Privacy & Your Data
Privacy & Your Data
Rubric collects only what it needs to score your day. Your health data never leaves your account, never trains AI models, and never appears in analytics.
What Rubric Collects
Rubric accesses the following data, all tied to your account:
| Category | Details |
|---|---|
| Apple HealthKit | Steps, active calories, sleep duration and stages, resting heart rate, heart rate variability, workouts, weight, VO2 Max. Read-only — Rubric never writes to HealthKit. |
| Nutrition logs | What you type, speak, or photograph when logging food. |
| Activity logs | Non-exercise activities you choose to report. |
| Profile data | Body metrics, goals, allergies, and preferences you provide during onboarding. |
| Conversation history | Messages exchanged with the AI Coach, used to maintain context across sessions. |
What Rubric Does Not Collect
- No location data.
- No contacts or phone data.
- No browsing history.
- No health data in analytics — ever. (See analytics section below.)
Photo Handling
When you photograph a meal, EXIF metadata — GPS coordinates, device identifiers, timestamps — is stripped from the image on your device before anything is uploaded. After the system extracts nutrition data from the photo, the image is deleted from Rubric’s servers. Photos are not retained for training or any other purpose.
Data Isolation
Each user’s data is isolated at the database level. There is no mechanism — accidental or otherwise — for one user’s records to be visible to another.
Analytics Consent
During onboarding, you are asked whether to share anonymous usage analytics. This choice has no default — you must actively select “Share anonymous analytics” or “Don’t share” before continuing. If you decline, zero analytics events are sent. Period.
If you opt in, analytics track only app usage patterns: screen views, feature adoption, and interaction flows. A sanitization layer automatically strips any property containing health or nutrition keywords before the event is transmitted. The system blocks 45 categories of forbidden terms, including calories, weight, macros, protein, sleep, heart rate, and food-related data.
You can change your analytics preference at any time in Settings → Privacy Settings.
What this means for you: Even if you opt into analytics, it is not technically possible for health data to be included. The sanitization runs before transmission, not after.
No Passwords Stored
Rubric uses Google Sign-In or Sign in with Apple exclusively. There are no passwords to store, leak, or reset.
Further Reading
For a detailed explanation of HealthKit permissions and what each data type is used for, see Connecting Apple Health.
For technical details on encryption, infrastructure, and data security architecture, see Data Security.
The full Privacy Policy is available at rubric.fit/legal/privacy.
Related Articles