Apple · Apple Privacy Policy

Health and Fitness Data Collection

High severity
Share 𝕏 Share in Share

What it is

If you choose to use health-related features such as HealthKit, Health Records, and others, we collect data about your health and fitness such as physical activity, heart rate, menstrual cycles, and similar data.

Why it matters

Health data is among the most sensitive categories of personal information, and its collection by a technology company creates significant privacy and regulatory risk, particularly regarding secondary uses, data breaches, and law enforcement access.

Consumer impact

Apple collects a broad range of personal data including location, health and fitness information, financial data, voice recordings, and browsing and search history across its entire ecosystem of devices and services, and shares this information with Apple subsidiaries worldwide, app developers, business partners, and advertisers. While Apple publicly commits to not selling personal data, the policy permits extensive intra-group sharing and third-party disclosures that may not be fully transparent to average consumers. You can review, download, correct, or delete your personal data by visiting privacy.apple.com and signing in with your Apple ID.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
  • Delete Your Data
    Open the Health app, tap your profile picture, scroll to 'Privacy', tap 'Apps' to manage which apps can access health data, or go to Settings > Privacy & Security > Health to revoke permissions. To delete all health data, go to Health app > profile > Health Data > Delete All Data from iPhone.

Applicable agencies

  • FTC
    The FTC enforces against unfair or deceptive health data practices under Section 5 of the FTC Act and the Health Breach Notification Rule, directly applicable to Apple's collection of sensitive health and fitness data.
    File a complaint →
  • State AG
    State attorneys general have authority over health data privacy violations under state consumer protection laws, including Washington's My Health MY Data Act and California's CPRA sensitive personal information provisions.
    File a complaint →

Provision details

Document information
Document
Apple Privacy Policy
Entity
Apple
Document last updated
March 24, 2026
Tracking information
First tracked
March 6, 2026
Last verified
April 4, 2026
Record ID
CA-P-001957
Document ID
CA-D-00024
Evidence Provenance
Source URL
https://www.apple.com/legal/privacy/en-ww/
Wayback Machine
View archived versions →
SHA-256
36e54b8290f2d5f4441e7bfd5492920450a4d5b256d9353a74fa7946d1065115
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: Apple | Document: Apple Privacy Policy | Record: CA-P-001957
Captured: 2026-03-06 20:19:48 UTC | SHA-256: 36e54b8290f2d5f4…
URL: https://conductatlas.com/platform/apple/apple-privacy-policy/health-and-fitness-data-collection/
Accessed: April 4, 2026
Classification
Severity
High
Categories
Unknown

Other provisions in this document