Privacy Policy

Last Updated: March 13, 2025

Table of Contents

1. Introduction
2. Information We Collect
3. How We Use Your Information
4. Training Data and Automated Processing
5. Your Privacy Rights
6. Regional Privacy Rights
7. Data Security
8. International Data Transfers
9. Third-Party Services
10. Children's Privacy
11. Changes to This Policy
12. Contact Us

Introduction

This privacy policy applies to the Speed AI app ("Application") created by Speed AI, Inc. ("Service Provider", "we", "us", or "our") as a Freemium service. This policy explains how we collect, use, protect, and share your information when you use our Application.

Medical Disclaimer

Not Medical Advice
The content provided by the Speed AI app (“Application”), including workout recommendations and fitness advice, is for general informational and educational purposes only. It should not be considered medical advice, a medical diagnosis, or a treatment recommendation. Always consult a qualified healthcare professional before beginning any exercise program, making changes to your diet, or making decisions about your health.

Use at Your Own Risk
By using the Application, you acknowledge and agree that your use of any information or services provided by Speed AI, Inc. is solely at your own risk. We are not responsible for any adverse health outcomes that may occur from following suggestions or recommendations within the Application.

Consult Professionals
If you have concerns regarding your health, existing medical conditions, or any uncertainty about the suitability of a particular exercise or nutrition program, please seek advice from a licensed physician or other qualified healthcare provider.

Information We Collect

User-Provided Information

• Email address
• Age
• Gender
• First name
• Training preferences and goals
• Physical fitness information
• Workout history, including data from connected third-party services like Garmin (if enabled by the user)

Automatically Collected Information

• Device's Internet Protocol (IP) address
• Application usage data
• Device location (with consent)
• Operating system information
• Time and duration of Application use

Training-Related Information

We collect specific information to generate and optimize your training plans:

• Current fitness level
• Training history and preferences
• Physical conditions or limitations
• Performance metrics
• Training goals and availability

HealthKit Integration

If you choose to connect your Apple HealthKit data with the Application, please note the following:

Scope of Data Collection

• We only access HealthKit data that you explicitly grant permission to share, such as workouts or nutrition metrics.
• You can revoke or modify these permissions at any time in your device’s Health app settings.

Use of HealthKit Data

• HealthKit data is used solely to provide or enhance fitness and training recommendations.
• We do not use HealthKit data for advertising or marketing purposes under any circumstances.
• We will never sell HealthKit data to third parties or use it for data mining beyond the scope of providing personalized fitness services.

Data Storage and Security

• Any HealthKit data you grant access to is stored securely in compliance with our Data Security measures.
• We apply the same encryption, access controls, and incident response procedures outlined above to all HealthKit data.

Third-Party Sharing

• We do not share HealthKit data with third parties without your explicit consent, except where required by law.
• If we ever collaborate with third parties (e.g., research institutions), your HealthKit data will be anonymized and aggregated before sharing.

Deletion of HealthKit Data

• You can request deletion of your HealthKit data at any time by contacting us at dpo@getspeed.ai.
• Upon request, we will permanently erase your HealthKit data from our systems and notify you once the deletion is complete.

By integrating HealthKit data, you benefit from more accurate insights and personalized training plans. However, the decision to share HealthKit data is entirely yours, and you retain full control over your data through the Apple Health app settings.

How We Use Your Information

Essential Uses

• Creating and managing your account
• Generating personalized training plans
• Providing core Application functionality
• Ensuring Application security

Additional Uses (With Your Consent)

• Sending marketing communications
• Providing personalized content and recommendations
• Analyzing training patterns for service improvement
• Sharing anonymized data for research

Legal Bases for Processing (GDPR)

We process your information based on:

• Contract performance (providing training services)
• Legal obligations
• Legitimate interests
• Your explicit consent

Training Data and Automated Processing

AI and Machine Learning

• We use automated processing to generate personalized training plans
• Our AI models analyze your training data to optimize recommendations
• You can request human review of any automated decisions
• Training data is used to improve our algorithms in an anonymized form

Data Retention

• Account data: Retained while your account is active
• Training data: Stored for 24 months after last use
• Usage data: Kept for 12 months
• Marketing preferences: Maintained until consent withdrawal

Location Data Use

We collect and use location information, with your explicit permission, to enhance your workout experience:

1. Purpose of Collection

   • The Application’s workout tracker uses your device’s GPS or other location services to record your running routes, distance, pace, and other related metrics.
   • This data helps us provide you with real-time feedback, route mapping, and historical workout records.

