Last updated: July 8, 2026
How we protect your data and your members' conversations — and what you can do to help.
Encryption in transit
All traffic uses TLS. Your data is never sent over an unencrypted connection.
Mandatory admin MFA
Platform admins must use two-factor authentication. No admin access without a second factor.
Isolated per gym
Each gym's data is row-level isolated. Your members' conversations are private to your gym.
Least-privilege access
Admin tools are scoped and audited. We log every impersonation and privileged action.
If you believe you've found a security issue, please report it responsibly through our contact page rather than publicly. We investigate every report and will work with you on disclosure.
We keep your data only as long as your account is active. Deleting your account removes your uploaded content and your members' conversation histories. Member-level data can also be deleted individually from your dashboard at any time.
Questions about this policy? Get in touch.