Privacy Policy
Last updated: May 2026
This Privacy Policy explains how Kai ("we", "us") collects, uses, and protects information when you use the Kai mobile application and kaifit.app website (collectively, the "Service").
Plain-English summary: We collect what we need to coach you (your profile, meals, weight, conversations). We use AI providers (OpenAI / Azure) to power the coaching. We never sell your data, never show ads, and you can delete everything at any time.
1. Information we collect
1.1 Information you provide
- Account & profile: name, age, sex, height, weight, goal, training location, preferences, injuries, dietary restrictions.
- Logs: meals, weights, activities, workouts you record in the app.
- Conversations: text, voice transcripts, and photos you send to Kai.
- Email: when you join the waitlist or contact us.
1.2 Information collected automatically
- Device data: device type, operating system version, app version, anonymized device identifier.
- Usage telemetry: feature usage, crash reports, request counts. Used to improve the Service.
1.3 We do NOT collect
- Precise location.
- Contacts, calendar, or other apps.
- Advertising identifiers.
2. How we use information
- To deliver the coaching service (compute targets, give advice, track progress).
- To send conversation content to our AI providers (OpenAI / Azure AI Foundry) for response generation.
- To improve product reliability and performance.
- To respond to support requests and security incidents.
- For payments (handled by Apple App Store / Google Play — we never see your card).
3. AI processing
Kai sends your chat messages, profile context, and (on Pro) voice recordings and meal photos to OpenAI models hosted in Microsoft Azure AI Foundry, so that the model can respond. Under Microsoft's Azure OpenAI service terms, this data is not used to train OpenAI's foundation models. Azure retains content only as needed to operate the service and detect abuse.
4. Sharing
We do not sell your personal information. We share data only with:
- Microsoft Azure — hosting, database, AI model inference.
- OpenAI (via Azure) — model inference only; not used for training.
- Email infrastructure providers — for transactional emails (e.g., waitlist confirmation).
- Authorities — only if legally required by a valid subpoena or court order.
5. Data retention
- Account data is retained while your account is active.
- Deleted accounts are purged from primary storage within 30 days.
- Encrypted backups may persist up to 90 days, then are permanently destroyed.
- Anonymized telemetry may be retained indefinitely for product improvement.
6. Your rights
Depending on where you live (EU/UK GDPR, California CCPA/CPRA, etc.), you have the right to:
- Access the personal data we hold about you.
- Correct inaccurate data.
- Delete your account and data.
- Export your data in a portable format.
- Object to or restrict certain processing.
To exercise these rights, email privacy@kaifit.app. We'll respond within 30 days.
7. Security
We use industry-standard practices: TLS in transit, encryption at rest, scoped access tokens, audit logs. No system is perfectly secure; we'll notify affected users in the event of a confirmed breach involving their data.
8. Children
Kai is not intended for users under 16. We do not knowingly collect information from children. If you believe a child has provided information, email privacy@kaifit.app and we'll delete it.
9. International transfers
Data is processed in the United States and other regions where our service providers operate. We rely on Standard Contractual Clauses and equivalent safeguards for transfers from the EU/UK.
10. Changes to this policy
We'll post any changes here with a new "last updated" date and, for material changes, notify you in-app or by email.
11. Contact
Privacy questions: privacy@kaifit.app
General contact: hi@kaifit.app