Privacy Policy

Last updated: January 2025

Overview

TrainAI ("we", "our", or "us") is committed to protecting your privacy. This policy describes how we collect, use, and protect your information when you use our training analytics platform.

Information We Collect

• Account Information: Email address, name, and password (encrypted)
• Fitness Data from Garmin Connect: Activities, heart rate data, training status, performance metrics, and device information - only what you authorize
• Training Analytics: Performance metrics and insights we calculate from your activities
• Usage Data: How you interact with our platform to improve our services
• Device Information: Browser type, IP address (anonymized), and general location (country/region only)

How We Use Your Information

• Provide personalized training insights and analytics
• Generate workout recommendations based on your fitness data
• Sync data with authorized third-party services (with your consent)
• Communicate important updates about our service
• Improve and optimize our platform

Data Security

We implement industry-standard security measures including:

• End-to-end encryption of sensitive data
• Secure credential storage with automatic expiration
• Regular security audits and updates
• Limited access to user data on a need-to-know basis
• Secure API connections with OAuth authentication

Third-Party Services and Garmin Connect Integration

We integrate with third-party services including Garmin Connect to enhance your training experience. When you connect your Garmin account:

• We access only the fitness data you authorize (activities, heart rate, performance metrics)
• Your Garmin credentials are never stored - we use secure OAuth tokens
• You can revoke access at any time through your Garmin Connect settings or our platform
• We use Garmin data solely for training analysis and insights
• We never sell, share, or transfer your data to third parties for marketing
• All data transfers use encrypted connections

Your Rights

You have the right to:

• Access your personal data at any time
• Request correction of inaccurate data
• Request deletion of your account and all associated data
• Export your data in standard formats (TCX, GPX, CSV)
• Revoke third-party service connections
• Opt out of non-essential communications

Data Retention

We retain your data for as long as your account is active or as needed to provide you services. You may request deletion at any time, and we will remove your data within 30 days of your request. When you disconnect from Garmin Connect, we immediately stop accessing new data from Garmin and remove stored OAuth tokens.

Compliance

We comply with applicable data protection regulations including GDPR (General Data Protection Regulation) and CCPA (California Consumer Privacy Act).

Contact Us

For privacy-related questions or concerns, please contact us at: privacy@trainai.ch

Changes to This Policy

We may update this policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes via email or platform notification.