2. User Consent

   • We do not access your location data unless and until you grant permission via your device’s operating system prompts.
   • You can revoke or modify location permissions at any time in your device’s settings (, Settings > Privacy > Location Services).

3. How We Use Location Data

   • Location data is used solely to calculate and display detailed workout statistics for your personal use, such as distance traveled, route, and pace.
   • We do not use or share location data for advertising, marketing, or any unrelated purposes.

4. Storage and Retention

   • Location data associated with your workouts may be stored on our servers to enable workout history and analysis over time.
   • We retain such data in accordance with our Data Retention policy—generally for 24 months after your last use, unless you request deletion sooner.

5. Third-Party Sharing

   • We do not share your location data with third parties without your explicit consent, except as required by law or as necessary to provide the core functionality (e.g., map rendering via a third-party provider).
   • In cases where a third-party provider is involved, we ensure they adhere to strict data protection and confidentiality obligations.

6. Opting Out or Disabling Location Services

   • If you do not wish to share your location, you may decline the permission request when prompted or disable location access in your device’s settings.
   • Note that disabling location services may limit or disable certain features of the workout tracker.

Your Privacy Rights

Basic Rights

• Access your personal data
• Correct inaccurate information
• Delete your account and data
• Export your data
• Withdraw consent for optional processing

How to Exercise Your Rights

Email dpo@getspeed.ai with your request. We will:

• Respond within 30 days
• Verify your identity
• Process your request free of charge
• Document your request and our response

Regional Privacy Rights

European Union (GDPR)

You have the right to:

• Access your personal data
• Rectify inaccurate data
• Erase your data ("right to be forgotten")
• Restrict processing
• Data portability
• Object to processing
• Lodge a complaint with a supervisory authority

California (CCPA)

You have the right to:

• Know what personal information is collected
• Know if personal information is sold or disclosed
• Say no to the sale of personal information
• Access your personal information
• Request deletion
• Equal service and price (no discrimination)

To exercise your California rights, email dpo@getspeed.ai or call +1 (249)-505-0772.

Data Security

We implement robust security measures to safeguard your personal information. Our security protocols are designed to comply with industry standards and regulatory requirements:

1. Encryption in Transit and at Rest

   • All data transmitted through our Application is encrypted using industry-standard protocols (e.g., TLS/SSL).
   • We use encryption at rest to protect stored data on our servers.

2. Access Controls and Authentication

   • Only authorized personnel have access to our data systems.
   • We employ multi-factor authentication to verify staff identities.

3. Regular Security Assessments

   • We perform periodic internal and external security audits to identify vulnerabilities.

4. Employee Training

   • We enforce strict confidentiality and data protection obligations.

5. Incident Response Procedures

   • We will notify affected users (and relevant regulatory authorities if required) within 72 hours of discovering a data breach, providing details on the type of data involved and our mitigation steps.

6. Data Minimization

   • We collect only the data necessary to provide or improve our services.
   • We regularly review and delete data that is no longer needed.

These measures help ensure that your personal information, including health and fitness data, remains secure at all times.

