Privacy Policy

Last updated: 11 June 2026

Tempo AI is an AI training coach for endurance athletes. This policy explains what personal data we collect, who we share it with, how long we keep it, and the choices you have. We aim to keep this short and plain.

1. Data we collect

To provide AI coaching tailored to you, we collect the categories below. We list each category in detail so you know exactly what is stored about you.

1.1 Account & identifiers

Email address
Name
An internal athlete identifier (slug) used to scope your data
Your intervals.icu athlete ID, when you connect intervals.icu
Your intervals.icu API key or OAuth token,stored so we can sync your training data on your behalf. Treated as a sensitive credential and protected by row-level security.
Your Strava athlete ID, when you connect Strava
Your Strava OAuth access token and refresh token,stored so we can sync your activity data on your behalf. Treated as a sensitive credential and protected by row-level security.
Your Garmin user ID, when you connect Garmin Connect
Your Garmin OAuth access and refresh tokens, stored so we can sync your training and recovery data on your behalf. Treated as a sensitive credential and protected by row-level security.
Your WHOOP user ID, when you connect WHOOP
Your WHOOP OAuth access and refresh tokens, stored so we can sync your recovery, sleep, and workout data on your behalf. Treated as a sensitive credential and protected by row-level security.

1.2 Athlete profile you enter in the app

Age
Weight (kg)
Primary sport mode (triathlon, running, or duathlon)
Race type (e.g. sprint, Olympic, 70.3, T100, Ironman, 5K, 10K, half marathon, marathon)
Race event name and race date
Training start date
Weekly hours target
Race targets,goal finish time and optional split goals
Workout-format preferences (HR / power / pace targets, time vs. distance units)
Resistance-training opt-in
Hot-climate residency and observance of Ramadan (used to switch coaching rules; both default off)
Timezone
Free-text coach context you provide or that the coach saves on your behalf, including: known injuries, success/motivation goals, training environment, work schedule, training philosophy, equipment, milestones, and any custom notes

1.3 Sport-specific training thresholds

Synced from your intervals.icu sport settings and/or computed by us:

FTP (functional threshold power, watts)
Critical swim speed (seconds per 100 m)
LTHR (lactate-threshold heart rate, bpm)
Maximum heart rate (bpm)

1.4 Completed activities (synced from intervals.icu, Strava, or Garmin)

For each workout you complete:

Activity ID, start date/time, type (Ride, Run, Swim, VirtualRide, etc.), and name
Elapsed time and moving time
Distance (metres) and total elevation gain
Average and maximum heart rate
Average cadence and average speed
Calories
Perceived exertion (RPE, 1–10)
Indoor/trainer flag
FTP recorded against the activity
Training load (TSS), weighted average watts (normalised power), and intensity factor
ATL and CTL values recorded after the activity
Total work in joules
Time-in-zone breakdowns for power, heart rate, and pace
A 5-zone heart-rate histogram we compute from the raw heart-rate stream, plus the LTHR value used to compute it (audit only)
Rolling FTP, critical power, and W′ (anaerobic work capacity) where available
TRIMP (heart-rate-based training load)
Aerobic decoupling percentage
Link to the planned workout this activity corresponds to, if any
Source flag indicating which platform the activity came from (intervals.icu, Strava, Garmin, or manual)

1.5 Planned workouts (synced from intervals.icu)

Event ID, start date, category (workout / race / note), type, name, and description
Planned duration and planned training load (TSS)
ATL/CTL projections
The full structured workout document (intervals, targets, repeats)
Pairing with the completed activity (or activities, for bricks) that fulfilled it

1.6 Daily wellness data (synced from intervals.icu)

If you log wellness in intervals.icu or via a device you have connected to intervals.icu (such as Oura), we ingest:

Weight (kg)
Resting heart rate
Heart-rate variability (RMSSD and SDNN)
Sleep duration and sleep quality
Readiness score (from your device, if provided)
VO₂ max and SpO₂
Self-reported fatigue, soreness, mood, motivation, stress, and injury ratings
Daily step count
Free-text comments you write on the wellness entry

This wellness data reaches us only through your intervals.icu connection and reflects whatever you have logged in, or connected to, intervals.icu. It is separate from the direct Garmin Connect integration described in section 1.13, whose recovery scope is limited to resting heart rate, heart-rate variability (HRV), and sleep duration.

