LoxBridge ("the app", "we", "us") is an iOS application that reads GPS workout routes from Apple Health and uploads them to Livelox, a route-analysis service for orienteering.
This Privacy Policy explains what data the app accesses, how it is used, and what rights you have.
By using LoxBridge, you acknowledge that you have read and understood this Privacy Policy.
LoxBridge requests read-only access to the following HealthKit data types:
| Data type | Purpose |
|---|---|
| Workout sessions | Detect new outdoor workouts to process |
| Workout routes (GPS tracks) | Extract the GPS path to generate a GPX file |
| Workout metadata (duration, distance, device name) | Include stats in the route history display |
LoxBridge does not write any data back to Apple Health.
HealthKit data is accessed strictly for the purposes described in this policy and only with your explicit permission.
GPS coordinates are read from workout routes already recorded and stored in the Apple Health app by your Apple Watch or iPhone.
LoxBridge does not request access to your current live location.
After processing a workout, the app performs a reverse-geocoding lookup (using Apple's CLGeocoder service) to derive a human-readable place name (e.g. "Skatås, Göteborg") for display.
No servers controlled by LoxBridge receive this data. Apple may process this data as part of its geocoding service.
LoxBridge reads the name and hardware model identifier of the device that recorded the workout from HealthKit metadata. This information is displayed in the app and optionally included in the GPX file sent to Livelox.
| Purpose | Data involved |
|---|---|
| Generate a GPX file | GPS track, timestamps |
| Display route history | Date, distance, duration, activity type, location name, device name |
| Upload routes to Livelox (user-initiated) | GPX file |
| Notifications | No personal data |
All processing happens on your device. LoxBridge does not operate its own servers.
When you choose to upload a route, LoxBridge sends a GPX file to Livelox via HTTPS. The file may contain GPS coordinates, timestamps, and optional metadata (activity type, duration, distance, device name).
Livelox is operated by Livelox AB (Sweden). By uploading a route, your data becomes subject to Livelox's own privacy policy. LoxBridge has no control over how Livelox processes your data after upload.
OAuth tokens are stored securely in the iOS Keychain and are only sent to Livelox.
Apple's geocoding service may process GPS coordinates to provide place names, governed by Apple's own privacy policy.
No data is shared with advertisers, data brokers, or analytics providers.
| Location | Data stored | Access |
|---|---|---|
| Device (App Support) | GPX files | Private |
| UserDefaults | Route metadata, settings | Private |
| Keychain | OAuth tokens | Encrypted |
| Livelox servers | Uploaded routes | External |
All communication uses HTTPS (TLS). Deleting the app removes locally stored data from the device.
| Data | Retention |
|---|---|
| GPX files & route metadata | Until deleted or app uninstalled |
| OAuth tokens | Until disconnected or app removed |
| Livelox data | Controlled by Livelox |
You can revoke HealthKit access via iOS Settings, delete routes inside the app, disconnect Livelox, or uninstall the app entirely. Some rights regarding Livelox data must be exercised directly with Livelox.
You have the right to access, delete, restrict, port, and object to the processing of your data, and to withdraw consent at any time.
Legal basis: Explicit consent. Most data processing occurs locally on your device.
To exercise your rights: loxbridge.employee017@slmail.me
LoxBridge does not sell or share personal data as defined under CCPA/CPRA.
The app does not knowingly collect personal information from children and does not include account creation, social features, or advertising. Health and workout data is only processed locally or shared with Livelox when initiated by the user.
HealthKit data is used only for core app functionality, never for advertising or profiling, never sold, and only shared with Livelox when the user explicitly initiates an upload.
We may update this policy from time to time. The revision date above will be updated accordingly.
Developer: LoxBridge (independent developer)
Email: loxbridge.employee017@slmail.me
Country: Sweden