Privacy Policy

At Treni, we value your privacy. This privacy policy describes how we collect, use, and protect your personal data when you use our services.

1. What data do we collect?

Account data

When you create an account, we collect:

• Name and email address
• Profile photo (if you upload one or log in via Google)
• Password (stored encrypted)
• Language preference

Training data

To create personalized training plans, we collect:

• Experience level and training goals
• Available training hours and preferred days
• Completed trainings and activities
• Performance metrics such as distance, pace, heart rate, and elevation
• GPS routes (if available)

Third-party integrations

If you choose to connect external services, we may receive data from:

• Garmin Connect: Training data, activities, and performance statistics that you sync
• Google Account: Name, email address, and profile photo when you log in with Google

2. What do we use your data for?

We use your data for the following purposes:

• Service delivery: Creating and managing your account, generating personalized training plans
• Personalization: Adapting trainings to your level, availability, and goals
• Track progress: Showing statistics and progress towards your goals
• Communication: Sending training reminders and important account notifications (if enabled)
• Improvement: Analyzing usage patterns to improve our services

3. How do we protect your data?

We take the security of your data seriously and have implemented the following measures:

• All data is transmitted encrypted via HTTPS
• Passwords are hashed using modern algorithms
• Our database has Row Level Security (RLS) enabled
• Access to data is limited to what is strictly necessary
• Regular security audits and updates

4. Who do we share your data with?

We never sell your data to third parties. We may share data with:

• Service providers: Parties that help us deliver our services (hosting, email), under strict confidentiality agreements
• Integration partners: Only the data necessary for the integrations you choose (such as Garmin)
• Legal obligations: If we are legally required to do so

5. Your rights

Under the GDPR (General Data Protection Regulation), you have the following rights:

• Access: You can request what data we have about you
• Correction: You can have incorrect data corrected
• Deletion: You can request that your data be deleted
• Portability: You can request a copy of your data
• Objection: You can object to certain uses of your data

To exercise these rights, you can contact us at the email address at the bottom of this page.

6. Cookies and tracking

We only use functional cookies that are necessary for the website to function, such as:

• Session cookies to keep you logged in
• Language preference cookie

We do not use tracking cookies or third-party analytics that can personally identify you.

7. Retention periods

We retain your data as long as your account is active. After deleting your account, your data will be permanently deleted within 30 days, unless we are legally required to retain it longer.

8. Changes to this policy

We may update this privacy policy from time to time. For significant changes, we will notify you via email or a notification in the app. The date at the top of this document indicates when the policy was last updated.

9. Contact

Do you have questions about this privacy policy or would you like to exercise your rights? Contact us:

• Email: privacy@treni.app