1.7 Daily fitness & fatigue metrics (synced from intervals.icu)

CTL (chronic training load / fitness)
ATL (acute training load / fatigue)
TSB (training stress balance / form)
Ramp rate and supporting load values

1.8 Training plans and phases

Training phases (Base, Build, Peak, Taper, etc.) with start/end dates, weekly hour targets, goals, and notes
Planned workouts authored or suggested through the app (sport, date, duration, TSS, distance, target zone, description)
Race plan documents (markdown) generated for you and the timestamp they were last updated
Whether a post-race debrief reminder has been sent

1.9 AI coach conversations and proposals

Every message you send to the AI coach and every reply it returns, with role (you / assistant), the sport mode active at the time, timestamps, and any structured metadata about the turn
Draft plan changes ("proposals") that the coach suggests,the proposal type (create / modify / delete / context update / phase plan / phase clear / profile toggle), the target workout, the payload (full workout spec or diff), the coach’s rationale, status (pending / applied / rejected / snoozed), and any rollback information needed to undo an applied change

1.10 Onboarding and sync state

Onboarding step you have reached
Status, timestamps, and any error messages from your last sync with intervals.icu or Strava

1.11 Service operational telemetry

Per-message telemetry from the AI coach (model used, token counts, cache usage, estimated cost, latency, internal routing/bucket tags). This is tied to your athlete ID for billing and reliability monitoring; the message text itself is stored separately under section 1.9.

1.12 Connecting Strava (direct)

When you authorise a direct Strava connection, Strava becomes a named source of your training data. Only after you authorise it via OAuth, we store your Strava athlete ID and your Strava OAuth access and refresh tokens (see 1.1), and we read:

Your Strava athlete profile (the identity and basic account details Strava returns).
Your Strava activities — type, date/time, duration, distance, heart rate, power, cadence, calories, and the other workout fields listed in section 1.4.

We use Strava data solely to provide personalised coaching to you. We do not use it to train, fine-tune, or improve any AI/ML model; we do not sell or rent it; and we request only the data our coaching features need. Disconnecting Strava in Settings immediately deletes the stored tokens, and you can purge every Strava-sourced activity from the same screen; deleting your account removes everything. We honour Strava’s deauthorisation webhook and delete your stored Strava data on receipt. See the “Use of Strava data with AI” commitment in section 5.

1.13 Connecting Garmin Connect (direct)

When you authorise a direct Garmin Connect connection, Garmin becomes a named source of your training and recovery data. Only after you authorise it via OAuth, we store your Garmin user ID and your Garmin OAuth tokens (see 1.1), and we collect:

Activity & workout data via Garmin’s Activity and Training APIs — activity type, duration, distance, heart rate, power, cadence, calories, training load, and planned/structured workouts.
Recovery metrics via Garmin’s Health API, limited to resting heart rate, heart-rate variability (HRV), and sleep duration.

We request the Garmin Health API data specifically for the coaching use case: the AI coach adjusts your training load and recommendations based on your recovery state (resting heart rate, HRV, and sleep). We do not request any other Garmin health data — no body composition or weight, no pulse-ox/SpO₂, respiration, stress, Body Battery, VO₂ max, or steps.

We use Garmin data solely to provide personalised coaching to you. We do not use it to train, fine-tune, or improve any AI/ML model; we do not sell or rent it; and we request only the data our coaching features need. Disconnecting Garmin in Settings immediately deletes the stored tokens, and you can purge every Garmin-sourced activity from the same screen; deleting your account removes everything. We honour Garmin’s user deregistration and data-deletion signals and delete your stored Garmin data on receipt.

1.14 Data you enter in the app (daily wellness check-in)

Separately from any connected provider, Tempo AI offers an in-app daily wellness check-in. The values you enter here are self-reported by you and are not obtained from Garmin, Strava, or any other third party:

Fatigue
Soreness
Mood
Perceived sleep quality
Free-text notes

The coach uses these self-reported inputs alongside your training data to tailor its recommendations.

