Christopher Klenk10 min readYour fitness app knows more about you than your doctor.
And the AI chatbot you are just handing your HRV data to for analysis? It could use your health data for its training โ along with millions of other conversations.
This is sensitive information. And the question is not whether, but who has access, what happens with it โ and whether you really have control.
At a glance
Fitness apps collect the most intimate health data. Since 2025, AI chatbots like ChatGPT, Claude and Gemini use your chats for model training by default โ unless you actively switch it off. It takes 30 seconds, and it is worth it. Below you will find the opt-out instructions, your GDPR rights and concrete privacy settings.
Most users underestimate how much they give away every day.
Data category | Examples | Sensitivity |
|---|---|---|
Vital signs | Heart rate, HRV, blood oxygen, respiratory rate | Very high |
Activity | Steps, calories, workouts, routes | High |
Sleep | Sleep stages, sleep duration, wake times | Very high |
Body metrics | Weight, body fat, muscle mass | High |
Location | GPS tracks, frequent locations, movement patterns | Very high |
Cycle data | Menstruation, fertility, symptoms | Extremely high |
Revealing enough on their own. Combined, this data produces a complete health profile โ more detailed than most medical records.
The app providers themselves obviously need your data to deliver their service. But also for product improvement, personalised advertising and, in some cases, selling aggregated insights to third parties. What exactly happens with this data depends on what kind of AI actually sits behind the app โ from a simple rule set to a trained model.
Advertisers see fitness data as gold for targeted ads. Low sleep score? Ads for supplements. Location at the gym? Ads for local fitness offers. The correlation between your data and what gets sold to you is no coincidence.
Insurers are showing growing interest. Health insurers offer discounts in exchange for activity data; life insurers use it to model risk. Already a reality in some countries, still limited in Germany โ but the direction is clear.
Data brokers form the invisible market: they aggregate data and resell it, often without a direct link back to the original user โ in theory. In practice, re-identification is possible in many cases.
When you use ChatGPT, Claude or Gemini for training analysis, you share sensitive health data with AI companies. Since 2025, all major providers use consumer data for model training โ unless you explicitly switch it off. That affects anyone who uses LLMs for their AI training planning โ even with the best prompts.
Provider | Default setting | Data retention | Business accounts |
|---|---|---|---|
ChatGPT (Free/Plus/Pro) | Training ON | 30 days (deletable) | No training |
Claude (Free/Pro/Max) | Training ON since Sept 2025 | 5 years if training ON, 30 days if OFF | No training |
Gemini (Free/Advanced) | Training ON since Sept 2025 | 3 years (reviews), 72h after deletion | No training |
All three providers changed their policies in 2025. Training is now the default โ you have to actively object.
With training enabled, your prompts (that is, your training and health data), the AI responses, uploaded files such as CSVs with HRV data or training logs, and your feedback all feed into model training. Claude additionally uses code sessions; Gemini also uses images, videos and screenshots.
Concretely: if you analyse your HRV values, sleep patterns or body composition with an LLM, that data may end up in future model versions โ anonymised, but still.
For Free, Plus and Pro accounts: open ChatGPT, click your profile picture (bottom left), go to Settings โ Data Controls and switch "Improve the model for everyone" off.
You can also use Temporary Chat (chat icon, top right) โ OpenAI does not save these conversations. You can delete old chats via Data Controls, although the 30-day retention on the servers still applies.
For Team/Enterprise/API: training is disabled by default.
For Free, Pro and Max accounts: open Claude, click your profile icon, go to Settings โ Privacy and switch "Help improve Claude" off.
The retention difference is drastic: 30 days with training OFF, 5 years with training ON. Old conversations you reopen after the policy change can also be used for training. Incognito Chats are the safest option โ they never flow into training, even if the toggle is ON.
For Claude for Work/Enterprise/API: training is disabled by default.
For Free and Advanced accounts: open Gemini, click the activity icon (clock with arrow) in the side menu โ or go directly to myactivity.google.com/product/gemini. Click "Turn off" on Gemini Apps Activity and confirm. Optional: "Turn off and delete activity" also deletes old data.
Also check that "Improve Google services with your audio" is disabled (relevant for Gemini Live). For sensitive conversations, use Temporary Chats โ Google deletes them after 72 hours and does not use them for training.
For Google Workspace accounts: training is disabled by default.
Provider | Where | Setting | Privacy mode |
|---|---|---|---|
ChatGPT | Settings โ Data Controls | "Improve the model for everyone" OFF | Temporary Chat |
Claude | Settings โ Privacy | "Help improve Claude" OFF | Incognito Chat |
Gemini | Activity icon โ Turn off | "Gemini Apps Activity" OFF | Temporary Chat |
Short answer: no โ not for consumer accounts.
Many people think: "I pay for Pro/Plus, so my data won't be used." Wrong. ChatGPT Plus, Claude Pro, Gemini Advanced โ all of them treat your data the same as free accounts. Training is ON, and you have to do the opt-out yourself.
