1. Introduction
Welcome to Clear Morning. We are committed to protecting your privacy and handling your data in an open and transparent manner. This Privacy Policy explains how we collect, use, store, and share your personal information when you use our habit tracking and wellness application.
2. Information We Collect
2.1 Account Information
When you create an account, we collect:
Email address
Authentication provider (Google, GitHub, or email link)
Display name (optional)
Profile picture (optional)
2.2 Habit Tracking Data
To provide our core service, we collect:
Habits you create and track
Check-in timestamps and completion data
Affirmation preferences and custom primers
Photos you upload (optional)
Nutrition logs (food items, calories, macros)
Exercise logs and workout data
Recovery metrics (sleep, mood)
2.3 Wearable Device Data (Premium+ Only)
If you connect wearable devices (Premium+ feature), we access:
Supported devices: Fitbit, WHOOP, Oura Ring, Strava, Polar, Garmin
Sleep data: Duration, sleep stages, and quality metrics
Heart rate data: Resting heart rate and HRV (heart rate variability)
Activity data: Steps, exercise sessions, active minutes, workouts
Recovery data: Readiness scores, strain, recovery metrics
Important: We only read your wearable device data via secure OAuth 2.0 connections. We never write, modify, or delete any data in your connected accounts. Your health data is stored securely in our database and is only used to display recovery metrics within Clear Morning. You can disconnect any device at any time from the Devices page.
2.4 Usage Data
We automatically collect:
Device type and operating system
Browser type and version
IP address (anonymized)
App usage patterns (pages visited, features used)
Error logs and crash reports
3. How We Use Your Information
We use your data to:
Provide the service: Track your habits, display analytics, sync across devices
Improve the app: Fix bugs, add features, optimize performance
Personalize experience: Generate AI affirmations, recommend habits, calculate recovery scores
Send notifications: Habit reminders, streak alerts, feature updates (if enabled)
Process payments: Handle subscriptions via Stripe (we never store payment card details)
Comply with legal obligations: Respond to lawful requests, enforce our Terms of Service
4. How We Share Your Information
We DO NOT sell your personal data. We only share data in these limited circumstances:
4.1 Service Providers
Supabase: Database hosting and authentication
Vercel: Application hosting and deployment
Stripe: Payment processing
OpenAI/Anthropic: AI affirmation generation (we send anonymized prompts only)
Wearable APIs: Fitbit, WHOOP, Oura, Strava, Polar, Garmin (OAuth connections for health data)
Food databases: OpenFoodFacts (nutrition data lookup)
Twilio: SMS/text messaging delivery between trainers and members
4.2 Public Sharing (Optional)
If you enable public profile sharing, your chosen habits and stats become visible via a shareable link. You control what's public and can disable this anytime.
4.3 Legal Requirements
We may disclose your information if required by law, court order, or to protect our rights and safety or that of others.
5. Data Security
We implement industry-standard security measures:
All data transmitted over HTTPS (encrypted connections)
Passwords are hashed using bcrypt
Database access is restricted and audited
Row-level security policies protect user data
Regular security audits and updates
However, no system is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.
Texas Data Breach Notification: In the event of a data breach affecting Texas residents, we will notify you as required by Texas Business & Commerce Code § 521.053 without unreasonable delay and in compliance with applicable state and federal law.
6. Your Rights and Choices
You have the right to:
Access: View all your personal data
Correct: Update inaccurate information
Delete: Request complete account deletion (Settings → Delete Account)
Export: Download your data in JSON format
Opt-out: Disable notifications, public sharing, or Google Fit sync
Revoke: Disconnect Google Fit integration anytime
7. Data Retention
We retain your data as long as your account is active. When you delete your account:
Your personal data is deleted within 30 days
Anonymized analytics may be retained for service improvement
Backup copies are purged within 90 days
8. Children's Privacy
Clear Morning is not intended for users under 13 years old. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately.
9. International Data Transfers
Your data may be stored and processed in the United States or other countries where our service providers operate. By using Clear Morning, you consent to this transfer. We ensure adequate safeguards are in place to protect your data.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We'll notify you of significant changes via email or in-app notification. Continued use after changes indicates acceptance.
11. Contact Us
If you have questions about this Privacy Policy or your data:
Clear Mornings LLC
8409 Racine Trl
Austin, TX 78717
Email: legal@clearmornings.com
Support: support@clearmornings.com
Website: clearmornings.com
12. Wearable Device API Disclosure
Clear Morning's use and transfer of information received from wearable device APIs (Fitbit, WHOOP, Oura, Strava, Polar, Garmin) adheres to each provider's respective API Terms of Service and User Data Policy, including Limited Use requirements where applicable.
Specifically, Clear Morning:
Only requests the minimum scopes necessary to provide the Devices feature
Only reads data from connected devices (never writes or modifies your device data)
Stores health data securely and never shares it with third parties for marketing or advertising
Uses health data solely to display recovery metrics within Clear Morning
Allows you to revoke access at any time from the Devices page
Complies with HIPAA exemptions (we are NOT a HIPAA-covered entity)
13. SMS / Text Messaging
Clear Mornings offers optional SMS/text messaging so members can communicate directly with their trainer and receive coaching check-ins, program updates, and reminders. SMS is opt-in only — you must explicitly consent before any messages are sent.
13.1 Information Collected for SMS
If you opt in to receive SMS messages, we collect:
Your mobile phone number
Opt-in timestamp, IP address, and the exact consent language you agreed to
Message content exchanged between you and your trainer
Delivery status and opt-out requests (STOP keywords)
13.2 No Sharing of Mobile Information
No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. All categories of information described in this Privacy Policy exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
We use Twilio as our SMS service provider to deliver messages on our behalf. Twilio processes your phone number and message content solely to transmit SMS and is contractually prohibited from using this data for any other purpose.
13.3 Message Frequency, Rates, and Opt-Out
Message frequency varies based on your interaction with your trainer and program activity.
Message and data rates may apply. Check with your mobile carrier for details.
Reply STOP at any time to unsubscribe from all SMS messages. Reply HELP for assistance.
Carriers are not liable for delayed or undelivered messages.
You can also revoke SMS consent at any time from your account settings.
This Privacy Policy is effective as of April 16, 2026 and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.