Last updated: June 7, 2026
Privacy Policy
STRIDEFORGE LLC ("we," "us") operates the STRIDEFORGE coaching platform. This Privacy Policy explains what we collect, how we use it, and your rights. By using the Service you consent to this Policy.
1. What We Collect
Account data: name, email, password hash, role (athlete/coach).
Athlete profile: goals, event, training history, PRs, nutrition profile, check-ins (feel, sleep, soreness, energy, notes), recruiting data for Elite tier (GPA, test scores, grad year, school targets).
Billing: Stripe customer ID, subscription status, billing period. Card numbers are handled by Stripe — we never see or store them.
Usage: pages visited, features used, error logs, IP address, device/browser metadata.
2. How We Use It
To deliver coaching (plans, feedback, recruiting support), process payments, send transactional email (invites, receipts, weekly digest), respond to support, monitor and secure the Service, and improve product quality. We do not sell your personal data.
3. Who We Share With
Service providers acting on our behalf: Supabase (hosting, database, auth), Stripe (payments), Resend (transactional email), Lovable (application hosting and infrastructure). Each is bound by data processing terms. We disclose information when required by law or to protect rights, safety, or property.
4. Coach Access
Athletes' training data, check-ins, and recruiting profiles are accessible to their assigned coach. This is fundamental to the coaching relationship and the point of the Service.
5. Minors
We knowingly collect data from athletes 13 and older. Athletes under 18 must have parental consent. Parents may request access, correction, or deletion of their minor's data at any time by emailing us.
6. Data Retention
We retain account and training data while your account is active and for up to 24 months after cancellation to support reactivation, billing reconciliation, and legal obligations. You may request earlier deletion (subject to legal hold requirements).
7. Security
Data is encrypted in transit (TLS) and at rest. Database access is gated by row-level security policies scoped to your user ID and coach assignment. No system is perfectly secure; we work hard, but cannot guarantee absolute security.
8. Your Rights
You may access, correct, export, or delete your data by emailing us. EU/UK residents have rights under GDPR (access, rectification, erasure, portability, restriction, objection). California residents have rights under the CCPA/CPRA (know, delete, correct, opt out of sale — we do not sell).
9. Cookies
We use first-party cookies and local storage for authentication sessions and app preferences. We do not use third-party advertising cookies.
10. International Transfers
Data is processed in the United States. By using the Service from outside the US you consent to this transfer.
11. Changes
We will notify you of material changes by email or in-app notice at least 14 days before they take effect.
12. Contact
STRIDEFORGE LLC · Phoenix, Arizona · Joseph.Walker@strideforge.org