Skip to main content
O

Privacy Policy

Last updated: March 14, 2026

1. Information We Collect

We collect the following types of information:

  • Account information: name, email address, and hashed password when you create an account.
  • Profile data: age, personal records, injury status, training goals, and availability preferences (athletes only).
  • Training data: workout completion status, race results, and coach notes.
  • Communications: messages exchanged between coaches and athletes through the platform.
  • Payment information: processed securely through Stripe. We do not store credit card numbers.
  • Usage data: activity logs, login timestamps, and IP addresses for security monitoring.

2. How We Use Your Information

We use your information to:

  • Provide and maintain the coaching platform
  • Facilitate communication between coaches and athletes
  • Process payments and manage subscriptions
  • Send transactional emails (password resets, account updates)
  • Monitor for security threats and abuse
  • Improve the Service based on usage patterns

3. Data Sharing

We do not sell your personal information. We share data only in these limited circumstances:

  • Coach-athlete relationship: athletes' profile and training data are visible to their linked coach.
  • Payment processing: billing information is shared with Stripe to process payments.
  • Legal requirements: we may disclose information if required by law or to protect rights and safety.

4. Data Security

We implement industry-standard security measures including: encrypted connections (TLS), hashed passwords (bcrypt), HTTP-only session cookies, and role-based access controls. However, no system is completely secure, and we cannot guarantee absolute security.

5. Data Retention

We retain your data for as long as your account is active. When you delete your account, we soft-delete your information and remove it from active use. Backups may retain data for up to 90 days after deletion.

6. Your Rights

You have the right to:

  • Access your personal data through the profile and settings pages
  • Update or correct your information at any time
  • Delete your account and associated data
  • Export your training data
  • Opt out of non-essential communications

7. Cookies

We use a single essential session cookie to maintain your login state. We do not use tracking cookies, advertising cookies, or third-party analytics cookies.

8. Third-Party Services

We use the following third-party services:

  • Stripe: payment processing
  • Google: OAuth authentication (optional)
  • Resend: transactional email delivery
  • Sentry: error monitoring and reporting

Each third-party service has its own privacy policy governing the data they process on our behalf.

9. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect information from children under 13. If a minor between 13 and 18 uses the Service, they should do so with parental consent.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of material changes via email or in-app notification. Continued use of the Service after changes constitutes acceptance.

11. Contact Us

For privacy-related questions, contact us through the in-app support page or email us at privacy@octaveathletics.com.

← Back to home