IGNEVO INC. ("IGNEVO," "we," "us") operates the IGNEVO travel-fitness app and the ignevo.com website. This policy explains, in plain language, what personal information we handle, where it lives, how long we keep it, who we share it with, and the choices you have. We wrote it to be read — not to be hidden.
If you have questions, contact us at [email protected].
- Some things never leave your phone. Your photo, date of birth, height, weight, and anything about your body or training stay on your device. We don't upload them and we can't see them.
- Some things we store to run your account — your name, email, phone, saved venues, trips, bookings, and membership — so they're there when you come back.
- Health data is read only with your permission, used only to personalize your training, never sold and never used for advertising. You can revoke access anytime in Settings.
- We only share your details with a venue when you tell us to — to pre-fill that venue's forms or waivers — and only the specific fields that venue needs.
- You're in control. You can view, correct, export, or delete your data, and delete your entire account, from Settings at any time.
The sections below give the detail, field by field.
1. What we collect, and where it lives
We classify every field into one of three tiers and default to the most local tier that still works.
Tier A — Stays on your device (never transmitted to us)
Stored only in the app's on-device storage; personalization is computed on your phone. We do not receive or store copies of these.
| Field | Why it's used | Retention |
|---|---|---|
| Profile photo | Your avatar in the app | On your device until you change/remove it |
| Date of birth | On-device age check (18+); never displayed | On your device |
| Height | Personalize training guidance | On your device |
| Weight | Personalize training guidance | On your device |
| Workout preferences | Tailor recommendations & Compass | On your device |
| Health & fitness data (heart rate, recovery, workout history) | Power the "How are you feeling?" filter and Compass personalization | On your device |
If you uninstall the app or reset your device, Tier A data is lost — we hold no backup of it. (We may offer an optional encrypted backup in the future; it will be off unless you turn it on.)
Tier B — Stored on our servers (to run and sync your account)
The minimum personal information needed for your account to function and sync across devices.
| Field | Why it's used | Retention |
|---|---|---|
| Name | Account identity, booking confirmations | Life of account + 30 days after deletion |
| Sign-in, confirmations, service messages | Life of account + 30 days | |
| Phone (when you add it) | Booking confirmations; verification | Life of account + 30 days |
| Account & sign-in credentials | Authenticate you | Life of account + 30 days |
| Membership tier / entitlement | Unlock paid features (validated with our payments provider) | Life of account + 30 days |
| Saved venues & trips | Your saved content | Life of account + 30 days |
| Bookings | Manage and confirm reservations | Life of account; transaction records retained as required by law |
| Emergency contact (name & phone) | Safety; pre-fill venue waivers (shared only with your consent) | Life of account + 30 days |
| Reviews | Content you choose to post | Until you delete them, or account deletion |
| Basecamp | Personalize nearby results | Life of account + 30 days |
| Home city & country | Personalize nearby results; currency & local formatting | Life of account + 30 days |
| Traveler mode | Tailor trip planning | Life of account + 30 days |
Tier C — Derived signals (optional, only with consent)
If you opt in, we may send a derived summary — never the raw data — to personalize server-side features (e.g. "trains ~4×/week," "recovery: moderate"). We never send the underlying health readings. You can withdraw this in Settings.
Information collected automatically
When you use the app or website, limited technical information is collected automatically to run, secure, and improve the service:
- Device & app data — device model, operating system and version, app version, and language/region, plus a device identifier used to deliver the service and notifications.
- IP address & connection data — received by our hosting provider (Cloudflare) and used for security, abuse prevention, and serving the correct regional experience.
- Diagnostics & crash logs — if the app errors or crashes, we and the platform (Apple / Google) may receive diagnostic reports, used only to keep the service reliable.
- Usage activity — basic, privacy-respecting product analytics (e.g., which screens are opened) to understand and improve the app. Never used for advertising and never sold.
- Maps & places — when you view maps or venue details, Mapbox and Google receive your approximate location and IP to render maps and return results, under their own terms.
- Push tokens — if you enable notifications, your device push token is stored to deliver booking and trip alerts. You can turn notifications off at any time.
We do not use third-party advertising trackers, ad pixels, or cross-context behavioral advertising.
Cookies & local storage
- In the app: we use on-device storage to hold your preferences and your Tier A data — not for tracking.
- On the website: we use only strictly-necessary cookies (to keep you signed in and secure your session). We do not use advertising or cross-site tracking cookies. Where required, EEA/UK visitors are asked before any non-essential cookies are set.
