Privacy Policy

Last updated: March 25, 2026

Introduction

High Route Studio LLC ("we," "us," or "our") operates the Let's Gooo mobile application (the "App"). This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our App.

By using Let's Gooo, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the App.

Information We Collect

Information You Provide

  • Account information — name, email address, and profile details you enter when setting up the App
  • Fitness profile — experience level, goals, injuries, available equipment, and training preferences
  • Workout data — exercises, sets, reps, weights, and other data you log during training sessions
  • Chat messages — conversations with Carlos, your AI trainer, used to generate and modify workouts

Information from Connected Services

When you connect third-party services, we receive data from those platforms to personalize your training experience:

  • Garmin Connect — activity summaries (type, duration, distance, heart rate, calories), daily health metrics (steps, sleep, heart rate, stress, Body Battery), and device information. Data is received via the Garmin Connect Developer Program APIs using OAuth 2.0 authorization. We access only the data categories you authorize.
  • Strava — activity summaries including type, duration, distance, heart rate, and effort metrics. Data is received via the Strava API using OAuth 2.0 authorization.
  • Apple Health — workout data, heart rate, and health metrics you choose to share via Apple's HealthKit framework.

Information Collected Automatically

  • Usage analytics — anonymous, aggregated data about how the App is used (features accessed, session duration) to improve the product. This data cannot identify individual users.
  • Device information — device model, operating system version, and app version for compatibility and debugging purposes.

How We Use Your Information

We use your information solely to provide and improve the App:

  • Personalized training — your fitness profile, workout history, and connected service data are used by our AI trainer to generate, modify, and recommend workouts tailored to you
  • Recovery and load management — activity data from Garmin, Strava, and Apple Health is used to calculate training load, estimate recovery, and adjust workout intensity
  • Workout delivery — when you connect Garmin, AI-generated structured workouts may be synced to your Garmin device for guided sessions
  • Progress tracking — your workout logs are used to track personal records, volume trends, and strength progression over time
  • Product improvement — anonymous, aggregated usage data helps us understand which features are valuable and where to improve

How We Store Your Data

  • On-device storage — all workout data, chat history, and fitness profiles are stored locally on your device using Apple's SwiftData framework
  • iCloud sync — your data is synced privately via your personal iCloud account to enable access across your Apple devices. We do not have access to your iCloud data.
  • AI processing — chat messages are sent to third-party AI providers (Anthropic Claude, OpenAI, or Google Gemini, depending on your configuration) to generate workout responses. These messages are transmitted securely via our proxy server and are not stored by the AI providers beyond the duration of the request.
  • Connected service tokens — OAuth tokens for Garmin, Strava, and other services are stored securely in the iOS Keychain, which provides hardware-level encryption.

Data Sharing

We do not sell, rent, or share your personal information with third parties for their marketing purposes.

Your data may be shared only in these limited circumstances:

  • AI providers — chat messages and relevant context are sent to AI providers to generate workout responses, as described above
  • Connected services — when you explicitly choose to export data (e.g., sharing a completed workout to Strava), that data is sent to the service you selected
  • Legal requirements — we may disclose information if required by law, regulation, or legal process

There are no social features, leaderboards, public profiles, or any way for other users to see your data.

Garmin Data

When you connect your Garmin account, we access your data through the Garmin Connect Developer Program APIs. Specifically:

  • We request only the data necessary to provide training personalization (activities, daily health summaries, and device information)
  • Garmin data is used exclusively within the App to inform AI training recommendations and recovery estimates
  • Garmin data is stored locally on your device and synced privately via your iCloud account
  • We do not share your Garmin data with any third party except as required for AI workout generation (where activity context may be included in prompts)
  • You can disconnect your Garmin account at any time from the App settings, which stops all data syncing
  • You can delete all synced Garmin data from the App at any time via the data management options in Settings

Your Rights and Choices

You have control over your data:

  • Access and export — you can export all your workout data at any time from the App settings
  • Deletion — you can delete your data from the App at any time. Uninstalling the App removes all local data. To remove iCloud data, use Apple's iCloud storage management.
  • Disconnect services — you can disconnect Garmin, Strava, or Apple Health at any time from Settings. You can also revoke access directly from Garmin Connect settings, Strava settings, or Apple Health settings on your device.
  • Data portability — your data can be exported in standard formats for use with other services

For EU/EEA Users (GDPR)

If you are located in the European Union or European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing

To exercise these rights, contact us at [email protected].

For California Users (CCPA)

If you are a California resident, you have the right to know what personal information we collect, request deletion of your data, and opt out of the sale of personal information. We do not sell personal information.

Data Security

We take reasonable measures to protect your information:

  • OAuth tokens and API keys are stored in the iOS Keychain with hardware-level encryption
  • All network communication uses HTTPS/TLS encryption
  • On-device data is protected by iOS platform security and your device passcode
  • iCloud data is encrypted in transit and at rest by Apple

No method of electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

Children's Privacy

Let's Gooo is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: