Privacy Policy

FormSignal is operated by Big Bald Guy Software, LLC, a Maryland limited liability company with a mailing address at 614 Schley Ave, Frederick, MD 21702 ("FormSignal," "we," "us"). FormSignal provides body composition tracking, calibration against reference scans, and coaching tools to gyms and individual subscribers.

This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and the choices you have. It applies to formsignal.fit and any FormSignal mobile applications.

FormSignal is a wellness and fitness service. It is not a medical device, is not intended to diagnose, treat, cure, or prevent any disease, and is not a substitute for professional medical advice. We are not a HIPAA-covered entity or business associate.

The body composition, biometric, and wearable data FormSignal processes is sensitive even though it falls outside HIPAA, and we handle it with corresponding care.

You give us directly

• Account information — name, email, password (hashed), and role (member / coach / gym admin / individual subscriber).
• Gym membership data — if you join via a gym, the gym's administrator may provide your contact information and assign you to a coach.
• Body composition measurements — weight, fat percentage, lean mass, hydration, and similar metrics you enter manually or that flow in from a connected scale or app.
• Reference scan data — InBody, DEXA, or similar reference scans you upload to calibrate your home device.
• Photos — if you upload progress photos.
• Messages — conversations between you and your coach (or between coaches and members at your gym).

From devices and connected services

• Smart scales — readings synced from supported devices.
• Wearables — when you connect Oura, WHOOP, Fitbit, Garmin, or Apple Health, we receive the daily summary metrics those providers expose (steps, heart rate variability, sleep, recovery, active energy). We never receive your location or your raw heart-rate stream.
• Mobile app data — if you use the FormSignal iOS app, the data it syncs from HealthKit with your explicit grant.

Automatically

• Device and log data — IP address, browser type, operating system, pages visited, timestamps, and error reports. Used for security, debugging, and analytics.
• Cookies and similar technologies — see Section 9.

Payment information

We do not store your credit card details. Payments are processed by Stripe, Inc.; we receive only the metadata needed to operate your subscription (tier, status, renewal date, last 4 digits, country of card issuance).

• Provide and operate FormSignal — calibrate measurements, generate trends and predictions, surface coach attention queues.
• Authenticate you, secure your account, prevent fraud.
• Send transactional email (password resets, billing receipts, weekly reports you've subscribed to).
• Send marketing email only if you opt in during sign-up or in account settings. You can withdraw consent at any time from the unsubscribe link in any marketing email.
• Improve the product — diagnose bugs, analyze aggregated usage patterns, plan features. We do not sell personal information.
• Comply with law, enforce our Terms of Service, and protect FormSignal and our users.

FormSignal uses large-language-model providers (Anthropic, OpenAI, Google) to draft suggested coaching messages and summaries. A human coach reviews and edits every AI-drafted message before it is sent to a member. The AI providers process your data only for the specific drafting request and do not use your data to train their models.

We share personal information only with:

• Your gym and assigned coaches, if you joined via a gym. Coaches only see members assigned to them.
• Sub-processors that operate FormSignal on our behalf, listed below. Each is bound by a written contract limiting their use of your data to providing their service to us.
• Wearable providers you connect — the connection is bi-directional in the sense that you have granted those providers (Oura, WHOOP, Fitbit, Garmin, Apple) permission to share data with FormSignal.
• Authorities when required by valid legal process, or to protect rights, property, or safety.
• Successors in the event of a merger, acquisition, financing, or sale of substantially all assets, subject to this Privacy Policy.

Sub-processors

• Railway — application hosting
• Neon — managed Postgres database
• Neon Auth (Better Auth) — authentication
• Upstash Redis — caching and background queues
• Cloudflare R2 / Amazon S3 — object storage for photos and report PDFs
• Resend — transactional and marketing email
• Twilio — SMS and MMS for coach messaging
• Stripe — subscription billing and payment processing
• Sentry — error and performance monitoring
• Mapbox — gym location mapping
• Anthropic, OpenAI, Google — AI providers for coach drafting suggestions
• Oura, WHOOP, Fitbit, Garmin, Apple HealthKit — wearable data sources you explicitly connect

We update this list when sub-processors change. Material changes are reflected in an updated effective date at the top of this Policy.

We retain your personal information for as long as your account is active and for a reasonable period afterward to comply with legal obligations, resolve disputes, and enforce our agreements.

• Account and measurement data — kept while your account is active; deleted within 90 days of account closure unless we are required to retain it longer for legal, accounting, or fraud-prevention purposes.
• Billing records — retained for 7 years for tax and accounting purposes.
• Wearable tokens — revoked immediately when you disconnect a wearable; previously synced summaries are retained with your account data.
• Server logs — typically kept for 30 days; security-relevant logs may be kept longer.

You can review and update your account information at any time from your account settings. You may also:

• Disconnect any wearable from /account/wearables.
• Unsubscribe from marketing email from the link in any marketing message.
• Request a copy of your data, or that we delete it, by emailing privacy@bbgsoft.com. We will respond within 30 days.
• Close your account. Closure deletes your account and associated data on the timeline in Section 7.

California residents (CCPA / CPRA)

If you are a California resident, you have the right to know what personal information we collect about you, to request deletion, to correct inaccurate information, and to opt out of any sale or sharing of personal information for cross-context behavioral advertising. FormSignal does not sell personal information and does not share it for cross-context behavioral advertising. We will not discriminate against you for exercising your rights.

To make a request, email privacy@bbgsoft.com. We may need to verify your identity (typically by confirming control of the email address on the account).

We use a small number of cookies and similar local-storage mechanisms to keep you signed in, remember preferences, and measure how the product is used. We do not use advertising/third-party tracking cookies. Most browsers let you block or delete cookies; doing so may prevent sign-in from working.

We use industry-standard administrative, technical, and physical safeguards to protect personal information, including encryption in transit (TLS) and at rest, role- based access controls, secret encryption with AES-256 Fernet, hash-chained audit logs, and routine vulnerability scanning. No system is perfectly secure; we cannot guarantee absolute security.

If we become aware of a breach affecting your information, we will notify you promptly and provide the information needed for you to assess the impact.

FormSignal is intended for users 18 years and older. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected personal information from a minor under 18, we will delete it.

We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date at the top of this page and, when appropriate, notify you by email or through the product before the changes take effect.

Privacy questions and rights requests: privacy@bbgsoft.com
General legal notices: legal@bbgsoft.com
Mailing address: Big Bald Guy Software, LLC, 614 Schley Ave, Frederick, MD 21702