1.15 Connecting WHOOP (direct)

When you authorise a direct WHOOP connection, WHOOP becomes a named source of your recovery, sleep, and workout data. You authorise the connection on WHOOP’s own site via OAuth — we never see your WHOOP password. Only after you authorise it, we store your WHOOP user ID and your WHOOP OAuth tokens (see 1.1), and we read (read-only):

Recovery — recovery score, heart-rate variability (RMSSD), resting heart rate, and blood oxygen (SpO₂).
Sleep — sleep duration and sleep performance.
Workouts — sport, start/end time, duration, average and maximum heart rate, distance, and energy.
Body measurement — weight.
Basic profile — your WHOOP user ID and first name.

We do not read GPS routes (WHOOP does not provide them through these scopes), we do not request WHOOP’s cycles/day-strain scope, and we ignore skin temperature. A direct WHOOP connection is only available when intervals.icu is not connected, so your recovery data always has a single source. You can connect WHOOP and Strava at the same time; if the same workout arrives from both, we keep the Strava copy and discard the duplicate.

We use WHOOP data solely to power your own readiness score, your body-stats display, and the AI coach’s context. We do not use it to train, fine-tune, or improve any AI/ML model; we do not sell or rent it; and we request only the data our coaching features need. Disconnecting WHOOP in Settings immediately and automatically deletes all WHOOP-sourced data we hold for you (recovery/wellness entries and WHOOP-imported workouts) and revokes our access token at WHOOP; deleting your account does the same as part of the full wipe. While connected, we keep a rolling 90-day window of your WHOOP wellness data, and WHOOP-imported workouts within the same window. See the “Use of WHOOP data with AI” commitment in section 5.

WHOOP is a trademark of WHOOP, Inc. Tempo AI is not affiliated with, endorsed by, or sponsored by WHOOP.

1.16 Connecting Apple Health (iOS)

On iOS, Tempo AI can optionally connect to Apple Health (HealthKit). You choose whether to connect: the app asks for your permission through the standard iOS Health prompt, and connecting is never required to use Tempo AI. Our access is read-only; we never write data to Apple Health. With your permission, we read:

Workouts: type, duration, distance, and calories.
Resting heart rate
Heart-rate variability (HRV)
Sleep duration
Active energy burned

We use Apple Health data solely to provide personalised coaching to you: the AI coach tunes its training and recovery recommendations to this data inside Tempo AI, and nothing else. It is stored in our Supabase backend alongside the rest of your training data. We never sell Apple Health data, never use it for advertising, never share it with data brokers, and never use it for tracking. We do not use it to train, fine-tune, or improve any AI/ML model.

You can revoke access at any time on your iPhone in Settings → Privacy & Security → Health → Tempo AI; Tempo AI then receives no further Apple Health data. Deleting your account removes all stored Apple Health data along with the rest of your personal data. See the “Use of Apple Health data with AI” commitment in section 5.

Apple Health and HealthKit are trademarks of Apple Inc. Tempo AI is not affiliated with, endorsed by, or sponsored by Apple.

We do not collect payment card details directly. If a payment provider is added in the future, this policy will be updated before any payment data is processed.

2. Authentication providers

We use Sign in with Google to let you create and sign into your Tempo account. When you sign in with Google, we receive:

Your email address — used as your unique identifier in our system.

We do not receive any other information from your Google account — no contacts, no calendar, no photos, no location, no browsing history. You can disconnect Google at any time by deleting your Tempo account from Settings → Danger zone.

3. Crash reports and diagnostics

We use Sentry, a third-party crash-reporting service, to collect anonymous diagnostic data when the Tempo app crashes or hits an unhandled error. These reports contain:

The type of error and the line of code that failed.
The version of the app, the device model, and the browser version and operating system.
Anonymous session identifiers used to group related events.

We deliberately exclude any data that could identify you personally — your email, your name, your training data, and your AI coach conversations never appear in crash reports. We use these reports only to find and fix bugs.

4. How we use your data

Generate personalised training plans, workout suggestions, and feedback from the AI coach.
Display your training history, progress, and analytics inside the app.
Authenticate you and keep your account secure.
Diagnose issues, fix bugs, and improve the product.
Communicate with you about your account or material changes to the service.

We do not sell your personal data, and we do not use your training data or chat history for advertising.

