The short version: Your health data is processed on your device and never uploaded to our servers. We use no advertising SDKs, no behavioral analytics, and no third-party data brokers. The only data on our servers is your account identifier and subscription status.
Reckon is a health and fitness application for iPhone and Apple Watch. We built Reckon on a foundational principle: your health data belongs to you, lives on your device, and goes nowhere without your explicit knowledge.
This Privacy Policy explains what data Reckon collects, how it is used, and the technical safeguards that protect it. If you have questions, contact us at privacy@getreckon.health.
Reckon reads the following health metrics from Apple HealthKit to compute your scores:
This data is read-only from HealthKit. Reckon writes workout sessions and supplement log entries back to HealthKit only if you explicitly grant write permission. All HealthKit data is processed on your device using Apple's SwiftData framework and is never uploaded to Reckon's servers.
When you log supplements, the following is stored locally on your device:
Correlation analysis (Welch's t-test against your score history) is computed entirely on-device. This data never leaves your phone.
If you choose to sign in, Reckon collects:
Account data is stored in our Cloudflare Workers KV store and used solely to associate your subscription status across devices. It is not sold, shared, or used for advertising.
Reckon uses RevenueCat to manage subscriptions. When you purchase Reckon Pro, RevenueCat processes your payment through the App Store. Reckon receives only your subscription status (active / expired / trial) — not your payment details, card number, or billing address.
When you use Reckon's on-device intelligence feature, a minimal context payload is assembled on your device and sent to Reckon's edge proxy (Cloudflare Workers) to process your question. This payload includes:
You can tap "View context" before any query to inspect exactly what will be sent. The edge proxy does not log, store, or train on your query payloads. Payloads are discarded immediately after the response is returned.
Reckon does not collect and has no access to:
Data collected by Reckon is used exclusively for:
We do not use your data for advertising, profiling, or any purpose not described in this policy.
All health data, supplement logs, score history, and algorithm weights are stored in SwiftData on your device. This storage is protected by iOS data protection — encrypted at rest using your device passcode — and is not included in iCloud backups. Reckon does not implement CloudKit sync for health data.
The only data stored on Reckon's infrastructure is your account identifier and subscription status, held in Cloudflare Workers KV encrypted at rest. Session tokens are stored in your device's iOS Keychain using Apple's Security framework — not in UserDefaults or any insecure storage.
All network communication between Reckon and our edge infrastructure uses TLS 1.3. The intelligence coaching edge proxy does not persist your query payload after returning a response.
As required by Apple's HealthKit guidelines:
Reckon integrates with a minimal set of third-party services. Each is limited to the data strictly necessary for its function:
Reckon uses no advertising networks, data brokers, behavioral analytics platforms, or social SDKs beyond those listed above.
Reckon is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided personal information to Reckon, contact us at privacy@getreckon.health and we will delete it promptly.
You can review and revoke Reckon's HealthKit permissions at any time in Settings → Health → Data Access & Devices → Reckon. Revoking permissions will prevent score computation but will not delete data already stored on your device.
You can delete your Reckon account from within the app under Settings → Account → Delete Account. This permanently removes your account identifier and subscription record from our servers. On-device data is deleted when you remove the app from your device.
Reckon Pro subscribers can export their full score history and supplement logs in CSV format from Settings → Export Data. Exported files are generated on-device and never pass through our servers.
California residents have the right to know what personal information we collect, request its deletion, and opt out of its sale. Reckon does not sell personal information. To exercise your rights, contact privacy@getreckon.health.
If you are located in the European Economic Area or United Kingdom, you have rights under GDPR including access, rectification, erasure, portability, and the right to object to processing. Our lawful basis for processing account data is contract performance. To exercise your rights, contact privacy@getreckon.health.
On-device data is retained until you delete the app. Server-side account and subscription data is retained while your account is active and for 30 days following account deletion, after which it is permanently purged. Intelligence coaching query payloads are not retained at all — they are discarded immediately after the response is returned.
We may update this Privacy Policy from time to time. When we do, we will update the Effective Date at the top of this document and notify you via an in-app notice if the changes are material. Continued use of Reckon after a policy update constitutes acceptance of the revised policy.
If you have questions, concerns, or requests related to this Privacy Policy: