Privacy Policy

Effective Date: April 5, 2026 · Last Updated: April 2, 2026 · Fuse LLC

Fuse is a fitness intelligence platform built by Fuse LLC. We collect health data from your wearable devices, interpret it with AI, and deliver personalized guidance through Phil, your AI fitness advisor.

This policy explains what data we collect, how we store and protect it, who can see it, and your rights under California law.

The short version: Your health data belongs to you. We collect only what's needed to make Fuse work. We never sell it. No ads. No third-party sharing for marketing. You can export or delete your data at any time.

1. Data We Collect

1.1 Health Metrics

Heart rate variability (HRV)
Resting heart rate (RHR)
Sleep duration and quality scores
Recovery and readiness scores
Blood oxygen saturation (SpO2)
Respiratory rate
Step count and activity data

1.2 Device Sync Data

Data synced from connected wearable providers via OAuth:

Sleep tracker — sleep, readiness, HRV, activity
Recovery tracker — recovery, training load, HRV, sleep
Strava — workout activities, GPS routes, performance data
Heart rate monitor — heart rate, training load, fitness data
Smart scale — weight, body composition, blood pressure (where applicable)
HealthKit — any health data you authorize

We access only the scopes you explicitly authorize during device connection. You can revoke access at any time from your device provider's app or from Fuse account settings.

1.3 Subjective Check-Ins

Morning, midday, and evening wellness scores
Energy, fatigue, and mood ratings
Free-form notes you choose to submit

1.4 Account Information

Name and email address (required)
Password — stored as a one-way cryptographic hash; we cannot read it
Optional profile data: birth year, sex, height, fitness goals

1.5 Usage Data

Feature usage patterns (for improving the product)
IP addresses and browser/device identifiers (for security and fraud prevention)

2. How We Store Your Data

2.1 Encrypted at Rest

All OAuth tokens for connected devices and services are encrypted at rest using AES-256 symmetric encryption (Fernet) before being written to the database. The encryption key is managed separately from the database file.

Passwords are stored using PBKDF2/SHA-256 hashing with per-account salts. They cannot be recovered or read by anyone at Fuse.

2.2 Database

Your data is stored in a SQLite database hosted on Render's infrastructure in the United States. We maintain encrypted backups in Backblaze B2 cloud storage.

2.3 In Transit

All data between your device and Fuse is encrypted using TLS 1.2 or higher (HTTPS). HTTPS is enforced on all endpoints.

2.4 Session Security

Session cookies are marked HttpOnly, Secure, and SameSite=Lax to prevent interception and cross-site request forgery.

3. Who Can See Your Data

3.1 You

You have full access to all your data. Export your complete dataset at any time from account settings (JSON or CSV).

3.2 Phil AI Coaching Engine

Phil processes your health data to generate personalized insights and morning briefs. This processing happens within Fuse LLC's systems. Phil's AI responses are powered by Anthropic's Claude API — your health context may be sent to Anthropic's API for inference. Anthropic does not train on API data per their enterprise data policy.

No human at Fuse reviews your individual health data in the normal course of operations. Your data is processed by software, not read by people.

3.3 Fuse LLC Personnel (Limited)

A small number of authorized Fuse LLC personnel may access data only for:

Diagnosing technical issues
Responding to your support requests
Security incident response

All such access is logged for accountability.

3.4 No Third-Party Sales — Ever

We do not sell, rent, broker, or share your personal health data with any third party for marketing, advertising, or commercial purposes.

We do not share your data with data brokers, advertisers, insurance companies, employers, or any party not listed in this policy.

3.5 Sub-Processors

We use the following service providers to operate Fuse:

Provider	Purpose	Data Shared
Render	Cloud hosting	All app data (hosted on Render servers)
Backblaze B2	Encrypted backups	Encrypted database snapshots
Anthropic	AI inference (Phil)	Health context for AI responses
Google	OAuth sign-in (optional)	Email address + Google ID only
Stripe	Payments (future)	Payment info only — no health data

All sub-processors are contractually bound to data protection standards.

4. Data Retention

Account data: Retained while your account is active.
Health metrics: Retained while your account is active. You may delete individual records from within the app.
Audit logs: Retained for 12 months for security purposes.
After account deletion: All personal data is permanently deleted within 30 days. Aggregate anonymized statistics (no identifying information) may be retained indefinitely.

5. Your Rights (CCPA — California)

As a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

5.1 Right to Know

You may request a list of the categories and specific pieces of personal information we have collected about you in the past 12 months, including sources, purposes, and categories of third parties with whom it was shared.

To exercise: email hello@fuse.fit with subject "CCPA Right to Know Request."

5.2 Right to Delete

You may request deletion of your personal information. We will delete your data and direct our service providers to do the same, except where required by law or for legitimate security purposes.

To exercise: go to Account Settings → Delete My Data, or email hello@fuse.fit with subject "CCPA Deletion Request."

5.3 Right to Opt Out of Sale

We do not sell your personal information. There is nothing to opt out of.

5.4 Right to Non-Discrimination

Exercising your CCPA rights will not result in denial of service, different pricing, or reduced service quality.

5.5 Response Timeline

We will respond to verifiable CCPA requests within 45 days. If we need additional time (up to 45 more days), we will notify you in advance.

6. Health Data Sensitivity

We recognize that health and fitness data is among the most sensitive categories of personal information. We commit to:

Using your health data only to provide Fuse's core services to you
Never using your health data for profiling unrelated to fitness guidance
Never sharing health metrics with health insurers, life insurers, employers, or government agencies (except when required by law)
Notifying you promptly in the event of a data breach affecting your health information

7. Children's Privacy

Fuse is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us data, contact us at hello@fuse.fit and we will delete it promptly.

8. Changes to This Policy

We will notify you of material changes by:

Email to your registered address at least 30 days before the change takes effect
In-app notification when you next log in

Continued use of Fuse after the effective date constitutes acceptance of the updated policy.

9. Contact

Privacy inquiries & data requests:
Email: hello@fuse.fit

Security vulnerabilities:
Email: security@fuse.fit

Mailing address:
Fuse LLC, Privacy Team
Los Angeles, California

10. Governing Law

This Privacy Policy is governed by the laws of the State of California. Any disputes arising under this policy shall be resolved in the courts of California.