5. Third parties we share data with

We use a small number of trusted service providers to run Tempo AI. We share only the minimum data each provider needs to perform its function on our behalf.

Provider	Purpose	Data shared
Supabase	Hosting, authentication, and database (stores your account, profile, training data, and chat history).	Email, name, athlete profile, training data, AI chat history.
intervals.icu	Source of your training data, via the connection you authorise.	Read access to your intervals.icu activities and metrics. We do not write data to intervals.icu unless you explicitly request it in-app.
Strava	Source of your activity data, via the connection you authorise.	Read access to your Strava activities and athlete profile. We do not write data to Strava.
Garmin	Source of your training and recovery data, via the user-authorised connection.	Read access to your Garmin activities, workouts, resting heart rate, HRV, and sleep duration. We do not write data to Garmin.
WHOOP	Source of your recovery, sleep, and workout data, via the user-authorised connection.	Read access to your WHOOP recovery, sleep, workouts, weight, and basic profile (WHOOP user ID and first name). We do not write data to WHOOP.
Apple Health (HealthKit)	Source of your workout and recovery data on iOS, via the Health permission you grant on your iPhone.	Read access to your Apple Health workouts (type, duration, distance, calories), resting heart rate, heart-rate variability (HRV), sleep duration, and active energy burned. We do not write data to Apple Health.
Anthropic (Claude API)	Generates the AI coach’s responses.	Your chat messages plus the relevant slice of athlete profile and training context needed to answer.
Google (Sign in with Google)	Authenticates you when you choose “Continue with Google”.	Your email address. No other Google account data.
Sentry	Anonymous crash and error reporting for the web app.	Error type, stack trace, app version, device model, OS version, and anonymous session identifiers. No personal data, training data, or chat history.

Anthropic processes API inputs under its commercial terms and, by default, does not use API content to train its models. We have confirmed that Anthropic provides the same or equal protection of your data as is described in this privacy policy: Anthropic processes the data we send only to generate the coach’s reply, does not use it to train or improve its models, does not sell or rent it, and does not use it for advertising. Each provider has its own privacy policy, which we encourage you to read.

Use of Strava data with AI.
We use Strava data solely to provide personalised coaching to the athlete who owns the data. We do not use Strava data to train, fine-tune, or otherwise improve any artificial-intelligence or machine-learning model, including large language models. We do not share Strava data with any third party for model training. We do not sell or rent Strava data. Strava data is processed by Anthropic’s Claude API at inference time only, under terms that prohibit training on customer inputs. You can disconnect Strava at any time from the app’s Settings; disconnecting deletes your stored Strava credentials immediately, and deleting your account removes all stored Strava activity data.

Use of Garmin data with AI.
We use Garmin Connect data solely to provide personalised coaching to the athlete who owns the data. We do not use Garmin data to train, fine-tune, or otherwise improve any artificial-intelligence or machine-learning model, including large language models. We do not share Garmin data with any third party for model training. We do not sell or rent Garmin data. Garmin data is processed by Anthropic’s Claude API at inference time only, under terms that prohibit training on customer inputs. From Garmin’s Health API we request only resting heart rate, heart-rate variability, and sleep duration — no other health data. You can disconnect Garmin at any time from the app’s Settings; disconnecting deletes your stored Garmin credentials immediately, you can additionally purge every Garmin-sourced activity, and deleting your account removes all stored Garmin data. We honour Garmin’s user deregistration and deletion signals and delete your data on receipt.

Use of WHOOP data with AI.
We use WHOOP data solely to provide personalised coaching to the athlete who owns the data. Our access to WHOOP is read-only. We do not use WHOOP data to train, fine-tune, or otherwise improve any artificial-intelligence or machine-learning model, including large language models. We do not share WHOOP data with any third party for model training or advertising. We do not sell or rent WHOOP data. WHOOP data is processed by Anthropic’s Claude API at inference time only, under terms that prohibit training on customer inputs. You can disconnect WHOOP at any time from the app’s Settings; disconnecting immediately and automatically deletes all WHOOP-sourced data we hold for you (recovery/wellness entries and WHOOP-imported workouts) and revokes our access token at WHOOP, and deleting your account removes all stored WHOOP data as part of the full wipe.

