ZYM logo ZYM

ZYM Legal

Privacy Policy

This Privacy Policy explains what information ZYM collects, how we use it, when we share it, and what choices you have when you use our coaching, messaging, group chat, community, and media features.

Last updated: March 29, 2026 Applies to zym8.com, app.zym8.com, and related services Contact: wangzijian0825@gmail.com

1. Scope

This Privacy Policy applies to ZYM websites, web applications, APIs, messaging tools, group chat features, community tools, account verification flows, and related services that link to or reference this policy. By using ZYM, you acknowledge that your information will be handled as described here.

2. Information We Collect

Account and profile information

When you register or maintain an account, we may collect your username, email address, password hash, email verification status, selected coach, avatar, background image, bio, fitness goal, hobbies, timezone, and account creation data. If you use Google sign-in, we may store your Google account identifier and verified email address.

Communication and community information

We collect information you submit in direct messages, coach conversations, group chats, mentions, posts, comments, reactions, report forms, invite flows, and other community interactions. This includes text, topic information, reply relationships, timestamps, and read status.

Media and uploads

If you upload images or files, we store metadata such as file name, media type, storage location, ownership, upload status, attachment context, and related technical details. Uploaded content can include meal photos, body composition check-ins, workout images, screenshots, or community media.

Wellness and activity information

ZYM may store optional health and wellness-related information you provide or sync through the app, such as your goals, steps, calories burned, active minutes, and other activity context used to personalize coaching and progress tracking.

AI interaction and product telemetry

To operate AI features, we may log prompts, responses, model names, message context, request status, token counts, estimated usage cost, latency, and source metadata for coach replies, food analysis, workout planning, embeddings, and related product operations.

Authentication, device, and security information

We collect session identifiers, device names, IP addresses, user agent data, refresh token hashes, consent records, password reset and email verification token records, abuse reports, and security event logs used to detect fraud, enforce rules, secure accounts, and investigate misuse.

Health-related caution ZYM is not a medical provider. Please do not assume that content submitted to or returned by ZYM will be clinically accurate, complete, or appropriate for your personal health situation.

3. How We Use Information

We use information we collect to:

  • Create and secure your account, verify your email, and manage login sessions.
  • Provide direct messaging, group chat, friend, community, moderation, and notification features.
  • Deliver AI coach responses, food image analysis, workout suggestions, and related personalization.
  • Store and serve uploaded media and attach it to messages, posts, or analysis flows.
  • Track safety acknowledgements and maintain records of required health disclaimer acceptance.
  • Monitor abuse, spam, suspicious activity, and platform integrity.
  • Measure app performance, feature usage, and AI operating cost so we can maintain and improve the service.
  • Respond to support requests, legal requests, and account management requests.

4. How We Share Information

We do not sell your personal information. We may share information only as reasonably necessary to operate the service, comply with law, or protect users and ZYM.

Service providers and infrastructure

We may use hosting, storage, CDN, database, security, email delivery, and background processing providers to operate ZYM. These providers may process data on our behalf subject to their own service terms and applicable confidentiality obligations.

AI and identity providers

When you use AI features, relevant prompts, message context, and uploaded images may be processed through our AI routing and model providers, including providers connected through OpenRouter. If you use Google sign-in, Google processes authentication data according to its own privacy terms.

Community visibility

Content you send in group chats, direct messages, posts, or comments is visible to the people or groups you intentionally share it with. Community or group content is not private from those recipients.

Legal and safety reasons

We may disclose information if we believe it is reasonably necessary to comply with law, respond to legal process, enforce our Terms, investigate abuse, or protect the rights, safety, and security of users, third parties, or ZYM.

5. AI and Media Processing

ZYM includes AI-powered features that generate nutrition, fitness, wellness, and motivational content. To make those features work, we may send text prompts, conversation history, tool outputs, image uploads, and limited related metadata to model providers or routing providers. We may also keep internal records of the request, tokens consumed, estimated cost, request source, and performance metrics.

You should avoid uploading highly sensitive personal information unless it is necessary for the feature you are using. You should also avoid relying on ZYM for emergency, diagnosis, treatment, or other high-risk decisions.

6. Local Storage and Session Data

ZYM uses browser storage and authenticated API sessions to keep you signed in, remember draft content, store selected account context such as your coach preference, and support normal app behavior across tabs and sessions.

7. Retention and Deletion

We keep information for as long as needed to provide the service, secure the platform, comply with law, and support legitimate business operations. Retention periods depend on the category of data and the purpose for which it was collected.

If you delete your account, ZYM currently removes your account record and a broad set of related app data, including profile data, sessions, messages associated with your account, groups you own, membership records, posts, comments, consent records, health data, and several related operational records. Some limited information may persist temporarily in system logs, backups, or infrastructure snapshots for security, integrity, or disaster recovery purposes.

8. Your Choices

  • You can choose what profile details, messages, posts, and uploads you share through the app.
  • You can stop using optional health or media features if you do not want to provide that information.
  • You can request account deletion through the app or by contacting us.
  • You can contact us to ask about updating or correcting account information associated with your profile.

9. Security

We use administrative, technical, and organizational measures intended to help protect information in our systems. No method of storage or transmission is completely secure, so we cannot guarantee absolute security. You are responsible for keeping your credentials secure and for using the service only on devices and networks you trust.

10. Children

ZYM is not intended for children under 13. If you believe a child under 13 has provided personal information through the service, please contact us so we can review and take appropriate action.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect product changes, legal requirements, or operational needs. When we do, we will update the “Last updated” date at the top of this page. Your continued use of ZYM after an update means the revised policy will apply going forward.

12. Contact

If you have questions, requests, or concerns about this Privacy Policy or our data practices, contact ZYM at wangzijian0825@gmail.com.