Last updated: May 2026
When you sign in with WHOOP, we receive an access token and refresh token that allow us to read your WHOOP data on your behalf. We also store your WHOOP user ID and email address (if provided by WHOOP).
Your WHOOP data is fetched on demand when your AI assistant (Claude, ChatGPT, or another connected service) makes a request. We act as a bridge: data flows from WHOOP through our server to your AI assistant in real time. We do not store, cache, or analyze your health data.
We store your WHOOP authentication tokens (encrypted at rest), your subscription status, and a unique API key that identifies your connection. We do not store your sleep, recovery, strain, workout, or any other health data.
Payments are processed by Stripe. We do not see or store your credit card details. Stripe's privacy policy applies to payment processing.
Your data is shared only with the AI assistant you choose to connect (Claude via MCP, ChatGPT via OpenAPI, or others). We do not sell, rent, or share your data with anyone else.
All authentication tokens are encrypted using AES encryption. All connections use HTTPS. API access is rate-limited and gated by subscription status.
You can disconnect your WHOOP account at any time. When you cancel your subscription, your tokens are revoked and your data is deleted from our system. You can also email us to request immediate deletion.
For privacy questions or data deletion requests, email privacy@whoopconnect.ai.
← Back to WHOOP Connect