NEOOW.

This Privacy Policy describes how Neoow ("we", "us", "our") collects, uses, and protects your information when you use the Neoow mobile application and neoow.com (collectively, the "Service"). By using Neoow, you agree to this policy.

1. Who we are

Neoow is a rivalry-based fitness coaching app for runners and cyclists. We analyze your athletic activity from Strava and generate personalized training plans.

Contact: privacy@neoow.com

2. Information we collect

2.1 Information you provide directly

  • Strava account authorization. When you connect your Strava account via OAuth, you authorize Neoow to read your Strava profile and activity data. You can revoke this authorization at any time in your Strava settings.
  • Goals and preferences. Training targets you set in the app (e.g., pace, distance, frequency goals).

2.2 Information collected from Strava

With your authorization, we receive from Strava:

  • Your Strava user ID, name, profile photo, and email address
  • Your athletic activities (runs, rides) including: distance, duration, elevation, pace, heart rate, power data (cycling), and timestamps
  • Activity streams (per-second data) for cycling activities with power meters, used solely to compute your power curve

2.3 Information generated by Neoow

We compute and store Neoow Scores — proprietary fitness metrics derived from your Strava data. Neoow Scores include: Speed, Endurance, Consistency, Volume, Progress, and an Overall composite score. Neoow Scores are not Strava data — they are insights derived by Neoow.

2.4 Information collected automatically

  • Device type, operating system version, and app version (for crash reporting and debugging)
  • Authentication tokens (stored securely in your device's encrypted keychain)

3. How we use your information

  • To compute your Neoow Scores and track them over time
  • To generate personalized training plans and daily briefings via our AI coach
  • To compare your performance against ghost rivals (performance targets you set) and, in future versions, against other Neoow users who have explicitly consented to a rivalry
  • To send you notifications about your training plan and progress
  • To detect and prevent abuse, debug crashes, and improve the Service

4. How we share your information

4.1 Claude AI (Anthropic)

We send your Neoow Scores (not your raw Strava data) to Anthropic's Claude API to generate training plans and coaching feedback. The data sent to Claude contains numerical scores, your training goals, and brief descriptions of your recent workouts. We never send your name, email, Strava ID, GPS coordinates, or raw Strava data to Claude or any other third party.

Anthropic's privacy policy: anthropic.com/legal/privacy

4.2 Strava

We act on data Strava provides to us under your authorization. We do not send data back to Strava beyond standard OAuth flows. Your relationship with Strava is governed by Strava's own privacy policy: strava.com/legal/privacy

4.3 Other users

In the current version of Neoow ("Phase 1"), your data is not visible to any other user. In future versions ("Phase 2"), if you choose to start a rivalry with another Neoow user, both parties must explicitly consent. Even then, only Neoow Scores (not raw Strava data) will be visible to your rival, as required by Strava's API Agreement Section 2.10.

4.4 Service providers

We use the following infrastructure providers, who process data on our behalf under standard data processing agreements:

  • Railway (railway.app) — hosts our backend servers and PostgreSQL database (US region)
  • Anthropic (anthropic.com) — AI coaching (Neoow Scores only, see Section 4.1)
  • Firebase Cloud Messaging (Google) — push notification delivery
  • Stripe (stripe.com) — payment processing for the optional Pro subscription (see Section 5)

4.5 Legal requirements

We may disclose information if required by law, court order, or to protect the rights, property, or safety of Neoow, our users, or the public.

5. Payments & subscriptions

Neoow is free to use. We also offer an optional Pro subscription that unlocks full AI training plans, unlimited goals, and (in future versions) real-rival matchups.

When you purchase Pro, payment is processed by Stripe, an independent payment processor. You enter your card details directly on Stripe's hosted checkout page — Neoow never sees or stores your full card number. Stripe shares with us only:

  • Your email address and name (to match the payment to your Neoow account)
  • The country your card was issued in (for tax purposes)
  • The last 4 digits of your card and the card brand (for your receipt)
  • A Stripe customer ID and subscription ID (so we can manage your subscription)

Stripe's privacy practices are governed by their own privacy policy: stripe.com/privacy.

Cancellation & refunds. You can cancel Pro at any time from the Profile tab or by emailing billing@neoow.com. Your subscription remains active until the end of the current billing period. Refunds are handled case-by-case; EU/UK consumers retain their statutory 14-day right of withdrawal where it applies.

6. Data retention

  • Raw Strava data is retained for a maximum of 7 days, in accordance with Strava API Agreement Section 7. We refresh this data regularly from Strava.
  • Neoow Scores are retained permanently, as they are derived insights owned by Neoow and are not Strava data.
  • Training plans and coaching feedback are retained permanently for your reference.
  • Account data (email, authentication tokens) is retained until you delete your account.

7. Your rights

You can at any time:

  • Access your data — Email privacy@neoow.com to request a copy of all data we hold about you.
  • Delete your account — Use the "Delete account" option in the Profile tab, or email privacy@neoow.com. We delete all your data (including Neoow Scores, training plans, and Strava data) within 48 hours of your request, as required by the Strava API Agreement.
  • Revoke Strava authorization — At any time via your Strava settings. When you do, we automatically delete all your data within 48 hours.
  • Disable notifications — In the app's Profile tab or your device settings.

If you are in the EU/UK, you also have rights under GDPR to data portability, rectification, and to lodge a complaint with your local supervisory authority.

If you are in California, you have rights under CCPA to know, delete, and opt out of the "sale" of your data. We do not sell your data.

8. Security

  • All data in transit is encrypted using TLS 1.2 or higher
  • Strava OAuth tokens and your authentication session are stored in your device's secure keychain (iOS Keychain / Android Keystore)
  • Database backups are encrypted at rest
  • We follow the principle of least privilege for internal data access

No system is perfectly secure. If we discover a data breach affecting your information, we will notify you within 72 hours as required by law.

9. Children's privacy

Neoow is not intended for users under the age of 13. We do not knowingly collect data from children under 13. If we learn we have collected data from a child under 13, we will delete it. Strava itself requires users to be at least 13.

10. International users

Our servers are located in the United States. If you access Neoow from outside the US, your information will be transferred to, stored, and processed in the US. By using Neoow, you consent to this transfer.

11. Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify you via the app or email at least 14 days before the change takes effect. The "Last updated" date at the top of this page always reflects the most recent version.

12. Contact

Questions about this policy or your data:

Neoow is an independent third-party application and is not affiliated with, endorsed by, or sponsored by Strava, Inc. "Strava" is a trademark of Strava, Inc.