Regritly.

Privacy Policy

Last updated: March 2026

1. Overview

At Regritly, your privacy is important to us. This policy explains what information we collect, how we use it, and how we keep it safe. The short version: we only collect what we need to make the app work, we never sell your data to anyone, and we don't track you beyond what's necessary for your fitness goals.

2. What We Collect

We collect the minimum amount of information needed to run Regritly:

  • Account information: Your name, email address, and profile picture from your Strava account when you sign in
  • Activity data from Strava: We only access the distance and duration of your activities — the bare minimum needed to check if you've hit your goal. We do not access, store, or process any GPS data, route information, heart rate, location data, or any other personal health metrics
  • Unit preference: Your preferred measurement system (kilometres or miles) from your Strava profile, so distances display in the units you're used to
  • Payment information: Your card details are passed securely to our payment processor (Stripe) and are never stored on our servers. We only keep a reference token that lets Stripe process charges when needed
  • Goal data: The goals you create, their targets, stakes, and progress

3. How We Use Your Data

Your data is used exclusively to make Regritly work:

  • Tracking your progress against the fitness goals you set
  • Processing charges when a goal is not completed
  • Sending you notifications about your goals (progress updates, reminders, results)
  • Displaying your activity history and goal progress in the app

That's it. We don't use your data for advertising, profiling, analytics beyond basic app functionality, or any other purpose. Your fitness data stays between you and Regritly.

4. What We Don't Do

To be completely clear:

  • We never sell your personal information to anyone
  • We never share your data with advertisers or marketing companies
  • We never access your GPS routes, location data, or heart rate from Strava
  • We never store your credit card number, expiry date, or security code on our servers
  • We never use your data to build profiles for third parties

5. Strava Connection & Authentication

When you connect your Strava account, we use a secure process called OAuth 2.0. This means you log in directly through Strava's own website — your Strava username and password are entered on Strava's site, not ours, and are never shared with or visible to Regritly. Strava then gives us a limited-access token that only allows us to read your activity data. We cannot post to your Strava account, modify your activities, or access anything beyond what's needed to track your goals.

You can revoke Regritly's access to your Strava data at any time through your Strava account settings. If you do, we will no longer be able to track your progress and any active goals may be marked as failed.

6. Third-Party Services

We use a small number of trusted services to run Regritly:

  • Strava: For reading your activity data (distance and duration only)
  • Stripe: For securely processing payments. Your card details are passed to Stripe for processing and are never stored on our servers
  • Email provider: For sending goal notifications and updates to your email address

We do not use any third-party analytics, tracking, or advertising services.

7. Data Security

We take reasonable measures to protect your information, including encrypted connections (HTTPS) for all data in transit, secure authentication tokens, and access controls on our database. No system is 100% secure, but we work to keep your information safe and will notify you promptly if we ever become aware of a data breach that affects your account.

8. Data Retention

We keep your data for as long as your account is active. If you delete your account, we will remove your personal information from our systems, except where we're required to retain it for legal or financial record-keeping purposes (for example, records of charges made). Goal and payment history may be retained in anonymised form.

9. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Revoke Strava access at any time through your Strava settings
  • Remove your saved payment method through your Regritly settings

To exercise any of these rights, please contact us.

10. Changes to This Policy

We may update this privacy policy from time to time. If we make significant changes, we'll notify you by email or through the app. Your continued use of Regritly after any changes means you accept the updated policy.

11. Questions?

If you have any questions about this privacy policy or how we handle your data, please get in touch. We're happy to help.