Privacy Policy for Iron Raven

Effective Date: 1 August 2025

Last Updated: 1 August 2025

TABLE OF CONTENTS

  1. Introduction
  2. Information We Collect
  3. How We Use Your Information
  4. Legal Basis for Processing (UK GDPR)
  5. Third-Party Services and Integrations
  6. Data Sharing and Disclosure
  7. Data Security and Protection
  8. Data Retention
  9. Your Privacy Rights
  10. International Data Transfers
  11. Children's Privacy
  12. Changes to This Privacy Policy
  13. Contact Information

1. Introduction

Iron Raven ("we," "our," or "us") operates a strength coaching mobile application ("App") designed to help users track workouts and achieve their fitness goals. We are committed to protecting your privacy and being transparent about how we collect, use, and protect your personal information.

This Privacy Policy describes our practices regarding the collection, use, storage, and disclosure of information we collect from users of our App. By using our App, you consent to the practices described in this Privacy Policy.

2. Information We Collect

2.1 Information You Provide Directly

Account Information:

  • Full name
  • Email address
  • Password (encrypted and stored securely)
  • Account preferences and settings

Fitness and Health Data:

  • Weight, height, and body measurements
  • Workout history, exercise logs, and training sessions
  • Personal fitness goals and targets
  • Training preferences and program selections
  • Progress tracking data and performance metrics

2.2 Information We Collect Automatically

Device and Technical Information:

  • Device type, model, and operating system version
  • Unique device identifiers and mobile network information
  • App usage patterns and feature interactions
  • Performance data and crash reports
  • IP address and general location information (country/region level)

Analytics Information:

  • App usage statistics and user behavior patterns
  • Feature usage and engagement metrics
  • Performance and technical diagnostics
  • Error logs and debugging information

2.3 Information from Third-Party Services

When you use third-party authentication services (Google Sign-In, Apple Sign-In), we may receive:

  • Basic profile information (name, email)
  • Authentication tokens
  • Account verification status

3. How We Use Your Information

3.1 Core App Functionality

  • Provide personalized strength coaching and workout recommendations
  • Track your fitness progress and workout history
  • Generate training programs based on your goals and preferences
  • Synchronize data across your devices
  • Provide coaching insights and performance analytics

3.2 App Improvement and Analytics

  • Analyze usage patterns to improve app functionality
  • Identify and fix technical issues and bugs
  • Develop new features based on user behavior
  • Monitor app performance and stability
  • Conduct research to enhance user experience

3.3 Communications

  • Send workout reminders and motivational notifications
  • Provide important app updates and announcements
  • Respond to your questions and provide customer support
  • Send service-related communications (password resets, account changes)

3.4 Business Operations

  • Process payments and manage subscriptions
  • Prevent fraud and ensure app security
  • Comply with legal obligations and enforce our terms
  • Protect our rights and the safety of our users

4. Legal Basis for Processing (UK GDPR)

We process your personal information based on the following legal grounds:

Consent: When you voluntarily provide information and agree to our Privacy Policy Contract Performance: To provide the App services you've requested Legitimate Interests: To improve our App, ensure security, and conduct analytics Legal Obligation: To comply with applicable laws and regulations

5. Third-Party Services and Integrations

5.1 Firebase (Google LLC)

Purpose: Analytics, performance monitoring, and app infrastructure Data Shared: Usage analytics, device information, performance data Privacy Policy: https://policies.google.com/privacy Data Processing: Data may be processed in the United States

5.2 RevenueCat

Purpose: Subscription management and payment processing Data Shared: Purchase information, subscription status, user identifiers Privacy Policy: https://www.revenuecat.com/privacy Data Processing: Data processed according to their privacy policy

5.3 Google Sign-In

Purpose: User authentication and account creation Data Shared: Authentication tokens, basic profile information Privacy Policy: https://policies.google.com/privacy Data Processing: Subject to Google's data processing terms

5.4 Apple Sign-In

Purpose: User authentication and account creation Data Shared: Authentication tokens, basic profile information (if provided) Privacy Policy: https://www.apple.com/legal/privacy/ Data Processing: Subject to Apple's privacy policy

6. Data Sharing and Disclosure

6.1 We Do Not Sell Your Data

We do not sell, rent, or trade your personal information to third parties for their commercial purposes.

6.2 Limited Sharing

We may share your information only in the following circumstances:

Service Providers: With the third-party services listed above, only to the extent necessary for them to provide their services Legal Requirements: When required by law, court order, or government request Safety and Security: To protect our rights, property, or safety, or that of our users Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)

6.3 Anonymized Data

We may share aggregated, anonymized data that cannot identify individual users for research, analytics, or business purposes.

7. Data Security and Protection

7.1 Security Measures

We implement industry-standard security measures including:

  • Encryption of data in transit and at rest
  • Secure authentication protocols
  • Regular security assessments and updates
  • Access controls and user authentication
  • Secure cloud infrastructure

7.2 Limitations

While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

8. Data Retention

8.1 Retention Periods

  • Account information: Retained while your account is active
  • Fitness data: Retained while your account is active and for up to 2 years after deletion
  • Analytics data: Retained for up to 2 years
  • Payment information: Retained as required by law and payment processors

8.2 Deletion

You may request deletion of your data at any time. Upon deletion:

  • Your account and personal information will be permanently removed
  • Some information may be retained for legal compliance or security purposes
  • Anonymized data may be retained for analytics purposes

9. Your Privacy Rights

9.1 Under UK GDPR, You Have the Right To:

  • Access: Request a copy of your personal information
  • Rectification: Correct inaccurate or incomplete information
  • Erasure: Request deletion of your personal information
  • Restriction: Limit how we process your information
  • Portability: Receive your data in a structured format
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time (where applicable)

9.2 Exercising Your Rights

To exercise these rights, contact us at support&ironraven.app with:

  • Your full name and email address
  • Specific right you wish to exercise
  • Any additional information to verify your identity

We will respond to your request within 30 days.

10. International Data Transfers

Some of our service providers (Firebase, RevenueCat) may process data outside the UK. When data is transferred internationally, we ensure appropriate safeguards are in place, including:

  • Standard contractual clauses
  • Adequacy decisions by regulatory authorities
  • Other approved transfer mechanisms

11. Children's Privacy

Our App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover we have collected information from a child under 13, we will delete it immediately.

12. Changes to This Privacy Policy

12.1 Updates

We may update this Privacy Policy periodically to reflect changes in our practices, technology, or legal requirements.

12.2 Notification

We will notify you of material changes by:

  • Posting the updated policy in the App
  • Sending an email notification (if you have an account)
  • Updating the "Last Updated" date

12.3 Continued Use

Your continued use of the App after changes indicates acceptance of the updated Privacy Policy.

13. Contact Information

13.1 Privacy Questions

For questions about this Privacy Policy or our privacy practices: Email: support&ironraven.app

13.2 Data Protection Concerns

For data protection concerns or to exercise your rights: Email: support&ironraven.app

13.3 Company Information

Company: Iron Raven
Location: United Kingdom

Compliance Statement: This Privacy Policy complies with Google Play Store and Apple App Store requirements, UK GDPR, and applicable privacy laws. Last reviewed: 1 August 2025