Privacy Policy

Effective date: April 1, 2026

Cartwheel Form LLC ("we," "us," "our") operates the Form mobile application ("Form"). This policy describes what data we collect, how we use it, and your rights regarding that data. Cartwheel Form LLC is the data controller responsible for your personal information.

1. Data We Collect

Account Information

When you create an account, we collect your name, email address, and a unique user ID. You may sign in with email and password, Apple Sign-In, or Google Sign-In. Authentication is handled by Firebase Authentication (Google Cloud).

Profile Information

During onboarding and coaching conversations, we collect fitness-related information to personalize your training plan:

• Age, sex, body weight, height
• Fitness goal, fitness level, training experience
• Available equipment and gym setup
• Training frequency, preferred days and times, session duration
• Exercise preferences, dislikes, and weak points
• Injuries and recovery factors
• Sport context and deeper motivation

Health and Fitness Data (Apple HealthKit)

With your explicit permission, Form reads the following data from Apple Health:

• Sleep analysis (duration, quality, deep/REM stages)
• Heart rate, resting heart rate, heart rate variability (HRV SDNN)
• Step count, active energy burned, walking and running distance
• Body mass, body fat percentage, VO2 max, respiratory rate
• Dietary data (energy, protein, carbohydrates, fat, fiber, water)
• Existing workouts from other apps

Form writes completed workouts back to Apple Health so your fitness data stays in one place.

HealthKit data is used solely to calculate readiness scores and personalize the training plan and coaching responses your AI coach generates for you. HealthKit data is never sold, shared with advertisers, used for tracking, or used to train AI models. HealthKit integration is optional.

To generate coaching responses and weekly training plans personalized to your recovery state, summarized HealthKit context (for example, the previous night's sleep duration, recent HRV trend, resting heart rate, and recent activity load) is sent to Anthropic's Claude API as part of the coaching prompt. Anthropic processes this data solely to return a response and does not retain it for training or any other purpose. See Third-Party Services below for details. If you do not enable HealthKit, no health data leaves your device.

Workout Data

We store your workout history including exercises performed, sets, reps, weights, duration, difficulty ratings, personal records, streaks, and total volume. This data informs AI coaching and progress tracking.

Profile Photo

You may optionally upload a profile avatar photo, which is stored in Firebase Storage and linked to your account.

Device Information

We store a Firebase Cloud Messaging (FCM) device token to deliver push notifications for coaching check-ins and plan updates. We also store your timezone (IANA identifier) for notification scheduling.

Connected Services (Optional)

• Strava: If you connect Strava, we read your activity data (runs, rides, workouts) to provide a complete picture of your training.
• WHOOP: If you connect WHOOP, we read recovery, strain, and sleep data to enhance readiness calculations.

Imported Conversations from Third-Party AI Assistants (Optional)

If you choose to bring in a chat you previously had with another AI assistant (such as ChatGPT, Claude, or Gemini) during onboarding or from Settings, Form stores the text you paste so your coach can reference it when designing your future training plans. We treat imported conversations the same way we treat your other Form chat data:

• Stored in our database under your account, encrypted in transit and at rest.
• Used only to inform your training plans and coaching responses.
• Not shared with third parties or used to train AI models outside the plan-generation flow you initiated.
• Sent to Anthropic's Claude API as part of the prompt that generates each weekly plan, subject to Anthropic's data-handling terms.
• Deletable by you at any time from your account settings, or by deleting your account.

If you don't import a conversation, none of this applies — the feature is fully opt-in and the planning-context question on the consultation chat can be answered without naming any AI tool.

2. How We Use Your Data

All collected data is used for app functionality:

• Generating personalized, periodized training plans
• Providing AI coaching responses and daily check-ins
• Calculating daily readiness scores from health metrics
• Tracking workout progress, personal records, and streaks
• Delivering push notifications for coaching and plan updates
• Enabling team training features (shared plans, group chat)

We do not use your data for advertising, marketing to third parties, or any purpose beyond providing and improving the app's core functionality.

