Metro Step

Privacy Policy

Last updated: June 28, 2026

ℹ️ This policy is written in plain language and in good faith. Because Metro Step handles health-related data, it's wise to have a privacy professional review it before you rely on it.

Metro Step is a workplace wellness app that helps employees track steps, form teams, and take part in challenges. It is built and operated by Micael Andrei Diaz de Rivera, an independent developer based in the Philippines ("I", "me", "my"). This policy explains what personal data I collect, how I use it, and the choices and rights you have. You can reach me anytime at privacy@metrostep.app.

Data I collect

Account — your email address and a password (stored hashed by my auth provider).
Profile — your display name, chosen avatar, and your organization/team membership.
Health & activity — step counts and step-equivalent activity you log or sync from Apple Health (HealthKit) or Android Health Connect, plus streaks, goals, badges and points.
Consents — your choices for each data-sharing purpose (see below).
Usage & device — basic technical data needed to operate and secure the app.

How I use it

To provide the core service — your Today dashboard, streaks, goals, badges and journeys.
To power teams, challenges, leaderboards and the activity feed only for people who consented to share with their team.
To give your HR/People team anonymized, aggregated insights — department-level figures with a minimum group size (k-anonymity ≥ 5). Your individual health data is never shown to HR.

Health data — special handling

Health and fitness data is sensitive personal information. I do not use it for advertising, sell it, or share it with third parties for their own purposes. Raw health samples stay associated with your account and are only used to provide the features you turn on. Data obtained from Apple Health / Health Connect is handled per their respective platform requirements.

Your consent & controls

Collection requires your consent at first run, and you can change these granular, revocable choices anytime in You → Privacy & consent:

Collect my activity data — turning this off stops new activity from being recorded.
Share with my team — gates your steps, leaderboard rank and feed visibility.
Include me in HR stats — anonymized department-level aggregates only.

Who can see your data

You — always see your own data.
Teammates — see your name and (if you consented) your steps and rank.
HR/People team — only anonymized aggregates, never your individual numbers.

Sharing & processors

I use Supabase (database, authentication, hosting) and Resend (sending account emails) as data processors under appropriate safeguards. I do not sell your personal data. I may disclose data if required by law.

Retention & security

I keep your data while your account is active. Access is enforced at the database level (row-level security) so people only see what they're permitted to. I apply reasonable technical and organizational measures to protect your data.

Your rights

Under the Data Privacy Act you have rights to access, correct, object, and erase your data. In the app:

Access / portability — You → Account & data → Export my data gives you a machine-readable copy of everything I hold about you.
Erasure — You → Account & data → Delete account permanently deletes your account and personal data. This cannot be undone.

You can also exercise any of these by emailing privacy@metrostep.app.

Children

Metro Step is for workplace use and is not directed to anyone under 18.

Changes

I may update this policy; I'll revise the "last updated" date and, for material changes, notify you in-app.

Contact

Questions or requests: privacy@metrostep.app. If you're in the Philippines and have unresolved concerns, you may also contact the National Privacy Commission.