AiTri
 ← Back to App

Privacy Policy

We believe your data belongs to you. Here's exactly what we collect and why.

Contents

Data We Collect How We Use It Strava Integration Security Data Retention AI Processing Children Your Rights Policy Changes Contact Us
📅 Last updated: May 27, 2026

AiTri ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the AiTri application at aitri.app.

📋

Data We Collect

  • Account info: Your name, email address, and password (stored as a salted cryptographic hash — we never store plaintext passwords)
  • Strava activities: With your explicit authorization — workout type, distance, duration, heart rate, elevation, and calories
  • Apple Health data: Workout data you voluntarily import through the app
  • Chat messages: Conversations with your AI coach, stored to provide continuity across sessions
  • Training plans: Plans generated and saved within the app
🎯

How We Use It

We use your information solely to provide the AiTri service:

  • Display your training history and calendar
  • Generate personalized AI coaching and training plans
  • Analyze your fitness trends and provide insights
  • Maintain your conversation history with the AI coach
🔒 We do not sell, rent, or share your personal information with third parties for marketing purposes. Ever.
🟠

Strava Integration

AiTri connects to Strava via OAuth 2.0. When you connect your Strava account:

  • We request read-only access to your activities (activity:read_all)
  • Your Strava access token is stored securely to enable background syncing
  • You can revoke access at any time from your Strava settings page
  • Revoking access prevents future syncing but does not delete data already stored in AiTri
🔐

Security

  • All data stored in AWS DynamoDB (us-east-1, N. Virginia)
  • Passwords hashed with PBKDF2-HMAC-SHA256 and a unique random salt per user
  • All data transmitted over HTTPS with TLS 1.2+
  • Session tokens expire automatically after 30 days
🗄️

Data Retention

We retain your data for as long as your account is active. You may request deletion of your account and all associated data by contacting us at the email below. We will process deletion requests within 30 days.

🤖

AI Processing

Your fitness data and chat messages are processed by Amazon Bedrock (Claude AI) to generate coaching responses and training plans.

Amazon Bedrock does not use your data to train AI models. See the AWS Bedrock Privacy FAQ for full details.
👶

Children's Privacy

AiTri is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us immediately.

⚖️

Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and all data
  • Disconnect your Strava account at any time
  • Export your data upon request
📝

Policy Changes

We may update this Privacy Policy from time to time. We will notify users of significant changes by updating the "Last updated" date at the top of this page. Continued use of AiTri after changes constitutes acceptance of the updated policy.

✉️

Questions or Data Requests?

Contact us at privacy@aitri.app — we respond within 48 hours.