Use of Apple Health data with AI.
We use Apple Health (HealthKit) data solely to provide personalised coaching to the athlete who owns the data. Our access to Apple Health is read-only; we never write data to Apple Health. We do not use Apple Health data to train, fine-tune, or otherwise improve any artificial-intelligence or machine-learning model, including large language models. We do not share Apple Health data with any third party for model training or advertising. We never sell Apple Health data, never use it for advertising, never share it with data brokers, and never use it for tracking. Apple Health data is processed by Anthropic’s Claude API at inference time only, under terms that prohibit training on customer inputs. You can revoke access at any time on your iPhone in Settings → Privacy & Security → Health, and deleting your account removes all stored Apple Health data.

Consent and data-handling commitments (Garmin, Strava & WHOOP).
For every connected provider we: obtain your explicit consent through OAuth before accessing or transferring any of your data; use that data only for the limited purpose of coaching you (purpose limitation); request only the data our coaching features need (data minimisation); and process it in compliance with applicable data-protection laws, including, where relevant, the GDPR and UK GDPR. We never sell or rent your provider data, and we never use it to train or improve any AI or machine-learning model.

6. Data retention

All of your data is encrypted in transit (HTTPS/TLS) and at rest (our Supabase Postgres database encrypts its storage at rest).

We keep your data for as long as your account is active. When you delete your account from inside the app, your personal data (profile, thresholds, intervals.icu credentials, Strava OAuth tokens, Garmin OAuth tokens, WHOOP OAuth tokens, training data including any activities imported from Strava, Garmin, or WHOOP, wellness data, AI chat history, and plan proposals) is removed from our database immediately.

You can also disconnect a single integration without deleting your account. Disconnecting Strava from Settings immediately deletes the stored Strava credentials. You can additionally choose to forget the activity history imported from Strava in the same screen, which deletes every Strava-sourced activity we hold for you. Disconnecting Garmin from Settings immediately deletes the stored Garmin credentials, and you can likewise forget every Garmin-sourced activity. Disconnecting WHOOP from Settings immediately and automatically deletes the stored WHOOP tokens and all WHOOP-sourced data we hold for you (recovery/wellness entries and WHOOP-imported workouts) and revokes our access token at WHOOP; account deletion removes the WHOOP tokens and data the same way. While a WHOOP connection is active, we retain a rolling 90-day window of WHOOP wellness data and WHOOP-imported workouts. Disconnecting intervals.icu from Settings immediately deletes the stored intervals.icu API key or OAuth token.

We also honour each provider’s deauthorisation and deregistration signals: when we receive Strava’s deauthorisation webhook or Garmin’s user deregistration or deletion notification, we delete the stored credentials and the data we hold for that provider.

If you have submitted in-app feedback, the feedback content may be retained for product improvement, but with your athlete identifier removed so it can no longer be linked back to you.

We may also retain a limited subset of data if and where we are required to do so to comply with legal obligations, resolve disputes, or enforce our terms.

7. Your rights and how to delete your account

You have the right to access, correct, export, or delete your personal data. Depending on where you live, you may also have rights under the GDPR, UK GDPR, or applicable U.S. state privacy laws (such as the right to object to processing or to lodge a complaint with a supervisory authority).

Delete your account from inside the app.
Open Tempo AI → Settings → Danger zone → tap Delete account. This immediately and permanently removes your profile, training data, AI chat history, and all other personal data we hold about you. You can also email us at the address below and we will action your request.

8. Cookies (web)

On the Tempo AI website, we use a small number of strictly necessary cookies and similar storage (such as localStorage) to keep you signed in and to remember basic preferences. We do not use advertising cookies or third-party tracking cookies. If we add analytics in the future, we will update this section and, where required, ask for your consent first.

You can clear or block cookies in your browser settings; some features of the site may not work without them.

9. Children

Tempo AI is not directed to, and is not intended for, individuals under the age of 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us with personal data, please contact us and we will delete it.

10. Changes to this policy

If we make material changes to this policy we will update the “Last updated” date at the top and, where appropriate, notify you in the app or by email before the changes take effect.

11. Contact

If you have any questions about this policy or want to exercise any of your rights, email us at:

karl.zard@tempoai.fit