Forgerise Privacy Policy

1. Definitions

• Personal Data: Any information that identifies or can identify an individual (e.g., name, email).
• Activity Data: Data derived from your workouts—distance, duration, heart rate, GPS, power, etc.
• Wellness Data: Health and recovery metrics such as sleep, mood, soreness, HRV, menstrual cycle, etc.
• Usage Data: Log and diagnostic data generated by your interaction with our Service (e.g., IP address, device type, pages visited).
• Cookies & Tracking Technologies: Small files or scripts stored on your device to recognize you and track usage.

2. Information We Collect

3. How We Use Your Information

• Provide & maintain the Service (user account management, plan generation, data storage).
• Personalize training plans and AI insights based on your history and goals.
• Analyze & improve features, performance, and user experience.
• Communicate with you about updates, support requests, and marketing (if opted-in).
• Protect against fraud, abuse, and security incidents.

4. Legal Basis for Processing (GDPR)

If you are in the EEA, we rely on:

• Contract: To deliver the Service you request.
• Consent: For marketing communications and non-essential cookies.
• Legitimate Interests: Improving Service functionality and fraud prevention.
• Legal Obligation: Compliance with laws and regulations.

5. Sharing & Disclosure

• Service Providers: Hosting, analytics, email, payment processors (e.g., AWS, Google Cloud, Stripe, SendGrid).
• Third-Party Integrations: Data import/export to platforms you authorize (e.g., Polar, Coros).
• Legal Requirements: When required by law or to protect rights, property, or safety.
• Business Transfers: In the event of merger, sale, or asset transfer (with notice).

We do not sell your Personal Data to third parties.

6. Cookies & Tracking

We use cookies and similar technologies to operate the Service, remember your preferences, and gather analytics. You can manage cookie settings in your browser or via our Cookie Policy (link). Essential cookies are required for core functionality; others require your consent.

7. Data Retention

We retain your Personal, Activity, and Wellness Data as long as your account is active or needed to provide the Service. Usage Data and logs are retained for up to 24 months for analytics and security. You can delete your account and all associated data at any time from your settings.

8. International Data Transfers

Your information may be stored or processed in countries outside your residence. We implement appropriate safeguards (Standard Contractual Clauses, encryption) to ensure adequate data protection.

9. Your Rights (GDPR/CCPA)

Depending on your jurisdiction, you may have the right to:

• Access, rectify, or delete your Personal Data.
• Restrict or object to processing.
• Data portability.
• Withdraw consent at any time (for marketing communications or cookies).

To exercise any right, please contact privacy@forgerise.com.

10. Security

We implement industry-standard technical and organizational measures (encryption in transit and at rest, secure authentication) to protect your data. However, no system is infallible; please use strong, unique passwords and enable two-factor authentication where available.

11. Children’s Privacy

Our Service is not intended for children under 16. We do not knowingly collect data from minors. If you believe we have data from a child under 16, please contact us to have it removed.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or in-app notification and update the “Effective Date.” Your continued use after changes constitutes acceptance.

13. Contact Us

Thank you for trusting Forgerise with your training data—your privacy and performance are our top priority.