Privacy Policy

Vici is your personal AI running coach. We take your privacy seriously and put you in control of your data. This policy explains how we protect and use your information to provide personalized training coaching.

What We Collect

Training Data for AI Coaching

• Running Activities: Distance, time, pace, heart rate, GPS routes for personalized training plans
• Performance Metrics: Personal bests, Vici Score calculations, training zones
• Fitness Profile: Experience level, goals, training preferences

Health & Wellness Data (from Connected Devices)

• Heart Rate & HRV: Resting heart rate and heart rate variability for recovery assessment
• Sleep Data: Sleep duration, stages, and quality for training readiness
• Recovery Metrics: Recovery scores and readiness indicators to inform training recommendations

Connected Device Integrations

Vici integrates with fitness platforms and devices to sync your training data. You choose which services to connect, and you can disconnect any integration at any time from your account settings.

• Strava: Running activities, performance data, and race history
• Garmin Connect: Activities, heart rate, HRV, sleep, and daily health metrics. Vici may also send structured workouts and training plans to your Garmin device
• Apple Health: Workouts, heart rate, HRV, sleep, and fitness data stored on your device
• WHOOP: Recovery scores, HRV, sleep data, and strain metrics
• Other Providers: We may add support for additional fitness platforms (COROS, Polar, Suunto, etc.). Each requires your explicit authorization before any data is shared

Each integration uses industry-standard OAuth 2.0 authentication. We only access the specific data types you authorize, and we never access data beyond what is needed for coaching.

How We Use Your Data

AI Training Plans

Your running data powers our AI to create personalized training plans based on your unique fitness level, goals, and training history.

Performance Analysis

We calculate your Vici Score, training zones, and fitness progression to provide accurate coaching recommendations.

Recovery & Readiness

When available, we use heart rate variability, sleep quality, and recovery scores to assess your training readiness and adjust recommendations accordingly.

Workout Delivery to Devices

With your permission, Vici can send structured workouts and training plans directly to your connected device (e.g., Garmin watch, Apple Watch). This allows you to follow your personalized workout with pace targets on your wrist. You control whether workouts are sent to your device.

How We Protect Your Data

• End-to-End Encryption: All data encrypted in transit and at rest
• Secure Cloud Hosting: Enterprise-grade infrastructure hosted in the EU (europe-west4)
• No Data Sales: We never sell your personal data to third parties
• AI Privacy: Personal identifiers removed when data processed by AI services
• On-Device Data: Apple Health data is read directly on your device and only synced to our servers with your explicit permission
• Minimal Access: We only request the specific data scopes needed for coaching -- nothing more

Third-Party Data Sharing

We do not sell, rent, or share your personal data with third parties for their marketing purposes. Data is shared only in these limited circumstances:

• AI Processing: Anonymized training data is sent to AI services (Google Gemini) for coaching generation. No personal identifiers are included
• Connected Platforms: When you choose to send workouts to a connected device (e.g., Garmin), only the workout structure is shared -- no personal data beyond what is required
• Legal Requirements: If required by law, regulation, or valid legal process

Your Rights & Controls

Complete Data Control

• View Your Data: See all data we store about you
• Export Your Data: Download everything in machine-readable format
• Delete Your Data: Complete account deletion with 30-day grace period
• Manage Integrations: Connect or disconnect any fitness platform anytime from settings
• Control Device Sync: Choose whether workouts are sent to your connected devices
• Revoke Access: Revoking access immediately stops all data sync from that platform

GDPR Compliance

We're fully compliant with EU data protection regulations. Your data is stored in the European Union. You have the right to access, correct, export, delete, and control all your personal data.

Data Retention

• Training Data: 3 years (for AI coaching effectiveness)
• Health/Wellness Data: 1 year (sleep, HRV, recovery metrics)
• Account Data: While active + 30 days after deletion
• Personal Bests: Indefinite (unless you request deletion)

Apple HealthKit

Vici complies with Apple's HealthKit requirements. Health data accessed through HealthKit is used solely for providing personalized coaching and is never used for advertising, data mining, or shared with third parties for purposes unrelated to health and fitness coaching. HealthKit data is not stored in iCloud.

Contact Us

For privacy questions or support, reach us at chris@vici.run