Entraso

Privacy Policy

Last updated: May 2024

HomeTerms

This policy explains what we collect, how we use and share it, and the choices you have. By using Entraso, you agree to this policy. If you do not agree, please stop using the service.

What we collect

  • Data you provide: AI chat messages, profile details, feedback, and any other content you submit directly to Entraso.
  • Data from connected accounts: If you choose to connect third-party fitness platforms or activity trackers, we collect activity data (GPS tracks, heart rate, pace), device information, and profile summaries. This data is submitted directly to us; these third-party platforms are not responsible for how we handle data once imported.
  • Inferred and aggregated data: performance insights, session summaries, training plans, and other outputs we create to deliver and improve the service.
  • Usage and device data: non-personally identifiable metrics about how you use the app, sent to Google Analytics to help us understand product usage.

How we use data

Our primary goal is to provide AI-powered coaching. We process data on the legal basis of performing our contract with you and yourexplicit consent.

  • Provide, personalize, and improve coaching experiences.
  • Generate session summaries, training plans, and suggestions.
  • Operate integrations you request with third-party platforms.
  • Respond to support requests and troubleshoot issues.
  • Analyze usage to improve reliability and performance.
  • Comply with legal obligations and enforce our Terms.

Note: We may use anonymized, non-third-party data to train our internal machine learning models (to improve our coaching algorithms). However, in strict compliance with their developer agreements, we explicitly do not use activity data imported from third-party fitness platforms to train any artificial intelligence or machine learning models. Your third-party data is used solely for inference to provide your personal insights.

Data ownership and rights

  • User Ownership: You continue to own the data you provide directly to Entraso.
  • Supplier Ownership: Data imported from third parties is owned by you or the third party (the Connected Platform) under their respective terms. We act as a processor for this data.
  • Ajax Ownership: We own derived data that we infer or aggregate, and all data we generate for you (e.g., AI session summaries, training plans, recommendations).
  • Usage Rights: For data we generate that you send to third parties, you receive a perpetual, irrevocable right to use that content.

Your GDPR & Privacy Rights

Regardless of your location, we aim to provide high standards of privacy protection. You have the right to:

  • • Access your personal data
  • • Rectify inaccurate data
  • • Request erasure ("Right to be forgotten")
  • • Restrict processing of your data
  • • Data portability (export your data)
  • • Object to automated decision-making
  • • Withdraw consent at any time
  • • Lodge a complaint with a supervisory authority

Sharing and disclosure

  • We do not share your personal data with third parties for their own purposes. We only share it as described below.
  • Single User Display: In accordance with third-party developer requirements, your activity data is only displayed to you. We do not surface your raw activity data from connected platforms to other users in public feeds or leaderboards.
  • Service providers: Cloud hosting (GCP, AWS) and analytics (Google Analytics). They only use data to provide services to us.
  • Third-party connections: Only when you explicitly choose to export data (e.g., sending an AI summary back to a connected platform).
  • We do not sell your personal data.

Storage and international transfer

Data is stored in cloud infrastructure (Google Cloud Platform, Amazon Web Services, or Microsoft Azure) primarily in the United States or Australia. If you are in the EU or UK, please note that your data will be transferred outside the EEA/UK. We use Standard Contractual Clauses (SCCs) and other safeguards to ensure a level of protection equivalent to that in your home jurisdiction.

Retention and deletion

  • You can request deletion of any data we hold about you at any time by emailing support@entraso.com.
  • We will action deletion requests within 30 days and will delete all data we hold except what is strictly required to confirm that your account has been deleted.

Access and security

Entraso employees may access your data (including AI chat logs and session summaries) as needed to provide support, ensure quality, or improve the service.

We use technical and organizational measures to protect your information, but no system is perfectly secure. Please use strong credentials and promptly revoke any integrations you no longer need.

Your choices

  • Disconnect third-party integrations at any time.
  • Request access, correction, or deletion by emailing us.
  • Opt out of non-essential communications by following unsubscribe links where available.

Children

Entraso is not directed to children under 13. We do not knowingly collect personal data from anyone under 13, or from users aged 13–15 without verifiable parental or guardian consent. If we learn we have collected such data, we may suspend or terminate the account and delete personal data as required by law.

Changes

We may update this policy from time to time. If changes are material, we will provide reasonable notice (for example, in-app or by email). Continued use of Entraso after changes become effective means you accept the updated policy.

Specific Platform Notices

Garmin Connect: Your use of Garmin Connect is subject to the Garmin Connect Privacy Notice. Data imported from Garmin is submitted to us, not Garmin, and Garmin has no liability for such data.

Strava: In accordance with Strava API requirements, your raw activity data is only displayed to you. We do not use any data obtained via the Strava API to train artificial intelligence or machine learning models.

Contact

Questions or requests? Email support@entraso.com and we will help.