Privacy Policy
Last updated: 2026-05-31
This policy explains what trnr collects, why, who we share it with, and what control you have over it. We have tried to keep it plain. If anything below is unclear, email support@trnr.fit and we will answer in plain language.
Who we are
trnr is a running and training platform operated from the United States. “We,” “us,” and “trnr” mean the operators of trnr.fit.
What we collect
When you sign in with Google we receive your Google account email, name, and Google user id from Google. That's the only thing we collect about you before you do anything in the app.
While you use trnr we collect what you create or upload: running form videos, activities, routes, training plans, notes, photos, ratings, and the form-analysis output our pipeline produces from your videos.
If you connect a third-party fitness service — Strava, Garmin, COROS, Zwift, Fitbit (via the Google Health API), Polar, Wahoo, or Suunto — we receive activity and biometric data from that service on your behalf, only after you authorize the connection, and only for as long as the connection is live.
We also keep basic technical logs (IP address, user agent, request path) to debug problems and detect abuse. Logs are retained for up to 90 days.
How we use it
We use the data you provide to run the service: signing you in, showing you your activity history, running pose analysis on your videos, generating personalized training plans, computing metrics like VDOT and pace zones, and improving the product over time. We do not use your data for advertising and we do not build advertising profiles.
Google Health (Fitbit) data
If you connect Fitbit, trnr accesses your Google Health data through the Google Health API after you grant consent. We request read-only access to two categories:
- Activity and fitness — your exercise/workout records (sport, start time, duration, distance, heart rate, calories, elevation), used to import each workout into your trnr activity log and power your training history, mileage and training-load charts, and AI training-plan adjustments.
- Exercise location — the GPS track recorded during an outdoor workout, used only to draw that activity's route map and compute distance, pace, and elevation from the actual track.
We access this data only for your own account, only to provide these user-facing features at your request. We do not sell it, use it for advertising, or use it to train AI/ML models, and we do not transfer it to others except as needed to operate the features above. You can clear all imported Fitbit activities and disconnect Google Health at any time from the Connected Accounts section of your Profile — disconnecting deletes the imported activities and revokes our access. You can also revoke access at myaccount.google.com/permissions.
trnr's use and transfer of information received from Google APIs to any other app adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Who we share it with
We do not sell your personal data. We share it only with the service providers needed to run trnr:
- Google — when you choose to sign in or connect Fitbit (Google Health)
- Strava, Garmin, COROS, Zwift, Polar, Wahoo, Suunto — only when you connect them
- Amazon Web Services — hosting, databases, video storage
- Stripe — for subscription billing if you upgrade
- Anthropic and OpenAI — for AI-assisted training plan and coaching features (we send the inputs you provide for those features, not your activity history wholesale)
Where it lives
Your data is stored on infrastructure in the United States. If you use trnr from outside the US, your data is processed and stored in the US, which may have data protection laws different from those in your country.
Cookies
trnr sets one essential cookie — a signed session token — so the site knows you're signed in across page loads. The cookie is HttpOnly, scoped to the trnr.fit domain, and expires after 7 days. We do not use cookies for advertising, analytics, or cross-site tracking. We also store a small amount of preference data (your selected theme, your dismissal of the cookie banner) in your browser's local storage; this never leaves your device.
Your rights
You can view and update most of your information from the Profile screen.
You can delete your account from the Profile screen. When you do, your account is locked immediately and your data is fully removed from our databases after 30 days. Any active paid subscription is canceled at the moment you delete. If you change your mind within that 30-day window, email support@trnr.fit and we can restore the account.
If you live somewhere with stronger data rights (e.g. the EU/UK under GDPR, or California under CCPA), you can also request a copy of your data, corrections, or deletion outside the in-app flow by emailing the same address.
Children
trnr is not directed at children under 13 and we do not knowingly collect personal information from them. If you believe a child has provided us with personal information, email support@trnr.fit and we will delete it.
Changes to this policy
If we make material changes, we will update the date at the top of this page and surface a note in-app. Small clarifications may be made without notice.
Contact
Questions about this policy can be sent to support@trnr.fit.