Privacy Policy

Your trust is our most valuable asset.

Last updated: March 2026

We built TrainingSpot to enhance human lives — and that starts with protecting the information you trust us with. This policy is written in plain language because privacy shouldn't require a law degree to understand.

🚫We never sell your data
🔐You own your data
🗑Delete anytime
📢Breach notification within 72h
1.

Our Commitment to You

Privacy isn't a legal checkbox for us — it's a core part of who we are. TrainingSpot was built on the belief that software should serve people, and that means treating your data with the same respect we expect in every other part of your life.

This policy explains, in plain language, what information we collect, why we collect it, and exactly what we do — and never do — with it. We've written it to be read by a real person, not just a lawyer.

The short version: We collect only what we need to run the platform. We never sell your data. You own your data. You can delete it anytime. That's the deal.

2.

Information We Collect

We collect information in three ways: what you give us, what happens automatically when you use the platform, and what your clients provide through your account.

Account & Profile Information

  • Your name, email address, and password (encrypted)
  • Profile photo and professional bio (optional)
  • Business name and contact details
  • Subscription plan and billing information (processed securely by our payment provider)

Client Data You Enter

  • Client names, contact information, and health goals
  • Body measurements, progress photos, and fitness records
  • Workout programs and meal plans you create for them
  • Appointment and scheduling data
  • Messages exchanged on the platform

Automatic Usage Data

  • Pages visited and features used within the app
  • Device type, browser, and operating system
  • IP address and approximate location (country/region)
  • Session duration and error logs to help us improve the platform
3.

How We Use Your Information

We use your information to do exactly what you signed up for — nothing more.

⚙️
Operate the Platform
Power every feature from client profiles to workout programs.
🔐
Secure Your Account
Authenticate you, detect fraud, and protect your data.
📧
Send You Updates
Billing receipts, product updates, and important announcements.
🛠
Improve the Product
Understand what works and fix what doesn't, using anonymized patterns.
💬
Provide Support
Help you resolve issues and answer questions quickly.
📊
Comply with Law
Meet legal obligations like tax records and fraud prevention.
4.

What We Will Never Do

These are non-negotiable commitments. Not marketing copy — actual limits we've built into how we operate.

Sell, rent, or trade your personal data or your clients' data to anyone — ever.

Use your client data to advertise to your clients directly.

Share your data with third parties for their own marketing purposes.

Train AI or machine learning models on your private client information without your explicit consent.

Access your account without your permission, except as required by law.

5.

When We Share Data

There are only three situations where we share your information, and all of them are limited and purposeful.

🤝

Service Providers

We work with a small number of trusted third-party services to run TrainingSpot — such as our payment processor (Stripe), cloud hosting provider, and email delivery service. These providers can only use your data to perform services for us, not for their own purposes.

⚖️

Legal Requirements

If required by law, court order, or government authority, we may disclose information. We will notify you when legally permitted to do so. We will never voluntarily cooperate with broad surveillance requests.

🏢

Business Transfers

If TrainingSpot is acquired or merges with another company, your data may be transferred as part of that transaction. We will always notify you before this happens and ensure the acquiring party upholds the same privacy standards.

6.

Your Rights & Control

Your data belongs to you. Here's what you can do with it at any time:

Access: Request a complete export of all data we hold about you.
Correct: Update or correct any inaccurate information in your account.
Delete: Request the permanent deletion of your account and all associated data.
Restrict: Ask us to limit how we process your data in certain circumstances.
Portability: Receive your data in a machine-readable format to take elsewhere.
Withdraw Consent: Opt out of non-essential communications at any time.

To exercise any of these rights, contact us at privacy@trainingspot.net. We will respond within 30 days.

7.

How We Protect Your Data

Security isn't a feature we added at the end — it's baked into how we build. Here's what we do to keep your data safe:

Encryption in transit and at rest: All data is encrypted using TLS 1.3 in transit and AES-256 at rest.
Password hashing: Your password is never stored in plain text. We use industry-standard bcrypt hashing.
Regular security audits: We conduct internal security reviews and plan for external penetration testing.
Access controls: Only authorized team members with a specific need can access production data, and all access is logged.
Secure payment processing: All billing is handled by Stripe — we never store your raw credit card information.

No system is 100% secure. If we ever experience a data breach that affects you, we will notify you within 72 hours of discovering it — as required by applicable law.

8.

Cookies & Tracking

We use a minimal set of cookies — only what's necessary to run the platform and understand how it's being used at an aggregate level.

Essential CookiesAlways On

Required for you to log in, stay logged in, and use the platform securely. These cannot be turned off.

Analytics CookiesOptional

Help us understand which features are used most and where people get stuck — always anonymized and aggregated. You can opt out at any time.

We do not use advertising or tracking cookies. We do not run retargeting ads based on your behavior on our platform.

9.

Data Retention

Active account: We keep your data for as long as your account is active.
Cancelled account: We retain your data for 30 days after cancellation in case you change your mind, then permanently delete it.
Deletion request: When you request deletion, we permanently erase your data within 30 days, except where we're legally required to retain certain records (e.g., billing history for tax purposes — typically 7 years).
Anonymized analytics: Aggregated, anonymized usage data may be retained indefinitely as it cannot be linked back to you.
10.

Children's Privacy

TrainingSpot is intended for adults aged 18 and older. We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has provided us with personal information, please contact us immediately at privacy@trainingspot.net and we will delete that information promptly.

11.

Changes to This Policy

If we make material changes to this Privacy Policy, we will notify you by email and display a prominent notice on the platform at least 14 days before the changes take effect. Minor clarifications may be updated without notice. The "Last updated" date at the top of this page always reflects when the policy was last changed. Your continued use of TrainingSpot after changes take effect constitutes acceptance of the revised policy.

12.

Questions & Contact

Have a question about this policy or how we handle your data? We'd love to hear from you. Privacy questions deserve real answers from real people.

Privacy Questions
privacy@trainingspot.net
General Support
support@trainingspot.net

Privacy is a relationship, not a document.

If something in this policy is unclear or you have a concern, please reach out. We're real people and we take these conversations seriously.