RoxPT - Built for HYROX. Tuned for You.

Introduction

RoxPT ("we," "us," or "our") operates the RoxPT website and the RoxSIM mobile application (collectively, the "Services"). This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our Services.

By using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Services.

Information We Collect

Personal Information

When you register for our Services, we may collect:

Name and contact information (email address, phone number)
Account credentials (username, password)
Training goals, fitness level, and performance data
Payment and billing information (processed securely via third-party providers)
Communication preferences and marketing opt-ins

Health & Fitness Data (Mobile App)

Our RoxSIM mobile application may collect and process:

Workout session data (duration, splits, exercise performance)
Movement tracking and pacing metrics
Training history and progress analytics
Device motion and fitness sensor data (with your permission)
Audio recordings (only when using voice coaching features)

Note: Health and fitness data is stored securely and is never sold to third parties. You can delete this data at any time from your account settings.

Usage & Technical Data

Device information (model, operating system, unique device identifiers)
IP address and approximate location (for service optimization)
App usage patterns, features accessed, and session duration
Crash reports and diagnostic data (to improve app stability)
Cookies and similar tracking technologies (website only)

Information from Third Parties

Social media profile information (if you sign in via Apple, Google, or Facebook)
Payment verification data from payment processors
Analytics and advertising partners (aggregated, non-personal data)

How We Use Your Information

To Provide and Improve Our Services

Create and manage your account
Deliver personalized training programs and race simulations
Provide real-time coaching, pacing guidance, and performance feedback
Track your progress and generate analytics and insights
Process payments and manage subscriptions
Send you service-related notifications and updates

To Communicate With You

Respond to your inquiries and support requests
Send training tips, program updates, and educational content
Notify you about new features, events, and promotions (with your consent)
Request feedback and conduct surveys

For Analytics and Improvement

Analyze usage patterns to improve our Services
Develop new features and training methodologies
Conduct aggregated research and performance benchmarking
Ensure platform security, stability, and performance
Detect and prevent fraud, abuse, and technical issues

For Legal and Safety Purposes

Comply with legal obligations and enforce our Terms of Service
Protect the rights, safety, and property of RoxPT and our users
Respond to legal requests from authorities

Mobile App Permissions

Our RoxSIM mobile app may request the following permissions. You can manage these permissions in your device settings at any time:

Motion & Fitness Activity

To track your workouts, record splits, and provide real-time pacing feedback during race simulations.

Microphone (Optional)

To enable voice commands and audio coaching features. Audio is processed locally and not stored.

Notifications

To send you workout reminders, pacing alerts, and training updates.

Camera (Optional)

To scan QR codes for gym equipment or share workout achievements.

Location (Optional)

To provide location-based features such as outdoor running tracking. We do not share your precise location with third parties.

Important: You can use the app without granting all permissions, though some features may be limited.

Data Protection & Security

Security Measures

We implement industry-standard security measures to protect your information:

TLS/SSL encryption for all data transmission
Secure cloud storage with access controls and monitoring
Regular security audits and vulnerability assessments
Multi-factor authentication options for account access
Encrypted storage of sensitive health and fitness data

While we strive to protect your information, no method of transmission over the internet is 100% secure. Please use strong passwords and keep your account credentials confidential.

Data Retention

We retain your personal information only as long as necessary to provide our Services and comply with legal obligations:

Account Data: Retained while your account is active
Training & Workout Data: Retained for the duration of your subscription plus 2 years (for analytics and service improvement)
Payment Records: Retained as required by tax and accounting regulations (typically 7 years)
Marketing Data: Retained until you opt-out or request deletion

When you delete your account, we will permanently delete or anonymize your personal data within 30 days, except where we are legally required to retain it.

Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information under applicable data protection laws (including GDPR, CCPA, and other regulations):

Access & Portability

Request a copy of your personal data
Export your training data in standard formats (CSV, JSON)
Access your account information anytime via app settings
Receive information about how your data is processed

Control & Deletion

Update or correct your information
Delete your account and associated data
Opt-out of marketing communications
Restrict or object to certain data processing

Consent Management

Withdraw consent for data processing at any time
Manage cookie preferences via our cookie banner
Control app permissions in your device settings
Opt-out of analytics and advertising tracking

Complaints & Appeals

Lodge a complaint with a data protection authority
Contact us directly with privacy concerns
Request human review of automated decisions
Appeal any decisions regarding your data rights

How to Exercise Your Rights: You can exercise these rights by contacting us at privacy@roxpt.app or through your account settings in the app. We will respond to your request within 30 days.

Data Sharing & Third-Party Services

We do not sell your personal information. We may share your information with trusted third-party service providers who assist us in operating our Services:

Payment Processing

Stripe and Apple/Google In-App Purchase systems for secure payment processing. We do not store your full credit card details.

Analytics & Performance

Google Analytics, Firebase Analytics, and similar tools for aggregated usage insights and crash reporting. These services may collect device identifiers and usage data.

Communication Services

Email service providers (e.g., SendGrid, Mailchimp) for transactional emails, notifications, and marketing communications (with your consent).

Cloud Infrastructure

AWS, Google Cloud, or similar providers for secure data storage, hosting, and backup services.

Social Media & Authentication

Apple Sign-In, Google Sign-In, Facebook Login for streamlined account creation. We only receive basic profile information you authorize.

All third-party service providers are contractually obligated to protect your information and use it only for the purposes we specify. We conduct due diligence to ensure they meet our privacy and security standards.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

Standard Contractual Clauses approved by the European Commission
Adequacy decisions recognizing equivalent data protection
Certification under privacy frameworks (e.g., EU-U.S. Data Privacy Framework)

Children's Privacy

Our Services are not intended for children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@roxpt.app. We will promptly delete such information from our systems.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

When we make material changes, we will:

Update the "Effective Date" at the top of this policy
Notify you via email or in-app notification
Provide a prominent notice on our website
Request your consent if required by law

Your continued use of our Services after such changes constitutes your acceptance of the updated Privacy Policy.

California Privacy Rights (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

Right to Know: Request information about the personal data we collect, use, disclose, and sell
Right to Delete: Request deletion of your personal information
Right to Opt-Out: Opt-out of the sale of your personal information (note: we do not sell personal information)
Right to Non-Discrimination: You will not receive discriminatory treatment for exercising your privacy rights

To exercise these rights, contact us at privacy@roxpt.app or call us at the number provided below.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email (Privacy Inquiries)

privacy@roxpt.app

General Support

support@roxpt.app

Data Protection Officer

dpo@roxpt.app

We respond to all privacy inquiries within 30 days as required by applicable law. For urgent matters, please indicate "URGENT" in your subject line.

Company Information:
RoxPT Ltd
United Kingdom