# Privacy Policy **Traxamo, LLC** Last updated: May 2026 --- ## 1. Introduction Traxamo ("we," "us," or "our") operates the website at traxamo.ai (the "Service"). This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information. By using the Service you agree to the practices described here. --- ## 2. Information We Collect ### 2.1 Account Information When you create an account we collect your first name, last name, and email address. Passwords are not stored — we use email-based multi-factor authentication (MFA) with one-time codes. ### 2.2 Activity Data (Strava) If you choose to connect your Strava account, we request read access to your recent activities (last 60 days). We use this data solely to personalise your AI-generated training plans. We do not store raw activity files — only a statistical summary (weekly km, longest run, average pace) is retained. ### 2.3 Usage Data We collect information about how you interact with the Service, including pages visited, races viewed, races favourited, and searches performed. This data is used to personalise your experience and to improve the Service. ### 2.4 GPS / Activity File Uploads If you upload a `.gpx` or `.tcx` file for a race report, the file is processed server-side to extract statistics (distance, pace, elevation). The raw file is not retained after processing. ### 2.5 Cookies and Analytics We use Microsoft Clarity for anonymised behavioural analytics (heatmaps, session recordings). Clarity may use cookies. No personally identifiable information is shared with Microsoft Clarity. We do not use advertising cookies or sell data to advertisers. ### 2.6 User-Generated Content Race reports, goal descriptions, and any text you submit through the Service are stored and associated with your account. --- ## 3. How We Use Your Information - **Provide and operate the Service** — account management, race discovery, favourites, calendar. - **Personalise your experience** — AI-generated training plans, concierge recommendations, and race suggestions tailored to your history. - **Send transactional emails** — authentication codes and important account notifications, sent via Resend. - **Improve the Service** — anonymised usage analytics to understand feature adoption and fix issues. - **Generate AI content** — your race selections and (if connected) Strava summary are sent to OpenAI's API to generate training, nutrition, and gear recommendations. No other personal data is sent to OpenAI. --- ## 4. Information Sharing We do not sell, rent, or trade your personal information. We share data only in the following limited circumstances: | Recipient | Purpose | Data shared | |-----------|---------|-------------| | **OpenAI** | AI feature generation | Race details, Strava fitness summary (if connected), race distances | | **Resend** | Transactional email delivery | Email address, email body | | **Microsoft Clarity** | Anonymised analytics | Anonymised session / interaction data | | **Strava** | OAuth integration | Only the authorisation token you grant | | **RunSignup / Active.com** | Race data sourcing | No user data shared | We may disclose information if required by law or to protect the rights and safety of Traxamo and its users. --- ## 5. Data Retention - **Account data** — retained for as long as your account is active. You may delete your account at any time by contacting us. - **Session tokens** — expire after 30 days of inactivity. - **AI-generated content** — cached for up to 14 days per item, then regenerated on demand. - **Analytics events** — retained for 12 months. --- ## 6. Security We use industry-standard security practices including encrypted connections (HTTPS/TLS), server-side session tokens, and rate limiting on authentication endpoints. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security. --- ## 7. Your Rights Depending on your location you may have the right to: - **Access** — request a copy of the personal data we hold about you. - **Correction** — request correction of inaccurate data. - **Deletion** — request deletion of your account and associated personal data. - **Portability** — request your data in a machine-readable format. - **Opt-out of analytics** — use a browser-level "Do Not Track" setting or a content blocker to prevent Clarity from collecting session data. To exercise any of these rights, email us at **privacy@traxamo.ai**. --- ## 8. Children's Privacy The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us and we will delete it promptly. --- ## 9. Third-Party Links The Service contains links to external race registration platforms (RunSignup, Active.com, etc.) and booking services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before submitting personal information. --- ## 10. Changes to This Policy We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last updated" date. Continued use of the Service after changes constitutes acceptance of the updated policy. --- ## 11. Contact Traxamo, LLC Email: privacy@traxamo.ai Website: https://traxamo.ai