3. Third-Party Services

• Firebase (Google Cloud): Authentication, database (Firestore), push notifications (FCM), and file storage. Data is encrypted at rest and in transit per Google Cloud's security standards.
• Anthropic Claude API: Chat messages, your profile (goals, equipment, fitness level, training history), and — if you have enabled HealthKit — summarized health context (sleep, HRV, resting heart rate, recent activity) are sent to Anthropic's API to generate AI coaching responses and weekly training plans. Anthropic does not use API inputs or outputs to train its models. Anthropic is contractually a data processor acting on Form's behalf. Communication is secured over TLS.
• RevenueCat: Subscription state, purchase events, and your user ID are processed by RevenueCat to manage subscription entitlements and validate App Store receipts. RevenueCat does not receive HealthKit, workout, or chat data. Governed by RevenueCat's Privacy Policy.
• Strava API: If connected by you, reads activity data. Governed by Strava's Privacy Policy.
• WHOOP API: If connected by you, reads recovery and strain data. Governed by WHOOP's Privacy Policy.

4. Tracking and Advertising

We do not track you across other apps or websites. There are no advertising SDKs, no tracking domains, and no advertising identifiers in the app. NSPrivacyTracking is set to false.

5. Data Security

Your data is encrypted in transit using TLS and encrypted at rest by Google Cloud (Firebase). API communication with Anthropic uses certificate pinning. The app does not use non-exempt encryption beyond standard HTTPS/TLS.

6. Data Retention and Deletion

Your data is retained while your account is active. You may request deletion of your account and all associated data at any time by contacting us at the email below. Upon deletion, all personal data is permanently removed from our systems within 30 days.

7. Community Safety and Moderation

Team training in Form lets members chat with each other. To keep these spaces safe we collect and process a small amount of data tied to in-app moderation:

• Block lists. When you block another member, we store their user ID on your profile. Their messages are hidden from your view of every team chat. Blocking is one-way and confidential — the blocked person is not told.
• Reports. When you submit a report, we record who you reported, what reason you selected, your optional comment, and your account ID. Reports are visible only to Form's moderation team. The reported user is not told who reported them.
• Soft-deletion. If you delete one of your own messages, the message is hidden from other members but a copy is retained for moderation review and removed when it is no longer needed for that purpose. You can request immediate deletion of any soft-deleted content by contacting us at the email below.
• Auto-flagging. Accounts that receive three or more reports from distinct members within 24 hours are flagged for human review. Flagging itself doesn't restrict app access — review and any action is performed by Form staff.

For our community guidelines and how to use blocking and reporting in-app, see the Support page.

8. Your Rights (GDPR)

If you are in the European Economic Area or United Kingdom, you have the right to:

• Access the personal data we hold about you
• Rectify inaccurate data
• Request erasure of your data
• Restrict or object to processing
• Data portability

To exercise these rights, contact us at the email below.

9. Your Rights (CCPA) — California Privacy Rights

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) give you the following rights with respect to your personal information:

• Right to know. Request the categories and specific pieces of personal information we have collected about you, the sources of that information, the business purpose for collecting it, and the categories of third parties with whom we share it. The full list is disclosed throughout this policy — sections 1 and 3 in particular.
• Right to delete. Request deletion of your personal information, subject to limited statutory exceptions. Self-serve account deletion is available in the Form app (Profile → Delete Account) and cascades through Firestore, Firebase Auth, and connected services.
• Right to correct. Request correction of inaccurate personal information.
• Right to limit use of sensitive personal information. Form's only sensitive personal information is health and fitness data from Apple HealthKit, which is collected only with your explicit permission and used solely for coaching personalization (see section 1).
• Right to opt out of sale or sharing. See "Do Not Sell or Share My Personal Information" below.
• Right to non-discrimination for exercising any of these rights.

To exercise any of these rights, contact us at form@d-jt.com. We will respond within 45 days as required by CCPA. We may need to verify your identity before fulfilling a request.

Do Not Sell or Share My Personal Information

Form does not sell your personal information, and Form does not share your personal information for cross-context behavioral advertising. There is nothing to opt out of because the underlying activity does not occur. No advertising SDKs are present in the app, no advertising identifiers are collected, and no data is transmitted to third-party advertising networks or data brokers.

The third-party services listed in section 3 (Firebase, Anthropic, RevenueCat, Strava, WHOOP) act as data processors on Form's behalf under contract — they process data only to provide their stated service and may not sell or use it for their own commercial purposes.

10. Children's Privacy

Form is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact us so we can delete it.

11. Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated through the app or via email. Continued use of the app after changes constitutes acceptance.

12. Contact

For questions about this privacy policy or to exercise your data rights, contact us at:
Cartwheel Form LLC
form@d-jt.com