Physio Exercise Tracker
Privacy Policy
Plain-English summary: this app stores everything on your phone. Nothing you enter — exercise names, schedules, logs, videos — is sent to any server controlled by us. The only exception is anonymous crash reports, described below, and only when you have opted in by installing a version with crash reporting enabled.
Who controls your data
The “data controller” under UK GDPR is Paul Hollowday, the developer of this app. You can contact him at hollowday.paul@gmail.com.
What data the app processes
The app stores, on your device only:
- Exercise names, optional notes, default sets and reps.
- Programmes (groupings of exercises) and their colours.
- Schedules (days and times you want reminders).
- Log entries when you mark an exercise complete: sets done, reps done, pain score, difficulty score, duration, free-text notes, and the calendar date it was done. The app does not record the time of day.
- Optional video clips you record or pick to demonstrate an exercise.
- A few app settings (snooze duration, sound on/off, whether you have completed onboarding).
Where it lives
All of the above sits in your phone’s app sandbox (a private SQLite database file plus a folder of video files). It is not synced to the cloud automatically. If you uninstall the app, that data is deleted by the operating system.
When data leaves the device
Only when you actively choose to share it, using your phone’s standard share sheet:
- Backup zip: when you tap “Create backup”, the app builds a .zip of the database and videos and hands it to your share sheet. You decide where it goes (iCloud Drive, Google Drive, email, etc.). Once shared, it is governed by the policy of whichever service you chose.
- PDF / CSV report: when you tap “Share with physio”, the app generates a file on your device and hands it to the share sheet. Same rule — once you send it, it leaves our control.
Crash reports (Sentry)
To find and fix bugs, the app may send anonymous crash reports to Sentry (sentry.io). These contain technical details about the crash: the error message, stack trace, the operating system version, and a random installation identifier. They do not contain any of your exercises, logs, names, or videos. Sentry is processed under their own privacy policy at sentry.io/privacy.
If crash reporting is not configured for a given build, no crash data is sent at all.
Permissions the app asks for
- Notifications: to remind you at the time you scheduled an exercise. Reminders are scheduled and fired by the operating system locally; nothing is sent to a server.
- Camera and microphone: only when you choose to record a video demonstration of an exercise.
- Photo library / files: only when you choose to pick an existing video from your library, or to import a backup file.
Your rights under UK GDPR
- Access: the app shows you everything it stores. You can also export the raw data via “Backup” or as a CSV from the Report tab.
- Erasure: you can delete an individual log from its detail screen, archive an exercise or programme from its edit screen, or uninstall the app to wipe everything.
- Portability: the backup zip is a standard SQLite file plus video files; the CSV is plain text. Both are open, documented formats you can read with other tools.
- Complaint: if you are unhappy with how your data is handled, you can complain to the UK Information Commissioner’s Office (ico.org.uk).
Children
The app is not directed at children under 13. If you are a parent or guardian managing this app on a child’s device on behalf of their physiotherapy programme, the data above sits on that device, not with us.
Changes to this policy
If this policy materially changes, the in-app version will be updated and the “Last updated” date below will change. Continuing to use the app after that constitutes acceptance.
Support
Need help? See the support page.
Last updated: 5 June 2026