Account type | Training default | Opt-out possible? |
|---|---|---|
Consumer (Free/Plus/Pro/Max/Advanced) | ON | Yes |
Business (Team/Enterprise/Workspace) | OFF | Not needed |
The real difference: only business and enterprise accounts have training disabled by default. You are not paying for privacy โ you are paying for features.
Even with training disabled, every provider still stores your data โ for legal and security reasons. ChatGPT keeps deleted chats on its servers for 30 days. Claude does the same (without the training opt-in). Gemini deletes after 72 hours but keeps reviews for up to 3 years. For trust-and-safety flags โ for example, suspected abuse โ all providers keep data longer.
On top of that: chats are not end-to-end encrypted. Staff may have access for security reviews. In a data breach, your conversations could be exposed.
Treat LLM chats like semi-public spaces. Don't share anything you wouldn't mention in an office meeting.
If you want maximum privacy but still want to use AI for fitness, you have three routes.
Local LLMs like Ollama, LM Studio or GPT4All run entirely on your machine โ no data leaves your device. Quality is enough for simple analysis, but does not match GPT-4 or Claude level. For an HRV trend analysis or training-log review, though, perfectly usable.
API access with zero retention via the OpenAI API, Anthropic API or Google Vertex AI is the best compromise between quality and privacy. No training on API data (default), retention only 30 days for abuse monitoring. Cost: ~10โ20 โฌ/month with moderate use.
Privacy modes in the consumer apps โ i.e. Temporary Chat (ChatGPT/Gemini) and Incognito Chat (Claude) โ store nothing and never feed into training. The simplest route for sensitive analysis if you don't want to set up an API.
As an EU citizen you have strong rights โ with fitness apps and with LLM providers alike.
Right to access (Art. 15) means: you can find out at any time what data is stored about you, where it came from, who it has been shared with and how long it will be kept. Email the data protection officer or use the form in the app โ the provider has one month to respond.
Right to erasure (Art. 17) lets you demand deletion of all your data โ with some limits for legal retention obligations. With fitness apps, delete the account (check whether all data really disappears). With ChatGPT you find the option under Settings โ Data Controls โ Delete all chats. With Claude under Settings โ Account โ Delete Account. With Gemini via myactivity.google.com.
Right to object (Art. 21) is the most powerful tool: you can object to your data being processed for training at any time, without justification. That is exactly what the opt-out toggles do.
Provider | Data storage | Third-party access | GDPR compliant | Export available |
|---|---|---|---|---|
Apple Health | Local on device | Only with consent | Yes | Yes |
Garmin | Servers in EU/USA | Limited, opt-in | Yes | Yes, extensive |
Oura | EU & USA | Limited | Yes | Yes |
Strava | USA | Segments public (default) | Yes | Yes |
Whoop | USA | Research partners | Restricted | Yes |
Fitbit/Google | Google servers | Google ecosystem | Yes | Yes |
MyFitnessPal | USA (Under Armour) | Ad partners | Restricted | Limited |
Apple Health is the gold standard: data stays local on your device. Garmin and Oura are solid โ clear policies, extensive export. With Strava you have to actively adjust privacy settings (segments are public by default). It gets critical with apps that push aggressive advertising or have unclear policies โ if you can't figure out what happens to your data after five minutes of searching, that's an answer too. How these apps differ technically โ that is, whether rule-based algorithms or real machine learning are in play โ also shapes how much data they actually need.
For fitness apps there are four levers that make the biggest difference. First: restrict location tracking. Allow GPS only while using the app, not permanently. Enable privacy zones in Strava or Garmin so your starting point (read: your home) is not publicly visible.
Second: rethink social features. Does your profile need to be public? Do activities need to be shared automatically? In most cases the answer is: no.
Third: review third-party connections. Which apps have access to your health data? Remove old connections you haven't used in months immediately.
Fourth: disable ad tracking. On iOS under Settings โ Privacy โ Tracking. On Android under Settings โ Google โ Ads โ Delete advertising ID.
For LLMs the priority is clear: disable training (instructions above), use Temporary/Incognito Chats for sensitive analysis, delete old chats regularly. Don't upload raw data when a description is enough. And anonymise where you can โ "a 35-year-old man with runner's knee" instead of your name.
No clear privacy policy. If after five minutes you still don't know what happens with your data: walk away.
Free with an unclear business model. "If the product is free, you are the product." Not always true โ but often enough to look twice.
Excessive permissions. A calorie-tracking app does not need access to your microphone. Full stop.
No export function. Anyone who won't release your data has an interest in locking you in. Your data, your analysis โ that should apply to every provider.
Instant, personalised analysis
More flexible than specialised apps
Opt-out and privacy modes available
Data on external servers, not end-to-end encrypted
Training enabled by default, retention after deletion
Policies can change at any time
Your fitness data is sensitive โ whether it sits in an app or in a chat with an AI. Since 2025, ChatGPT, Claude and Gemini use consumer data for training by default. You have to actively object. The good news: it takes 30 seconds.
The GDPR gives you strong rights โ use them. And if a provider won't tell you what they do with your data: that is also an answer. You can find the full overview of AI in fitness โ from technologies to training planning to data analysis โ in the AI in Fitness Guide.
