Oak

Privacy Policy

Effective Date: March 27, 2026 Last Updated: April 12, 2026

Oak (“we,” “us,” or “our”) operates the Oak mobile application and related services (the “Service”).

This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Service. By using Oak, you agree to the collection and use of information in accordance with this Privacy Policy.

1. Information We Collect

We collect information in the following categories:

A. Personal Information

Information you provide directly, including:

  • Name
  • Email address
  • Account credentials

B. Health and Fitness Data

Because Oak provides personalized fitness and nutrition coaching, we collect and process health-related data you provide or authorize, including:

  • Workout data (exercises, sets, reps, weight, performance)
  • Nutrition and food logs
  • Body measurements (weight, body fat %, etc.)
  • Wellness data (sleep, mood, stress, energy)
  • Goals, preferences, and notes
  • Progress photos (if you choose to upload them in future features)

This data is used solely to provide and improve the core functionality of the Service.

C. Apple Health Data (HealthKit)

If you choose to connect Apple Health, we may access data such as:

  • Steps and activity
  • Energy expenditure
  • Sleep data
  • Heart rate and HRV
  • VO₂ max
  • Body metrics

Important:

  • We only access Apple Health data with your explicit permission.
  • We do not use Apple Health data for advertising or marketing.
  • We do not sell Apple Health data.
  • Apple Health data is used only to provide and improve app functionality.

D. Usage and Device Data

We automatically collect certain technical data, including:

  • IP address
  • Device type and operating system
  • App usage activity
  • Log data (timestamps, interactions, errors)

E. User Content

We collect content you create within the app, including:

  • Messages to the AI coach
  • Check-in responses
  • Notes and feedback

2. How We Use Your Information

We use your information to:

  • Provide, operate, and maintain the Service
  • Generate personalized fitness and nutrition recommendations
  • Analyze trends and progress over time
  • Improve the accuracy and performance of our AI systems
  • Communicate with you (including support and updates)
  • Monitor and prevent misuse or abuse of the Service
  • Comply with legal obligations

3. Artificial Intelligence Processing

Oak uses artificial intelligence to analyze your information and generate coaching responses, summaries, and recommendations.

Third-party AI providers Oak uses

When AI features are enabled, Oak may send data to the following providers:

  • OpenRouter (request routing and model access)
  • Anthropic (model inference)
  • OpenAI (model inference)

OpenRouter may route requests to Anthropic, OpenAI, and other model providers we approve. If additional providers are added, this Privacy Policy will be updated before use.

What may be sent for AI processing

Depending on how you use the Service, prompts and context sent to AI systems may include:

  • Messages you send to the coach and related conversation context
  • Profile and onboarding information (for example goals, preferences, biometrics you have entered)
  • Training, nutrition, journal, and check-in data when it is used to personalize outputs
  • Apple Health or other connected health data when it is included in coaching context (for example in tools or summaries that use that data)
  • Technical metadata needed to run the request (for example timestamps, request IDs, and model selection)

How it works

  • The app asks for your explicit permission before enabling features that send personal data to third-party AI providers.
  • If you tap Not now or later withdraw permission in Profile -> Privacy & AI, Oak does not send your personal data to third-party AI providers, and AI chat/AI summaries remain disabled until you opt in again.
  • AI outputs are generated from the information available to the model at the time of each request.
  • We may use aggregated and anonymized data to improve our models and Service.
  • We do not use personally identifiable health data for advertising purposes.

4. Sharing of Information

We may share your information with:

Service Providers

Third parties that help us operate the Service, including:

  • Hosting and infrastructure providers
  • Analytics providers
  • Payment processors

Third-Party AI Providers (Subprocessors)

When you use AI coaching features, we transmit personal data described in Section 3 to third-party AI infrastructure so models can generate responses. In particular:

  • OpenRouter routes inference requests to underlying model providers.
  • Anthropic and OpenAI (and potentially other model providers made available through OpenRouter) may process prompts and context on our behalf, depending on which model is used for a given feature.

These providers process data only as needed to provide the AI functionality you have chosen to enable. We engage subprocessors under contracts that require privacy and security protections that are the same as or equivalent to the protections Oak applies to this data. AI processing may occur on servers located outside your country; see Section 10 (International Data Transfers).

Legal Requirements

We may disclose information if required to:

  • Comply with laws or legal processes
  • Protect rights, safety, or property

Business Transfers

If Oak is acquired or merged, your data may be transferred as part of that transaction.

5. Data Retention

We retain your information only as long as necessary to:

  • Provide the Service
  • Comply with legal obligations
  • Resolve disputes and enforce agreements

If you delete your account, we will delete or anonymize your data within a reasonable timeframe, unless retention is required by law.

6. Your Rights and Choices

Depending on your location, you may have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Request a copy of your data (data portability)
  • Withdraw consent at any time

You can make these requests by contacting us at the email below.

7. Data Security

We use commercially reasonable safeguards to protect your information. However, no system is completely secure, and we cannot guarantee absolute security.

8. Children’s Privacy

Oak is not intended for individuals under the age of 13. We do not knowingly collect personal information from children under 13.

9. Third-Party Services

The Service may contain links to third-party services. We are not responsible for their privacy practices.

10. International Data Transfers

Your information may be processed in countries other than your own. We take steps to ensure appropriate safeguards are in place where required.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If changes are significant, we will notify you through the app or via email.

12. Contact Us

If you have any questions or requests regarding this Privacy Policy, you can contact us at:

Email: zac@tryoak.app

13. Summary (Plain English)

  • We collect fitness, health, and app usage data to provide coaching.
  • We use AI to generate personalized recommendations; with your permission, relevant data may be sent to services such as OpenRouter, Anthropic, and OpenAI for that purpose.
  • We do not sell your health data.
  • Apple Health data is only used with your permission and never for ads.
  • You can turn off third-party AI in the app or request access, correction, or deletion of your data at any time.