STRIDEFORGE
TermsPrivacyRefunds

Last updated: June 7, 2026

Privacy Policy

STRIDEFORGE LLC ("we," "us") operates the STRIDEFORGE coaching platform. This Privacy Policy explains what we collect, how we use it, and your rights. By using the Service you consent to this Policy.

1. What We Collect

Account data: name, email, password hash, role (athlete/coach).
Athlete profile: goals, event, training history, PRs, nutrition profile, check-ins (feel, sleep, soreness, energy, notes), recruiting data for Elite tier (GPA, test scores, grad year, school targets).
Billing: Stripe customer ID, subscription status, billing period. Card numbers are handled by Stripe — we never see or store them.
Usage: pages visited, features used, error logs, IP address, device/browser metadata.

2. How We Use It

To deliver coaching (plans, feedback, recruiting support), process payments, send transactional email (invites, receipts, weekly digest), respond to support, monitor and secure the Service, and improve product quality. We do not sell your personal data.

3. Who We Share With

Service providers acting on our behalf: Supabase (hosting, database, auth), Stripe (payments), Resend (transactional email), Lovable (application hosting and infrastructure). Each is bound by data processing terms. We disclose information when required by law or to protect rights, safety, or property.

4. Coach Access

Athletes' training data, check-ins, and recruiting profiles are accessible to their assigned coach. This is fundamental to the coaching relationship and the point of the Service.

5. Minors

We knowingly collect data from athletes 13 and older. Athletes under 18 must have parental consent. Parents may request access, correction, or deletion of their minor's data at any time by emailing us.

6. Data Retention

We retain account and training data while your account is active and for up to 24 months after cancellation to support reactivation, billing reconciliation, and legal obligations. You may request earlier deletion (subject to legal hold requirements).

7. Security

Data is encrypted in transit (TLS) and at rest. Database access is gated by row-level security policies scoped to your user ID and coach assignment. No system is perfectly secure; we work hard, but cannot guarantee absolute security.

8. Your Rights

You may access, correct, export, or delete your data by emailing us. EU/UK residents have rights under GDPR (access, rectification, erasure, portability, restriction, objection). California residents have rights under the CCPA/CPRA (know, delete, correct, opt out of sale — we do not sell).

9. Cookies

We use first-party cookies and local storage for authentication sessions and app preferences. We do not use third-party advertising cookies.

10. International Transfers

Data is processed in the United States. By using the Service from outside the US you consent to this transfer.

11. Changes

We will notify you of material changes by email or in-app notice at least 14 days before they take effect.

12. Contact

STRIDEFORGE LLC · Phoenix, Arizona · Joseph.Walker@strideforge.org