omniliftOpen the app

Privacy Policy

Last updated: June 12, 2026

omnilift is a strength-training tracker available on the web (https://omnilift.app), iOS and Android. This policy explains what data the app handles, where it lives, and your choices. The short version: your data exists to power your training — we don’t sell it, and we don’t run ads or third-party analytics.

1. Who we are

omnilift is built and operated by FestivLabs (“we”, “us”). Contact: omnilift@festivlabs.com.

2. Data you give us

  • Account: your email address (used for one-time-passcode sign-in), display name, handle, and optional avatar and bio.
  • Training data: programs, logged workouts (exercises, sets, weights, reps, RPE), streaks and achievements.
  • Body data (optional): body measurements you choose to log. Progress photos are stored only on your device and are never uploaded.
  • Social content (optional): workouts you share to the feed, follows, likes and comments — visible to other users per the feature’s design.

3. Where your data lives

omnilift is offline-first: your data is stored locally on your device (IndexedDB / app storage). When you sign in, it syncs to our cloud database so it follows you across devices — except progress photos, which never leave your device.

4. Data collected automatically

Standard server logs (IP address, timestamps, request metadata) are produced by our hosting and backend providers for security and reliability. The app contains no advertising SDKs and no third-party analytics.

5. How we use data

  • To provide the service: sync, sign-in, restoring your account on a new device.
  • To power features you use: progression predictions, charts, the social feed.
  • To protect the service: abuse prevention and debugging.

We do not sell personal data and do not use it for advertising.

6. Processors

  • Supabase — database, authentication and file storage for synced data.
  • Vercel — web hosting.
  • Resend — delivery of sign-in passcode emails.
  • Apple App Store / Google Play — app distribution on mobile.

7. Retention & deletion

Your data is retained while your account exists. There is currently no in-app account-deletion button: email omnilift@festivlabs.com from your account address and we will delete your account and synced data within 30 days. Local data can be removed by deleting the app / clearing site data.

8. Your rights

Depending on where you live (e.g. GDPR in the EU/UK, CCPA in California), you may have rights to access, correct, export or erase your personal data, and to object to or restrict processing. Exercise any of these by emailing omnilift@festivlabs.com.

9. Security

Data in transit is encrypted (TLS); cloud data is protected by per-user access rules (row-level security). No internet service can guarantee absolute security — use a unique email and keep your sign-in codes private.

10. Children

omnilift is not directed at children and is not intended for anyone under 16. If you believe a child has created an account, contact us and we will delete it.

11. International transfers

Our providers may process data in regions other than your own. Where required, transfers rely on appropriate safeguards such as standard contractual clauses offered by those providers.

12. Changes & contact

We may update this policy as the app evolves; material changes will be announced in-app or by email, and the date above always reflects the current version. Questions: omnilift@festivlabs.com.