Privacy Policy
Stomp: Running & Route Planner (“Stomp”, “we”, “our”, “us”) is a mobile application that helps you plan running routes, track your runs, and monitor your fitness progress. This Privacy Policy explains what information we collect, how we use it, and the choices you have.
By using Stomp you agree to the practices described in this policy.
1. Information We Collect
1.1 Account Information
When you create an account we collect:
- Email address
- Display name (optional)
- Profile avatar selection (optional)
1.2 Location Data
Stomp collects precise GPS location data while you are actively recording a run. This includes:
- Real-time latitude and longitude coordinates throughout your run
- Route polyline (the path you travelled)
- Speed and pace derived from location data
1.3 Health and Fitness Data
With your permission, Stomp reads fitness data from:
- Apple Health (HealthKit) on iOS
- Health Connect on Android
Data imported may include: workout sessions, distance, duration, and heart rate. We do not write back to HealthKit or Health Connect. You may revoke this permission at any time in your device settings.
1.4 Run Data You Record
When you complete a run inside Stomp we store:
- Distance, duration, pace, and speed
- GPS route polyline
- Kilometre splits
- Elevation gain / loss
- Weather conditions at the time of your run (temperature, conditions — fetched from a public weather API using your approximate location)
- Whether the run used a generated route, a surprise distance, or deviated from the planned route
1.5 Usage Data
We automatically collect limited technical information:
- App version and device operating system
- Crash reports and error logs (used solely to fix bugs)
We do not collect advertising identifiers or build cross-app profiles.
2. How We Use Your Information
| Purpose | Data used |
|---|---|
| Provide GPS run tracking | Location data |
| Generate personalised running routes | Starting location (sent to OpenRouteService API) |
| Display your stats, splits, and history | Run data |
| Evaluate trophy unlocks and challenge completion | Run data, activity fields |
| Calculate XP, level, and streaks | Run history |
| Sync runs from Apple Health / Health Connect | Health data |
| Show current weather during a run | Approximate location (one-time fetch) |
| Fix crashes and improve the app | Crash logs, app version |
| Authenticate your account | Email address |
| Send optional in-app notifications | Device push token (local only; not used for marketing) |
We do not sell, rent, or trade your personal information to any third party.
3. Third-Party Services
Stomp integrates with the following external services. Each has its own privacy policy.
| Service | Purpose | Data shared |
|---|---|---|
| Google Firebase / Firestore | Cloud database and authentication | Account info, run data, routes |
| OpenRouteService | Route planning | Starting coordinates, distance preference |
| Apple HealthKit (iOS) | Importing existing runs | Read-only access to workout data |
| Google Health Connect (Android) | Importing existing runs | Read-only access to workout data |
| Open-Meteo / weather API | Weather tagging for runs | Approximate location at run start |
All data transmitted to third-party services is done over encrypted HTTPS connections.
4. Data Storage and Security
Your run data and account information are stored in Google Firebase (Firestore), which is secured with:
- Firestore security rules restricting access to your own data only
- Encryption at rest and in transit
We retain your data for as long as your account is active.
5. Account and Data Deletion
You may delete your account at any time from the Profile screen inside the app. Deleting your account permanently removes:
- Your account credentials
- All saved runs and activities
- All saved routes
- Trophies, XP, level, and challenges
- Any other personal data stored by Stomp
Deletion is irreversible. After deletion your data is removed from our active systems. Firestore backups may retain data for up to 30 days before they are overwritten.
You can also request deletion via our data deletion page.
6. Children's Privacy
Stomp is rated 4+ / Everyone but is not directed at children under 13. We do not knowingly collect personal information from children under 13 (or the applicable age in your jurisdiction). If you believe a child has provided us personal data, please contact us and we will delete it promptly.
7. Your Rights
Depending on where you live, you may have the right to:
- Access — request a copy of the data we hold about you
- Correction — ask us to correct inaccurate data
- Deletion — request erasure of your data (use the in-app delete account feature or contact us)
- Portability — receive your data in a structured format
- Restriction — ask us to limit how we use your data
- Withdraw consent — revoke location or health access at any time in device settings
To exercise any right, contact us using the details in Section 9.
8. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top. For material changes we will notify you via an in-app notice. Continued use of Stomp after changes are posted constitutes acceptance of the updated policy.
9. Contact
If you have questions or concerns about this Privacy Policy, or wish to exercise any of your rights, please contact:
Email: support@stomprun.com