Step Up Or Pay Up ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our mobile application.

We understand that your health data and personal information are sensitive, and we take our responsibility to protect them seriously.

Health and Fitness Data:

• Daily step counts
• Active energy (calories burned)
• Walking/running distance
• Flights climbed
• Other fitness metrics from Apple Health or Google Fit

Account Information:

• Personal identifiers (such as email address)
• App preferences and settings
• Contact information you provide for app features
• Any other information you voluntarily provide

Payment Information:

• Payment method details (securely stored by Stripe - we never store sensitive payment information on our servers)
• Transaction history related to penalty charges
• Payment method tokens for secure offline processing (no sensitive card data)

Usage Data:

• App usage patterns and feature interactions
• Goal completion rates and progress
• Device information and operating system

We use your information exclusively for the following purposes:

• Goal Tracking: Monitor your progress toward daily fitness goals
• Accountability Enforcement: Apply consequences when goals are not met
• Payment Processing: Charge financial penalties through our secure payment processor
• Social Accountability: Send notifications to your chosen contacts when goals are missed
• App Improvement: Analyze usage patterns to enhance app functionality
• Customer Support: Provide assistance and resolve issues

We do NOT sell, rent, or share your personal health data with third parties.

Limited sharing occurs only in these specific circumstances:

• Payment Processing: Payment transactions are processed securely through Stripe. Sensitive payment information (card numbers, CVV, etc.) is stored exclusively by Stripe and never on our servers. We only store secure payment method tokens for offline processing
• Social Accountability: Goal completion status is shared with your chosen contacts only when you miss goals
• Legal Requirements: When required by law, court order, or government request
• Service Providers: Trusted third-party services that help us operate the app (under strict confidentiality agreements)

We implement industry-standard security measures to protect your information:

• Encryption: All data is encrypted in transit and at rest
• Secure Servers: Data is stored on secure, access-controlled servers
• Payment Security: PCI-compliant payment processing through Stripe. Sensitive payment information is stored exclusively by Stripe's secure, PCI-DSS compliant infrastructure - never on our servers
• Access Controls: Strict employee access controls and regular security audits
• Offline Payment Processing: Payment methods are designed for secure offline processing using encrypted tokens, ensuring transactions can occur without exposing sensitive payment data

Stripe Integration & Compliance:

• No Sensitive Data Storage: We never store credit card numbers, CVV codes, or other sensitive payment information on our servers
• Stripe Secure Storage: All sensitive payment information is stored exclusively by Stripe, a PCI-DSS Level 1 compliant payment processor
• Tokenized Payments: We only store secure payment method tokens provided by Stripe for processing future transactions
• Offline Processing: Payment methods are designed for secure offline processing, allowing penalty charges to be processed automatically without manual intervention while maintaining security
• Compliance Standards: Our payment processing meets Stripe's compliance requirements for saved payment methods and offline transactions

Apple Health & Google Fit Integration:

• We only access health data you explicitly grant permission for
• Health data is used solely for goal tracking and progress monitoring
• You can revoke health data access at any time through your device settings
• Health data is not shared with advertisers or used for marketing purposes

Data Retention:

• You can request deletion of your health data at any time
• Anonymized, aggregated data may be retained for app improvement purposes

You have the following rights regarding your personal information:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal data
• Portability: Request transfer of your data to another service
• Opt-out: Withdraw consent for data processing
• Restrict Processing: Limit how we use your data

To exercise these rights, contact us at stepuporpayup@gmail.com

Our app uses minimal tracking technologies:

• Essential Cookies: Required for app functionality and security
• Analytics: Anonymous usage statistics to improve the app experience

Our app is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it promptly.

We may update this Privacy Policy from time to time. Material changes will be communicated through the app or via email. The "Last updated" date at the top of this policy indicates when it was last revised.

Continued use of the app after changes constitutes acceptance of the updated Privacy Policy.

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: stepuporpayup@gmail.com

Subject: Privacy Policy Inquiry