Security Incident Response

If a data breach occurs, we will:

• Notify affected users within 72 hours
• Provide specific details about affected data
• Outline steps taken to address the incident
• Offer guidance on protecting your information

International Data Transfers

• Data is stored in the USA.
• EU data transfers comply with Standard Contractual Clauses
• We maintain appropriate safeguards for international transfers
• You can request information about transfer mechanisms

Third-Party Services

We use third-party Service Providers to help deliver, monitor, and analyze the use of our Service. These providers operate independently from us and have their own privacy policies governing their practices. Below are the third-party services we currently use:

PostHog (Privacy Policy)

Purpose

• We use PostHog to understand how users interact with our Application.
• PostHog collects aggregated usage statistics such as page visits, feature usage, and other analytics data.

Data Shared

• Device and usage information (e.g., IP address, operating system, time spent in the app).
• No direct personal identifiers (e.g., name, email) are shared unless necessary to provide the analytics service.

How We Use the Data

• We analyze this information to improve the Application’s performance, troubleshoot technical issues, and enhance user experience.

Resend (Privacy Policy)

Purpose

• We use Resend to send emails related to account registration, password resets, transactional messages, and (with your consent) marketing communications.

Data Shared

• Your email address and any other necessary information (e.g., first name) to personalize and deliver messages.

How We Use the Data

• Resend processes your email information solely to facilitate email delivery on our behalf.
• They do not have permission to use your data for their own marketing or to share it with other third parties beyond what is necessary to deliver our emails.

Important Note: We encourage you to review each provider’s privacy policy linked above to understand how they handle your data. By using our Application, you acknowledge and agree to the third-party providers’ privacy practices, to the extent they are applicable. If you have any concerns or wish to opt out of certain data-sharing activities, please contact us at dpo@getspeed.ai.

Garmin (Privacy Policy)

Purpose

• We use Garmin to allow users to sync their workout data between their Garmin account and Speed AI.
• We allow users to import fitness and health metrics and training history from Garmin to enhance their training plans within the Application.
• This integration is optional and requires the user's explicit consent.

Data Shared

• Workout data, such as exercise type, duration, distance, and other related metrics.
• When pushing data to Garmin: Workout data recorded in Speed AI, including exercise type, duration, distance, and other metrics.
• No direct personal identifiers are shared beyond what is necessary to facilitate the sync.

How We Use the Data

• The synced workout data is used to enhance the user's training plans and provide more accurate fitness recommendations within the Application.
• When pushing workouts to Garmin, the data is sent to the user's Garmin account for their personal use and records.
• Garmin processes this data solely to enable the sync functionality and does not use it for their own marketing or share it with other third parties beyond what is necessary to provide the service.

Important Note: We encourage you to review each provider’s privacy policy linked above to understand how they handle your data. By using our Application, you acknowledge and agree to the third-party providers’ privacy practices, to the extent they are applicable. If you have any concerns or wish to opt out of certain data-sharing activities, please contact us at dpo@getspeed.ai.

Data Sharing

We share data with third parties only:

• With your explicit consent
• To provide requested services
• To comply with legal obligations
• To protect rights and safety

No IDFA or Cross-App Tracking

We do not collect the Identifier for Advertisers (IDFA) or engage in cross-app tracking for advertising or marketing purposes. Your data is never used to track you across different applications or websites for targeted ads. If we decide to implement such features in the future, we will:

• Clearly notify you of any changes to our data practices,
• Obtain your explicit consent in accordance with Apple’s App Tracking Transparency (ATT) framework, and
• Update this Privacy Policy accordingly.

Children's Privacy

• We do not knowingly collect data from children under 13
• Parents/guardians can contact dpo@getspeed.ai about children's data
• We will delete any inadvertently collected children's data
• Users must be 13 or older to use the Application

Changes to This Policy

• We will notify you of material changes via email
• Changes will be effective 30 days after notification
• Continued use indicates acceptance of changes
• Previous versions will be archived and available upon request

Contact Us

For privacy-related matters:

• Email: dpo@getspeed.ai
• Address: 169 Madison Ave STE 11203
• Phone: +1 (249)-505-0772

Response timeframes:

• General inquiries: 2 business days
• Rights requests: 30 days
• Complaint resolution: 30 days