Privacy Policy

Last updated: April 29, 2026

StepMaxxer ("we," "our," or "the app") is committed to protecting your privacy. This policy explains what data we collect, how we use it, and the choices you have.

What we collect

Onboarding answers. When you set up StepMaxxer, you answer questions about your daily routine, step count, screen time, work schedule, and past obstacles. This data is stored locally on your device using Apple's SwiftData framework. It never leaves your phone unless you use the cloud plan-generation feature (see below).

Step count data. StepMaxxer reads your daily step count from Apple HealthKit. We access read-only step count data. We do not write to HealthKit and do not access any other health data (heart rate, workouts, sleep, weight, etc.).

Streak and bank state. The app stores your daily progress, current streak length, weekly freeze usage, and rolling-window banked surplus locally on your device. None of this is sent off-device.

Subscription status. Your subscription is managed entirely by Apple through StoreKit. We verify entitlement locally on your device. We do not store your payment information, Apple ID, or purchase receipts on any server.

Plan generation

On-device (Apple Intelligence). On supported devices (iPhone 15 Pro and newer running iOS 26 with Apple Intelligence enabled), your walking plan is generated entirely on-device using Apple's Foundation Models framework. No data is sent to any server.

Cloud fallback (Anthropic Claude). On devices where on-device generation is unavailable or temporarily fails, plan generation uses a cloud service powered by Anthropic's Claude API. In this case, your onboarding answers (routine, step count, screen time estimate, work schedule, past obstacle text) are sent to our proxy server, which forwards them to Anthropic for plan generation.

The proxy is a stateless relay hosted on Cloudflare Workers — it does not log requests, does not retain payloads, and does not maintain any database. Anthropic's data retention policy applies to their processing of the request — see Anthropic's Privacy Policy. We do not include any personal identifiers in the request.

What we don't collect

• We do not collect your name, email, phone number, or any personal identifiers
• We do not use analytics, tracking pixels, or advertising SDKs
• We do not sell, share, or rent any data to third parties
• We do not collect device identifiers (IDFA, IDFV) for advertising
• We do not track your location
• We do not maintain user accounts or profiles on our servers

Data storage

All app data — onboarding answers, daily plans, step history, streak and bank state, notification preferences — is stored locally on your device in a SwiftData database. If you delete the app, all data is permanently removed from your device. There is nothing for us to delete on a server because none of it is sent to a server.

Notifications

StepMaxxer uses local notifications only. We do not use push notifications, do not operate a push notification server, and do not collect push tokens. All notification scheduling happens on-device based on your daily plan.

Third-party services

• Apple HealthKit — read-only step count access, governed by Apple's Privacy Policy
• Apple StoreKit — subscription management, governed by Apple
• Anthropic Claude API — cloud plan generation fallback only, governed by Anthropic's Privacy Policy
• Cloudflare Workers — stateless proxy relay for the Claude API request; no data is logged or retained

Children's privacy

StepMaxxer is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child under 13 has installed StepMaxxer and you would like the local data removed, simply delete the app from the device.

HealthKit data handling

StepMaxxer follows Apple's HealthKit privacy guidelines:

• HealthKit data is never used for advertising or any data-mining purpose
• HealthKit data is never shared with third parties — including the Claude proxy. Only your onboarding answers (which include a self-reported average daily step count) are sent for plan generation; raw HealthKit samples never leave your device
• HealthKit data is never sold

Your rights

Because all data is stored locally on your device, you have full control:

• Access: All your data is visible in the app (Settings, onboarding answers, step history, streak detail, bank detail)
• Delete: Use "Redo onboarding" in Settings to clear all app data, or simply delete the app
• Portability: Your step data originates from Apple Health, which you can export from the Health app at any time
• Revoke permissions: HealthKit and notification permissions can be revoked anytime in iOS Settings → Privacy & Security → Health (or Notifications)

Security

All data on your device is protected by iOS's built-in encryption when your device is locked. Data sent to the Claude proxy travels over HTTPS (TLS 1.3). We do not store any data on our servers, so there is no server-side data store to be breached.

International users

StepMaxxer is operated from the Netherlands. The Cloudflare Workers proxy may route through edge servers worldwide for performance — no data is retained at any edge node. Anthropic processes Claude requests in the United States.

If you are in the European Economic Area, you have additional rights under the GDPR. Because we do not store personal data on a server, the right to access, rectify, or erase server-side data is satisfied by the absence of such data — there is nothing for us to access, rectify, or erase. Local on-device data is fully under your control.

Changes to this policy

We may update this policy as the app evolves. Significant changes will be communicated through an app update. The "last updated" date at the top reflects the most recent revision.

Contact

Questions about this policy? Email privacy@stepmaxxer.com.