Privacy Policy

Last Updated: 11 July 2026
Effective Date: 11 July 2026

Introduction

Your privacy matters to us. This Privacy Policy explains how GrandPoint Ltd ("we," "us," "our") collects, uses, stores, and protects your personal information when you use the Kinesa fitness and wellness tracking application ("App," "Service").

By using Kinesa, you consent to the practices described in this Privacy Policy.

Key Information

Legal Basis

We process your data under:

1. Information We Collect

1.1 Information You Provide Directly

Account Information:

Fitness and Health Data (voluntarily provided by you):

Payment Information:

1.2 Information from Third-Party Integrations

Wearable Devices and Health Platforms (with your explicit permission):

You control which data types we access through device permissions. You can revoke access at any time in your device settings.

1.3 Food and Nutrition Data Sources

Kinesa's food search and nutrition information comes from the following sources, some bundled in the app and some queried through Kinesa's own food search service:

Attribution for these data sources is available in the app under Settings → About → Data sources.

1.4 Information Collected Automatically

Usage Data:

We use analytics to improve the app, not for advertising.

1.5 Information We Do Not Collect

We do not collect:

2. How We Use Your Information

We use your data to:

3. How We Share Your Information

We do not sell your data. We share data only as follows:

Service Providers:

Community Features (Unity):

Legal Requirements:

We may disclose data if required by law or to protect our rights.

4. AI-Powered Features

Kinesa includes several AI features:

4.1 In-Workout AI Coach (On-Device, Rule-Based)

The AI Coach that provides real-time workout guidance, progressive overload suggestions, fatigue awareness, and form reminders during gym sessions:

4.2 AI Fitness Coach Chat (Third-Party AI Sub-Processor)

The AI Fitness Coach chat feature provides personalised fitness coaching, workout recommendations, form guidance, and fitness advice:

Before using the AI Fitness Coach chat for the first time, you will be presented with a consent dialog explaining what data is shared and with whom.

4.3 Smart Nutrition Logging (Describe Your Meal and Meal Photos)

Kinesa can turn a plain-English description of a meal, or a photo of a meal, into a food log entry:

4.4 Voice Input and Speech Recognition

Throughout Kinesa you can dictate instead of typing (for example, to describe a meal, a workout, your sleep, or a goal):

5. Data Retention

We retain your data while your account is active. Upon account deletion:

6. Data Security

We use industry-standard security practices including:

No system is 100 percent secure. If you become aware of a security issue, contact privacy@kinesa.app.

7. Your Rights Under UK GDPR and EU GDPR

You have the right to:

To exercise any right, contact privacy@kinesa.app. We respond within 30 days.

8. Children's Privacy

Kinesa is intended for users 16 years and older. Users aged 13-15 may use Unity community features only with verified parental or guardian consent. We do not knowingly collect personal data from children under 13.

9. International Data Transfers

Your data is primarily stored on Firebase servers. Some service providers may process data outside the UK/EU under appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

10. Community Features (Unity)

10.1 Data We Collect in Unity

When you participate in Unity features, we collect:

10.2 Who Sees Your Data

Other participants can see:

We never share your email, exact location, or full health data with other participants without your explicit consent.

10.3 Your Choices

You can:

10.4 Data Retention for Unity

10.5 Reporting Content

If you report a post, message, challenge content, or member profile using the in-app Report tool, we collect the report so our moderation team can review it. A report contains your user ID (as the reporter), a reference to the reported content and its author, the reason you selected, and any optional comment you add. Reports are used only to keep the community safe — to review, remove, or act on content that breaches our Terms — and are visible only to GrandPoint Ltd, never to the member you reported. We retain reports for as long as needed for moderation and safety record-keeping.

11. Camera, Microphone, and Barcode Scanning

Kinesa requests camera access for:

Kinesa requests microphone access only for voice input (dictation), as described in Section 4.4.

Camera and microphone access are requested only when you use these features, and can be revoked at any time in your device settings. Barcode images are processed on-device and are not stored or transmitted; only the decoded barcode number is sent to retrieve product information.

12. Notifications

Kinesa may send push notifications for:

You can manage notification preferences in Settings or your device settings.

13. Cookies and Tracking Technologies

Kinesa is a native mobile app and does not use cookies. Firebase SDKs may store small amounts of data locally for analytics and crash reporting.

14. Marketing and Communications

We may send occasional marketing communications about new features. You can opt out at any time. Transactional communications (account security, important account changes) cannot be opted out of.

15. Third-Party Links and Services

Kinesa may link to third-party services. Their privacy policies apply when you use those services.

16. Changes to This Privacy Policy

We may update this policy from time to time. When we make material changes — for example, introducing a new way of processing your data — we will notify you within the app the next time you open it, and ask you to review and acknowledge the updated policy before you continue using affected features. The "Last Updated" date and Document Version at the foot of this policy tell you when it last changed. For non-material changes we may simply update the policy in the app. Your continued use of Kinesa after an update, once you have been notified, constitutes acceptance of the updated policy.

17. Contact Us

Document Version: 5.1