Last updated: March 1, 2025

Privacy Policy

Your privacy matters to us. This policy explains what data we collect, how we use it, and your rights.

1. Introduction

Tracklete (“we”, “our”, or “us”) operates the Tracklete mobile application and web platform at https://app.tracklb.com. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using Tracklete, you consent to the practices described in this Policy.

2. Information We Collect

Account Information:

Name and email address provided during registration
Profile details you choose to add (photo, location, specialization)
Payment confirmation records (payments are processed externally via Whish Money — we do not store credit card or payment account information)

Usage Data:

App feature interactions and session logs
Device type, OS version, and app version
IP address and general location (country/region level)
Crash reports and performance data

Trainer-Entered Data:

Client names, goals, and contact details you add
Workout programs and session records
Revenue and payment records you log
Notes and assessments you create

3. How We Use Your Information

We use collected information to:

Provide, maintain, and improve the Tracklete Service
Process and confirm subscription payments
Send transactional emails (account activation, password reset)
Send service announcements and important updates
Respond to support requests
Analyze usage patterns to improve features
Detect and prevent fraud or Terms of Service violations

We do not sell your personal data to third parties. We do not use your data for advertising targeting.

4. Data Storage and Infrastructure

Tracklete uses Supabase as its backend infrastructure, which stores data in PostgreSQL databases hosted on secure cloud infrastructure (AWS). Data is encrypted in transit using TLS 1.2+ and at rest.

Client data entered by trainers is stored in isolated, trainer-scoped database records. Trainers can only access data associated with their own account.

5. Data Sharing

We share data only in the following circumstances:

Service Providers: We use Supabase for database hosting and may use other essential infrastructure providers (email delivery, error monitoring). These providers are bound by data processing agreements.
Legal Requirements: We may disclose data when required by law, court order, or governmental authority.
Business Transfer: In the event of a merger or acquisition, user data may be transferred. We will notify you before any transfer occurs.

6. Client Data (Trainer Responsibility)

Trainers who use Tracklete enter personal data about their clients (names, goals, measurements, etc.). Trainers are responsible for:

Obtaining appropriate consent from their clients
Informing clients that their data is managed through Tracklete
Complying with applicable data protection laws in their jurisdiction

Tracklete acts as a data processor for this information. We do not access client data except to provide the Service or as required by law.

7. Data Retention

We retain your account data for as long as your account is active or as needed to provide the Service. If your subscription expires or is cancelled, your account enters read-only mode and all data is preserved — you can reactivate at any time.

If you explicitly request account deletion, we will delete your data within 30 days, except where we are required to retain it by law. Aggregate, anonymized analytics data may be retained indefinitely.

8. Your Rights

You have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Request deletion of your data (“right to be forgotten”)
Export your data in a portable format (Pro plan feature)
Opt out of non-essential communications

To exercise any of these rights, contact us at support@tracklb.com.

9. Cookies and Tracking

The Tracklete web dashboard may use essential cookies for authentication and session management. We do not use third-party advertising cookies.

The mobile app does not use browser cookies but may use device identifiers for crash reporting and analytics.

10. Children's Privacy

Tracklete is not directed to children under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected such information, we will delete it promptly.

11. Security

We implement industry-standard security measures including encryption in transit and at rest, access controls, and regular security reviews. However, no system is completely secure, and we cannot guarantee absolute security.

If you believe your account has been compromised, contact us immediately at support@tracklb.com.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification at least 14 days before the changes take effect. Continued use of the Service after changes constitutes acceptance.

13. Contact

For privacy-related questions or requests, contact: support@tracklb.com
Tracklete — Based in Lebanon

Tracklete