Last updated: January 2, 2026
This Privacy Policy describes how the FitBro application ("FitBro", "we") collects, uses, shares, and protects your personal data, and what your rights are. By using FitBro, you agree to the practices described here.
This policy was drafted in compliance with Brazil's General Data Protection Law (LGPD — Law No. 13.709/2018) and also considers best practices applicable to other jurisdictions including GDPR.
1. Who we are
FitBro is an application that connects people interested in training together, facilitating the discovery of partners by proximity, preferences, and availability.
2. Data we collect
We collect data to operate the app and offer essential features:
- Identification and account: name, email, profile picture, provider IDs (Google/Apple), Firebase UID.
- Profile and preferences: age, fitness level, bio, preferred modalities, avatar photo.
- Location: approximate coordinates (latitude/longitude) and address (when you provide it), to show nearby people and relevant invitations.
- Usage and metrics: records of invitations sent/received, ratings, last activity and availability.
- Device and technical: device model, operating system, app identifiers (when necessary), push tokens (for notifications).
How we collect
- Data you provide when creating/editing your profile or interacting in the app.
- Automatically via SDKs (e.g., Firebase) when you use the app.
3. Legal bases and purposes
We process personal data for:
- Contract execution/services: create your account, allow login (email/password, Google, Apple), build your profile, connect with nearby people, send invitations and ratings.
- Legitimate interest: maintain platform security, prevent abuse, improve features and user experience.
- Consent: obtain and use location, send notifications, and access camera/gallery for profile picture, when requested by the system.
- Legal compliance: comply with court orders or requests from authorities when applicable.
4. Data sharing
We share data only with the following types of third parties, always to operate the app:
- Cloud and infrastructure providers: Google Firebase (Auth, Firestore, Storage), Expo Services.
- Social authentication: Google Sign-In and Apple Sign-In.
- Media and images: ImageKit (image processing/delivery), when applicable.
- Maps and geolocation: Map APIs to display distances and locations.
- Error monitoring: Sentry (error tracking and performance).
- Advertising: Google AdMob (advertising).
Important: We do not sell your data. We may share data in aggregated and anonymized form for metrics.
5. Retention
We keep your data while your account is active and for the time necessary for the purposes of this policy. You can request account deletion; after deletion, we erase or anonymize data, except when necessary to retain for legal obligations.
6. Your rights (LGPD/GDPR)
You can exercise the rights to:
- Access and confirmation of processing.
- Correction of incomplete, inaccurate, or outdated data.
- Portability, when applicable.
- Deletion of data processed with consent.
- Information about sharing and about the possibility of not providing consent.
- Revocation of consent.
7. Cookies and similar technologies
We may use identifiers and similar technologies for authentication, security, metrics, and notifications. You can manage device permissions at any time in system settings.
8. Device permissions
- Location: to show nearby people and calculate distances (may affect experience if disabled).
- Camera/Gallery: to update your profile picture.
- Notifications: for alerts of invitations, messages, and updates.
9. Security
We adopt technical and organizational measures compatible with state-of-the-art (encryption in transit, security rules in Firestore/Storage, access control). No system is 100% secure; we recommend keeping your device updated and protected.
10. Children and adolescents
FitBro is not intended for minors under 13 years old. If we identify accounts of minors without proper consent, we may restrict or terminate the account.
11. International transfers
Your data may be processed on servers outside Brazil (e.g., Google infrastructure). In these cases, we seek to ensure adequate safeguards according to LGPD and GDPR.
12. Changes to this policy
This policy may be updated to reflect legal or service changes. We will publish the revised version and update the date at the top. Relevant changes may be communicated within the app.