HealthKit data for advertising or use-based data mining
- Does not disclose HealthKit data to third parties without user consent
- Does not sell HealthKit data to advertising platforms, data brokers, or information resellers
- Only uses HealthKit data to provide health and fitness services directly to the user
- Clearly discloses in our App Store listing what HealthKit data types we access
- Includes this Health Data Policy accessible from within the app
VII. YOUR RIGHTS REGARDING HEALTH DATA
You have full control over your health data:
- Revoke Access: Revoke HealthKit permissions at any time in iOS Settings > Health > Data Access & Devices > WFT.
- Export: Export all your health data through Settings > Export All Health Data.
- Delete: Delete all fasting and health data through Settings > Data Management.
- Account Deletion: Delete your entire account and all associated data through Settings > Delete Account.
Revoking HealthKit access does not delete previously synced data from our servers. To remove that data, use the Delete All Fasting Data option in Settings.
VIII. CONTACT US
If you have any questions about how we handle your health data, please contact us at:
- Privacy: privacy@wefasttogether.com
- Support: support@wefasttogether.com