Legal

Privacy Policy

How Fitimio collects, uses, and protects personal data.

Privacy Policy

Last updated: 9 July 2026

This Privacy Policy explains how Fitimio collects, uses, stores, and shares personal data when you use the Fitimio website, dashboard, MCP server, and connected assistant features.

This document is a template. Replace the placeholders for company name, address, contact details, and jurisdiction before launch.

1. Who we are

Fitimio is operated by [Legal company name].

Contact:

For the purposes of the GDPR, Fitimio is generally the controller for the personal data it collects and stores in your Fitimio account.

2. What data we collect

Depending on how you use Fitimio, we may collect:

Some of this data may be health data or data related to health, diet, allergies, or conditions. In the EU, this can be special category data under the GDPR.

3. Why we use your data

We use your data to:

4. Legal bases for processing

We rely on different legal bases depending on the purpose:

You can withdraw consent where consent is the legal basis. Withdrawing consent may disable health tracking or AI assistant features that depend on that data.

5. AI assistant and MCP processing

Fitimio is designed as a data and MCP tool layer. When you connect an AI assistant, the assistant may request relevant Fitimio data through MCP tool calls.

For example, a connected assistant may ask Fitimio for:

Fitimio does not control the full conversation you have with the AI assistant unless that conversation happens inside a Fitimio-controlled interface. Fitimio receives the MCP tool request and returns the data or action result needed for that tool call.

The AI provider may process the data it receives according to its own terms, privacy policy, and data processing agreement. You should review the AI provider settings and policies before connecting Fitimio.

6. External processors and providers

We may use service providers to operate Fitimio, including:

Where required, we use data processing agreements with processors. If personal data is transferred outside the EEA, we use an appropriate transfer mechanism, such as an adequacy decision or standard contractual clauses, where required.

7. Medical and safety limits

Fitimio is a wellness, tracking, and personal organization product. It is not a medical device and does not provide diagnosis, treatment, emergency care, or professional medical advice.

Do not use Fitimio or connected AI assistants as a substitute for a doctor, registered dietitian, emergency service, or mental health professional.

For medical conditions, allergies, eating disorders, pregnancy, medication interactions, severe symptoms, or emergencies, contact a qualified professional or local emergency services.

8. How long we keep data

We keep personal data for as long as needed to provide the service, comply with legal obligations, resolve disputes, secure the service, and enforce agreements.

Typical retention periods:

You may request deletion of your account and personal data, subject to legal retention obligations.

9. Your rights

Depending on your location, you may have rights to:

To exercise your rights, contact us at [[email protected]].

10. Security

We use technical and organizational safeguards designed to protect personal data, including authentication, access controls, encrypted transport, limited data access, and security logging.

No online service is completely risk-free. You are responsible for keeping your account credentials and connected assistant accounts secure.

11. Children

Fitimio is not intended for children under [age threshold, e.g. 16]. We do not knowingly collect personal data from children without valid parental consent where required.

12. Changes

We may update this Privacy Policy when the product, law, or data practices change. If changes are material, we will provide appropriate notice.

This page is a product/legal template and should be reviewed by a qualified lawyer before public launch.