Privacy Policy

EFFECTIVE DATE: APRIL 2026 · ASTRAPEAI.COM

Astrape AI ("Astrape," "we," "us," or "our") is committed to protecting your personal and health data. This Privacy Policy describes how we collect, use, store, and share information when you use the Astrape AI coaching platform.

1. Information We Collect

We collect information you provide directly and information retrieved through authorized API integrations:

  • Account information: Name, email address, and password (hashed).
  • Wearable Device data: Via official developer APIs from your connected devices (such as smartwatches and fitness trackers) — activities, heart rate, HRV, sleep, energy estimates, VO₂ max estimates, stress scores, and respiration rate. Access is granted by you via OAuth and may be revoked at any time.
  • Usage data: Log data, feature interactions, and session metadata to improve product quality.
  • Communications: Messages sent through in-app chat or email support.

2. How We Use Your Information

  • To generate personalized training load models (ATL, CTL, TSB), readiness scores, and coaching recommendations.
  • To operate and improve the Astrape platform.
  • To respond to support requests and communicate product updates (with your consent).
  • To comply with legal obligations.

We do not use your health or physiological data to train third-party machine learning models. We do not sell your data to any third party for advertising or commercial purposes.

3. Connected Device API Data

Astrape accesses health and fitness data only through official developer program APIs under the respective provider's terms of service. We request only the minimum data scopes necessary to deliver coaching functionality:

  • Activity summaries and GPS tracks
  • Heart rate and HRV data
  • Sleep data and energy metrics
  • Stress and respiration data

You may revoke Astrape's access to your connected device data at any time through your device provider's account settings (e.g., under Connected Apps). Upon revocation, we will cease data retrieval and delete your synced device data within 30 days upon request.

4. Data Retention

We retain your data for as long as your account is active or as needed to provide the service. You may request deletion of your account and all associated data at any time by emailing sean.balbale@astrapeai.com. We will process deletion requests within 14 business days.

5. Data Security

We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest for health data, and access controls limiting data exposure to authorized services only.

6. Data Sharing

We do not sell, rent, or trade your personal or health data. We may share data with:

  • Infrastructure providers: Cloud hosting providers operating under data processing agreements.
  • AI model providers: Anonymized, aggregated data may be processed by AI inference APIs to generate coaching recommendations. No personally identifiable information is included.
  • Legal requirements: If required by law, court order, or government authority.

7. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, or export your personal data, and to withdraw consent for data processing. To exercise any of these rights, contact us at sean.balbale@astrapeai.com.

8. Children's Privacy

Astrape is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email. The current policy is always accessible at astrapeai.com/privacy.

10. Contact

Astrape AI · Sean Balbale · Boston, MA Email: sean.balbale@astrapeai.com Website: https://astrapeai.com

Back to Home