Privacy Policy

This Privacy Policy explains how Anton Lebedev (referred to as “I”, “me”, “my”, or “we” when used in the plural, and hereafter collectively “AironFit”) collects, stores, uses, and protects your personal data in connection with your use of our website aironfit.com (and any related pages) (the “Website”) and our application AironFit (the “App”, and together with the Website, the “Services”). This policy also explains the rights you have in respect of your personal data and the measures implemented to protect your privacy.

1. Personal Data We Collect

Personal data that you provide:

• General Details: Your name, email, age, account credentials, subscription details, transaction history, and any other information you provide. You may also choose to share your gender.
• Communication Information: When you contact us, we collect your name, contact details, and the content of your messages.
• Profile Photo: The photo you voluntarily upload as your profile picture.
• Social Media Information: If you interact with our social media pages (for example, on Instagram), we may receive the personal data you provide, as well as aggregate data and analytics from the hosting platforms.
• Health and Well-being Data: When you use the Services, you may enter data such as your weight, height, body mass index (BMI), physical parameters, workout habits, or details about injuries. With your consent, you may also connect third-party services (e.g., Apple HealthKit or Google Health Connect) to import health and activity data into the App. Such imported data may include fitness activities, calories burned, heart rate, step counts/distance traveled, and (if applicable) menstrual cycle data. Processing of these data is subject to the privacy policies and terms of the respective third-party services.
• AI Assistant Conversations: Conversations you have with the AI Assistant in the App.
• Details About In-App Purchases: Information such as the time of purchase and your subscription details.
• Cookies and Similar Technologies: We use cookies and related technologies to operate and administer the Services and to enhance your experience. (See Section 10 below for more details.)

Personal data that we receive automatically from your use of the Services:

• Log Data: Information automatically sent by your browser or device when you access the Website or App, such as your IP address, browser type, and the date and time of access.
• Usage Details: Data about the features you use and actions taken within the Services, including your time zone, country, dates/times of access, and operating system information.
• Device Information: Details such as the model and type of your device, unique device identifiers, and operating system information.

Personal data received from other sources:

We may receive data from trusted partners (for example, security vendors protecting against fraud and abuse or marketing partners providing aggregate analytics about potential users).

Throughout this Privacy Policy, all the information described above is referred to as your “personal data.”

2. Purposes of Processing

• Providing and Maintaining the Services:
  • To create and adjust personalized workout plans.
  • To enable communication with the AI Assistant, which is powered by GPT API (developed by OpenAI).
  • To perform body scans and generate body composition reports.
• Improving and Developing the Services:
  • To research, develop, and enhance our features and functionalities.
• Age Verification:
  • To ensure that you meet the minimum age requirement for using the App.
• Customer Support:
  • To provide assistance and respond to your inquiries.
• Transactional Communications:
  • To send security alerts, transaction confirmations, and service-related emails.
• Marketing (Upon Consent):
  • To send you promotional and marketing communications about our Services. You may opt out at any time by following the “Unsubscribe” instructions in such communications or by contacting support@aironfit.com.
• Data Integration:
  • To integrate data between the Website and the App for a smooth onboarding experience.
• Audience Targeting (Upon Consent):
  • To help us find audiences similar to our users by sharing non-sensitive usage data with third-party advertising partners.
• Security and Fraud Prevention:
  • To protect our IT systems, networks, and your data from unauthorized access, misuse, or fraud.
• Compliance with Legal Obligations:
  • To meet regulatory requirements and protect the rights, privacy, safety, or property of users and third parties.
• Anonymization:
  • To anonymize your personal data for scientific research, statistical purposes, or service improvement, ensuring it can no longer be associated with you.

We do not sell or rent your personal data for monetary gain. We only share your data with service providers who support our Services as described below.

3. Legal Bases for Processing

For users in regions such as the EU, EEA, UK, or Switzerland, our processing of your personal data is based on the following legal grounds:

3.1. To Provide and Maintain the Services:

• Data Processed: General details, account photos, health and well-being data, communication information, AI Assistant conversations, log data, usage details, device information, cookies, and details about in-app purchases.
• Legal Basis: Necessary to perform a contract with you (e.g., creating personalized workout plans) or based on your consent (particularly for processing health-related data).

