Privacy Policy

Last Updated: December 9, 2025

1. Information We Collect

1.1 Account Information

  • Email Address: Used for account registration, login, and authentication
  • Password: Stored in encrypted form; we cannot view your plaintext password
  • Account ID: A unique identifier automatically generated by the system

1.2 Health and Fitness Data

With your authorization, we collect the following health and fitness data:

  • Activity type (running, cycling, swimming, etc.)
  • Distance, duration, and pace
  • Heart rate data (average and maximum heart rate)
  • Elevation gain

Important Note: Complete GPS route tracks are stored only on your device locally and are not uploaded to our servers. We only collect workout summary information (such as total distance, duration, etc.) to provide AI analysis services.

1.3 User Content

  • Chat History: Your conversations with the AI coach
  • Chart Data: Workout charts you upload for analysis

1.4 Third-Party Data Sources

If you choose to connect third-party services (such as Strava, Apple Health), we will obtain workout data from these services based on your authorization.

2. How We Use Your Information

2.1 Core Functions

  • Provide workout data analysis and visualization
  • Offer personalized training recommendations through AI
  • Synchronize and store your workout records
  • Manage your subscription and account

2.2 Service Improvement

  • Analyze usage patterns to improve AI analysis quality
  • Optimize App performance and user experience
  • Develop new features and services

2.3 What We Don't Do

  • We will NOT sell your personal information to third parties
  • We will NOT use your data for advertising tracking
  • We will NOT share your health data with unauthorized third parties

3. Data Security

3.1 Transmission Security

All data transmission uses HTTPS/TLS encryption to ensure data security during transmission.

3.2 Storage Security

  • Passwords are encrypted; we cannot view your plaintext password
  • Sensitive data is protected using industry-standard encryption technology
  • Regular security reviews and updates are conducted

3.3 Access Control

Only authorized personnel can access your data, and only to the minimum extent necessary to provide services.

4. Third-Party Services

4.1 Apple Health

If you choose to connect Apple Health:

  • We only read the health and fitness data you authorize
  • Data is used solely for the App's functionality
  • You can revoke authorization at any time in Settings

4.2 Strava

If you choose to connect Strava:

  • We use OAuth 2.0 secure authorization
  • We only read your workout data; we do not modify or delete it
  • We do not store your Strava login password
  • You can disconnect at any time in Settings
  • You can also revoke AI Coach's access directly on the Strava website
  • After disconnection, related data will be deleted from our servers

4.3 AI Service Providers

We use third-party AI services to provide training analysis:

  • We only transmit necessary workout data and conversation content
  • We do not transmit your personally identifiable information (such as name, email)
  • We follow strict data processing agreements

5. Your Rights

5.1 Right to Access

You can view your personal information and workout data in the App at any time.

5.2 Right to Modify

You can modify your personal information in Settings → Account Management.

5.3 Right to Delete

You can delete your account at any time:

  • Go to Settings → Account Management
  • Select "Delete Account"
  • After confirmation, we will delete all your data immediately

5.4 Revoke Authorization

You can revoke authorization to Apple Health or Strava at any time:

  • Disconnect in Settings → Data Sources
  • Or manage in iOS Settings → Privacy & Security

6. Data Retention

6.1 Retention Period

  • Account Information: Retained for 30 days after account deletion

6.2 Backup and Disaster Recovery

We regularly backup data to prevent accidental loss. Backup data is also protected by encryption.

7. Children's Privacy

The App does not offer services to children under 13 years of age. If we discover that we have inadvertently collected information from children, we will delete it immediately.

8. International Data Transfer

Your data may be stored on servers in different countries. We ensure all data transfers comply with applicable data protection regulations.

9. Policy Updates

We may update this Privacy Policy from time to time. Significant changes will be notified to you through the following means:

  • Displaying notifications in the App
  • Sending emails to your registered email address
  • Updating the "Last Updated" date at the top of this page

10. Legal Basis (Applicable to GDPR)

If you are located in the European Union, the legal basis for processing your personal data includes:

  • Contract Performance: Providing the services you subscribe to
  • Consent: You authorize us to access health data
  • Legitimate Interests: Improving service quality and security

11. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

  • Email: support@ifunplay.com
  • Company Name: IFUNPLAY CO., LTD.
  • Address: Taiwan, R.O.C.

Response Time: We will respond to your request within 7 business days.