2. Health and fitness data
We treat health data as sensitive and handle it under stricter rules:
- Read only with your explicit permission (via Apple Health / Health Connect or values you enter), and only for the purpose you granted.
- Used only to personalize your training within the app.
- Never sold. Never used for advertising. Never shared except a derived summary you specifically consent to (Tier C), or specific fields you choose to share with a venue (Section 3).
- Raw health readings stay on your device (Tier A).
- You can revoke access at any time in Settings or your device's privacy settings; revoking never blocks the rest of the app.
3. Sharing your details with venues
When you book or plan a visit, you can choose to let IGNEVO send a venue the information it needs to pre-fill its forms or waivers. This sharing:
- Only happens when you opt in, at the moment of booking, for that venue.
- Sends only the specific fields that venue's form requires (typically name, email, phone, and — for an age check — date of birth).
- Health or medical details are shared only if you separately turn that on. That option is off by default and is never auto-filled from your device's Health data.
- Is bound by our contract with the venue: the venue may use the information only to prepare your visit — not to sell it, and not to market to you.
- Is limited to that booking unless you choose to apply it more broadly (e.g., a Diplomat trip-wide option). You can revoke sharing anytime in Settings › Privacy › Venue sharing.
We record your sharing choices (what, with whom, and when) so we can honor and prove them.
4. Service providers we use
We use a small set of vendors strictly to operate the service. They may process personal information only on our instructions, under contract (data-processing agreements), and not for their own purposes:
- Apple App Store / Google Play & RevenueCat — process subscription purchases and validate membership. Payment-card details go to the app store, not to us.
- Stripe — processes day-pass and booking payments. Card details go to Stripe, not to us.
- Twilio — sends transactional SMS (verification codes and booking confirmations) when you provide a phone number. Not used for marketing.
- Mapbox & Google Places — power maps and venue information.
- Resend — sends transactional email (confirmations, service messages).
- Supabase / Cloudflare — host your account data and run the service.
These are service providers, not data buyers. We do not sell your personal information, and we do not share it for cross-context behavioral advertising.
5. Location
If you use "near me" or the map's locate control, we use your device location to show nearby venues. Your location preference is stored on your device. We don't store your precise location on our servers unless it's needed to fulfill something you asked for (e.g., setting a basecamp), and you can decline location access at any time without losing access to the app.
6. Your choices and rights
Regardless of where you live, you can:
- Access and correct your information in the Passport and Settings.
- Export your data (request via [email protected]).
- Delete your account and data in Settings → Delete account — this purges your on-device (Tier A) data and your server-side (Tier B/C) records, including any guest (Nomad) account, and any details previously shared at your direction where we are able to recall them.
- Revoke health access and venue-sharing anytime in Settings.
California (CCPA/CPRA): you have the right to know, delete, correct, and to limit use of sensitive personal information. We do not sell or "share" (as CCPA defines it for cross-context advertising) your personal information, so there is nothing to opt out of for sale/share — but you may still exercise the other rights above. We honor Global Privacy Control signals.
EEA/UK (GDPR): our legal bases are performance of your contract (running your account and bookings), your consent (health data, venue sharing, optional derived signals), and our legitimate interests (securing and improving the service). You may access, rectify, erase, restrict, port, or object, and withdraw consent at any time. You may lodge a complaint with your supervisory authority.
To exercise any right, use Settings or email [email protected]. We respond within the timeframes required by law.
7. Data retention and deletion
We keep server-side personal information for the life of your account and delete it within 30 days of account deletion, except where we must retain limited records (e.g., transaction/tax records) for a longer period required by law. On-device (Tier A) data is removed when you delete it, delete the app, or delete your account. Consent records are retained for 3 years for audit.
8. Security
We protect personal information with encryption in transit, access controls, and the device-first design described above — keeping the most sensitive data on your device by default. No method of storage or transmission is perfectly secure, but we work to protect your information and will notify you and regulators of a breach as required by law.
9. Children
IGNEVO is intended for adults (18+). We confirm age on-device and do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us information, contact [email protected] and we will delete it.
10. International transfers
We are based in the United States and process information there. Where we receive information from the EEA/UK, we rely on appropriate safeguards (such as Standard Contractual Clauses) for any transfer.
11. Changes to this policy
If we make material changes — especially to what we collect or who we share it with — we will notify you in the app and/or by email and, where required, ask for your consent before the change takes effect.
12. Contact
IGNEVO INC.
8 The Green, Suite B
Dover, DE 19901
[email protected]