Privacy Policy

Last updated: March 1, 2026

1. Introduction

MindBody AI Health, Inc. ("MindBody AI," "we," "us," or "our") operates the MindBody AI wellness platform available at mindbody-ai.com and through our mobile applications. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

2.1 Information You Provide

  • Account data: Name, email address, password (hashed).
  • Health & wellness data: Food logs, meal photos, mood entries, workout logs, sleep data, medication logs, glucose readings, sobriety tracking, body measurements.
  • Payment data: Processed by Stripe; we do not store full card numbers.
  • Communications: Messages you send through our AI chat feature, feedback, and support requests.

2.2 Information Collected Automatically

  • Device type, browser, operating system.
  • IP address and approximate location.
  • Usage data (pages visited, features used, session duration).

2.3 Third-Party Integrations

  • Dexcom: If you connect a Dexcom CGM, we receive glucose readings through the Dexcom API. You can disconnect at any time from Settings.
  • Strava / Garmin: Workout and activity data you choose to sync.

3. How We Use Your Information

  • Provide, operate, and personalize the Service.
  • Generate AI-powered insights, meal plans, workout plans, and correlations using Anthropic's Claude API. Your data is sent to Anthropic for processing; Anthropic does not use your data to train models per their data policy.
  • Process subscription payments via Stripe.
  • Send transactional emails (account, billing, alerts).
  • Detect and prevent fraud, abuse, and security issues.
  • Improve the Service through aggregated, de-identified analytics.

4. Data Storage & Security

Your data is stored in Supabase (backed by PostgreSQL) with row-level security enabled. Data is encrypted in transit (TLS 1.2+) and at rest. We apply the principle of least privilege for all internal access.

5. Data Sharing

We do not sell your personal data. We share data only with:

  • Anthropic — to process AI requests (governed by their data processing terms).
  • Stripe — to process payments.
  • Vercel — hosting infrastructure.
  • Supabase — database and authentication.
  • Law enforcement if required by applicable law.

6. Your Rights

You have the right to:

  • Access your data — export a full copy from Settings.
  • Correct inaccurate information via your profile.
  • Delete your account and all associated data from Settings. This action is irreversible.
  • Withdraw consent for optional data processing at any time.
  • Data portability — download your data in JSON format.

7. Cookies

We use essential cookies for authentication and session management. Optional analytics cookies are only set with your consent. See our Cookie Policy for details.

8. Children's Privacy

MindBody AI is not intended for users under 13. We do not knowingly collect data from children under 13.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification.

10. Contact

Questions? Email us at privacy@mindbody-ai.com.