3.2. To Improve and Develop the Services:

• Data Processed: General details, communication information, de-identified AI Assistant conversations, body scan photos, log data, usage details, device information, workout movement data, AI Body Scan information, cookies, and data from other sources.
• Legal Basis: Necessary for our legitimate interests (e.g., enhancing our Services) or based on your consent (for specific features such as retaining body scan photos).

3.3. Age Verification:

• Data Processed: General details.
• Legal Basis: Necessary to perform a contract with you (ensuring compliance with the minimum age requirement).

3.4. Customer Support and Communication:

• Data Processed: General details, communication information, social media information, log data, usage details, and device information.
• Legal Basis: Necessary for our legitimate interests in supporting your customer journey.

3.5. Transactional Communications:

• Data Processed: General details, communication information, log data, usage details, and device information.
• Legal Basis: Necessary to comply with legal obligations or contractual requirements.

3.6. Marketing (Where Consent is Obtained):

• Data Processed: General details, communication information, social media information, log data, usage details, and device information.
• Legal Basis: Based on your consent for receiving marketing communications.

3.7. Data Integration and Audience Targeting (Where Consent is Obtained):

• Data Processed: General details, log data, usage details, and device information.
• Legal Basis: Our legitimate interest in ensuring a seamless user experience and, where applicable, based on your consent.

3.8. Security and Fraud Prevention:

• Data Processed: General details, communication information, social media information, AI Assistant conversations, log data, usage details, device information, in-app purchase details, and cookies.
• Legal Basis: Necessary to comply with legal obligations and protect the Services against abuse, fraud, or security risks.

3.9. Anonymization for Research or Improvement:

• Data Processed: Health and well-being data, usage details, and other information as necessary.
• Legal Basis: Our legitimate interest in conducting research and improving our Services.

4. Additional Disclosures (For U.S. State Requirements)

While AironFit operates as an individual entrepreneur in Armenia, we may collect certain categories of personal data from U.S. users. This includes:

• Identifiers: Name, unique personal identifier, IP address, email address, etc.
• Characteristics of Protected Classifications: For example, gender, if provided.
• Commercial Information: Purchase records and consumption histories.
• Internet Activity Information: Data about your interaction with the App or Website.
• Geolocation Data: Such as the state or country associated with your IP address.
• Visual Information: Photos you upload to the App.
• Inferences: Data used to create a user profile reflecting your preferences and attributes.

We use such data to provide, personalize, and improve the Services, communicate with you, and ensure security and compliance with legal obligations. We do not sell or share your data for direct marketing purposes unless explicitly permitted by you.

5. Personal Data Retention

We retain your personal data for as long as your account is active or as needed to fulfill the purposes for which it was collected (e.g., resolving disputes, ensuring security, or complying with legal obligations).

• If you deactivate your account, your personal data will be retained for no longer than one month in case you decide to reactivate the Services.
• Certain data (such as transaction records or consent logs) may be retained for longer periods as required by law.
• We may also anonymize your data so that it can no longer be associated with you; such anonymized data may be retained indefinitely for research or analytical purposes.

6. Privacy Rights

We want you to be aware of your rights regarding your personal data. These rights may vary depending on your jurisdiction.

If you are a resident of the EU, EEA, UK, or Switzerland, you have the right to:

• Access your personal data and learn how it is processed.
• Request data portability (transfer of your data to another party).
• Correct any inaccurate or incomplete personal data.
• Request deletion of your personal data, subject to legal or contractual limitations.
• Restrict the processing of your personal data in certain circumstances.
• Object to the processing of your personal data for direct marketing or legitimate interests.
• Withdraw your consent (where processing is based on consent) at any time.
• Lodge a complaint with your local data protection authority.

For residents of other jurisdictions: Depending on local laws, you may have the right to request details about the personal data collected, ask for corrections or deletion, or object to certain processing activities. To exercise these rights, you can use the settings provided in the App or submit your request via email to support@aironfit.com. We will typically respond to your request within one month. If your request is unclear, we may contact you for clarification. In some cases, we may require you to verify your identity before processing your request.

