Privacy Policy for SCAMPR

Last Updated: January 28, 2025

Introduction

SCAMPR ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services.

1. Information We Collect

1.1 Personal Information You Provide

When you create an account and use SCAMPR, we collect:

Account Information: Email address, password (encrypted), display name, username
Profile Information: Profile photo (optional), location (optional), bio (optional)
Race Goals: Race name, race date, target time, distance preferences
Training Data: Workout logs, completed workouts, training history, injury reports
Preferences: Units (miles/km), workout day preferences, training settings

1.2 Automatically Collected Information

Device Information: Device type, operating system, app version
Usage Data: Features used, screens visited, interactions with the app
Location Data (Optional): Approximate location for finding nearby runners and suggesting local routes. You can disable this in device settings.

1.3 GPS and Location Data

GPS Tracking: When you use the "Record with GPS" feature, we collect your real-time location data to track your route, calculate distance, and provide pace coaching
Route Data: GPS coordinates of your workout routes are stored to display your running history and workout maps
Location Permissions: GPS tracking requires device location permissions, which you can revoke at any time in your device settings

1.4 Third-Party Integrations

Garmin Connect (When Connected): With your explicit permission, we access your Garmin activity data including runs, pace, distance, heart rate, and elevation data from your Garmin devices
Strava (When Connected): With your explicit permission, we access your Strava activity data including runs, pace, distance, heart rate, and elevation data
Anthropic AI: Workout data is sent to Anthropic's Claude AI to generate personalized coaching advice (anonymized)

1.4 Camera and Photo Library

Profile Pictures: With your permission, we access your camera or photo library to set profile pictures

2. How We Use Your Information

We use your information to:

Provide Services: Generate personalized training plans, calculate training paces, track workout progress
AI Coaching: Analyze your training data to provide personalized coaching advice (limited to 2 requests per day)
Social Features: Enable connections with friends, workout meetups, and messaging
Improve the App: Analyze usage patterns to improve features and user experience
Communications: Send important updates about your training plan and app features
Safety: Detect and prevent fraud, abuse, and security issues

3. Data Storage and Security

3.1 Where We Store Data

Firebase/Google Cloud: Your data is stored on Google's Firebase platform with servers in the United States
Encryption: All data is encrypted in transit (HTTPS/TLS) and at rest
Authentication: Passwords are hashed and never stored in plain text

3.2 Data Retention

Active Accounts: We retain your data while your account is active
Account Deletion: You can delete your account anytime in Settings. Data is permanently deleted within 30 days
Backup Data: Backup copies are deleted within 90 days

4. Data Sharing and Disclosure

4.1 We DO NOT Sell Your Data

We never sell your personal information to third parties.

4.2 Service Providers

We share data with trusted service providers:

Google Firebase: Cloud hosting, authentication, database (see Firebase Privacy Policy)
Anthropic: AI coaching analysis - we send anonymized workout data only (see Anthropic Privacy Policy)
Strava (If Connected): Two-way data sync with your explicit permission

4.3 Legal Requirements

We may disclose information if required by law, court order, or to:

Protect rights, property, or safety of SCAMPR, users, or the public
Enforce our Terms of Service
Respond to lawful requests from authorities

4.4 Business Transfers

If SCAMPR is acquired or merged, your data may be transferred to the new entity with notice provided to you.

5. Your Privacy Rights

5.1 Access and Control

You have the right to:

Access: View all personal data we have about you
Correction: Update or correct your information in Settings
Deletion: Delete your account and all associated data
Export: Download your data in a portable format (contact support@scampr.co.uk)
Opt-Out: Disable location services, Strava sync, or AI coaching anytime

5.2 Communication Preferences

You can disable app notifications in your device settings
Critical account and security notifications cannot be disabled

5.3 California Privacy Rights (CCPA)

If you're a California resident, you have additional rights:

Right to know what personal data is collected
Right to delete personal data
Right to opt-out of data sales (we don't sell data)
Right to non-discrimination for exercising privacy rights

5.4 European Privacy Rights (GDPR)

If you're in the EU/EEA, you have rights under GDPR:

Right to access, rectify, erase, restrict processing
Right to data portability
Right to object to processing
Right to withdraw consent
Right to lodge a complaint with your supervisory authority

6. Children's Privacy

SCAMPR is not intended for users under 13 years old. We do not knowingly collect data from children under 13. If we discover such data has been collected, we will delete it immediately.

7. International Data Transfers

Your data may be transferred to and stored in countries outside your residence, including the United States. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

8. Cookies and Tracking

SCAMPR mobile app does not use cookies. We use:

Analytics: Firebase Analytics to understand app usage (anonymized)
Crash Reporting: To identify and fix bugs
Session Data: To keep you logged in

9. Third-Party Links

The app may contain links to third-party websites or services (e.g., Strava). We are not responsible for their privacy practices. Please review their privacy policies.

10. Health and Fitness Data Disclaimer

IMPORTANT: Training recommendations and AI coaching advice are for informational purposes only and do not constitute medical advice. Consult a healthcare professional before starting any exercise program. We are not liable for injuries or health issues resulting from use of the app.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes via:

In-app notification
Email to your registered address
Notice on our website

Continued use after changes constitutes acceptance of the updated policy.

12. Contact Us

For privacy questions, requests, or concerns:

Privacy Email: privacy@scampr.co.uk
Business Contact: matthew.woods@scampr.co.uk
Support Email: support@scampr.co.uk
Website: https://scampr.co.uk

For data access, correction, or deletion requests, email privacy@scampr.co.uk with subject line "Privacy Request."

13. Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer at: matthew.woods@scampr.co.uk

Effective Date: January 17, 2025

By using SCAMPR, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.