7. Security Measures

I take the protection of your personal data very seriously and employ reasonable and appropriate measures to guard against loss, theft, misuse, and unauthorized access, disclosure, alteration, or destruction. These measures include:

• Encryption: Personal data is encrypted both in transit and at rest.
• Vulnerability Scanning and Penetration Testing: Regular security assessments to identify and address potential vulnerabilities.
• Data Integrity Protection: Mechanisms in place to ensure the accuracy and integrity of your data.
• Organizational Controls: Limited employee access to personal data and strict liability for any unauthorized disclosures.

Please note that no security system is perfect. If a security breach affecting your personal data occurs, I will promptly investigate and take all reasonable steps to remedy the situation and, where required, notify you in accordance with applicable laws. To report a security incident, please contact support@aironfit.com.

8. Children

The Services are not directed at or intended for children under the age of 18. If you become aware that a child under 18 is using the Services, please contact support@aironfit.com immediately so that appropriate measures can be taken.

9. Sharing of Your Personal Data

In some instances, I engage trusted third-party service providers (“processors”) to support the Services. These processors act on my behalf and process personal data only as necessary to perform tasks on my behalf. I remain responsible for their actions and ensure that they provide sufficient guarantees to protect your personal data. Examples of processors may include:

• Infrastructure & Security: Cloud service providers (e.g., Amazon Web Services, Hetzner Online GmbH) and security services.
• Authentication and Communications: Providers for authentication (e.g., Auth0) and email/in-app communications.
• AI Assistant Communications: AI API providers (e.g., OpenAI).
• Analytics and Onboarding: Analytics and user onboarding tools (e.g., Firebase, AppsFlyer).
• Payment Processing: Payment service providers (e.g., Stripe, Apple, Adyen).
• Customer Support: Support service providers (e.g., Zendesk).

For transfers of personal data outside of the European Economic Area (EEA) or other jurisdictions where data protection laws are in place, appropriate safeguards (such as Standard Contractual Clauses) will be implemented.

10. Cookies, SDKs, and Other Tracking Technologies

When you use our Services, we and our service providers may use cookies and similar technologies (e.g., HTML5 local storage, beacons, pixels) to collect information about you and your usage. We also use third-party SDKs and analytics tools to:

• Understand user behavior on the Website and App.
• Enhance the performance and functionality of the Services.
• Help measure traffic and usage trends.

Cookies:
Cookies are categorized based on duration, source, and purpose:

• Session Cookies: Expire when you close your browser.
• Persistent Cookies: Remain on your device until deleted or until they expire.
• First-Party Cookies: Set by AironFit.
• Third-Party Cookies: Set by external service providers.
• Strictly Necessary Cookies: Essential for the operation of the Website/App (e.g., security, authentication, billing).
• Performance Cookies: Used to analyze usage patterns and improve the Services.
• Marketing Cookies: Used for advertising purposes; note that we do not use your health data for advertising.

You can manage your cookie preferences via your browser settings or by contacting us at support@aironfit.com.

11. Your Choices About Our Communications

When using the Services, you may receive communications (e.g., in-app notices, push notifications, or emails) related to:

• Your subscriptions.
• Security or technical notices.
• Updates to this Privacy Policy and our Terms of Use.
• Marketing and promotional information (if you have consented).

If you wish to opt out of marketing communications, please follow the “Unsubscribe” instructions provided in the emails or contact support@aironfit.com. For push notifications, you can adjust the settings on your mobile device.

12. Changes to Our Privacy Policy

This Privacy Policy was last reviewed on the effective date above. I may update this Privacy Policy periodically to reflect changes in practices or legal requirements.

• For changes that are compatible with the existing purposes of processing, no additional consent may be required.
• If changes introduce new processing activities that pose risks to your rights and freedoms, I will seek your consent separately.

Your continued use of the Services after any changes constitutes your acceptance of the updated Privacy Policy.

For previous versions, please refer to our archived links if available.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:

AironFit (Anton Lebedev)
Email: support@aironfit.com
Website: aironfit.com