Privacy Policy for Trainers
Last updated: April 9, 2026
This Policy explains what personal data is collected about you when you use the Rutinize platform as a trainer, who is responsible for each type of data, what it is used for and what rights you have over it.
The platform is operated by Arian Roque ([email protected]), hereinafter the “Provider” or “Rutinize”.
1. What data is collected and why
1.1 Account and profile data
| Data | Purpose |
|---|---|
| First and last name | Identification on the platform |
| Email address | Communications and authentication |
| Username | Unique identifier |
| Password (encrypted) | Secure authentication |
| Country | Content personalization and tax calculation if applicable |
| Time zone | Displaying dates and calendars in local time |
1.2 Professional activity data
| Data | Purpose |
|---|---|
| Created clients and their data | Managing your client base |
| Programs, routines and exercises | Storing the content you create |
| Forms and responses | Saving the forms you design and your clients’ responses |
| Progression Engine configuration | Saving the parameters you define to automate progression |
| Session records | Training data recorded by your clients |
1.3 Technical data
| Data | Purpose |
|---|---|
| Activity and error logs | Detecting failures and improving stability |
| Session data in your browser (JWT, user, role) | Keeping your session active |
2. Progression Engine and automated decisions
The Engine processes your clients’ session data (repetitions, weights, times) to assess whether the progression conditions you defined are met. The adjustments it applies are predictable and derive directly from your configuration; it does not make autonomous decisions.
As data controller, you define the parameters and can review or revert any adjustment.
3. Legal bases for processing
| Processing | Legal basis |
|---|---|
| Account and profile data | Performance of the service contract |
| Professional activity data | Performance of the service contract |
| Technical logs and session data | Legitimate interest of the Provider in operating the platform |
4. Who your data is shared with
| Provider | Function | What data they may access |
|---|---|---|
| Railway (USA) | Infrastructure | All data stored on the platform |
| Cloudflare (USA) | Domain and network | Traffic metadata |
| Mailgun / Sinch (USA) | Email delivery | Your email and message content |
| Stripe (USA) | Payment processing | Data necessary for payments and taxes |
Rutinize does not sell your personal data or share it for advertising purposes.
5. International transfers
Providers are based in the USA. Rutinize endeavors to work with providers that have recognized transfer mechanisms (EU Standard Contractual Clauses for EU-based trainers).
6. How long your data is retained
| Type of data | Period |
|---|---|
| Account and activity data | While your account is active |
| Technical data (logs) | As long as necessary for the purposes described |
| Session data in browser | Until logout or token expiry |
When you close your account, Rutinize will securely delete or anonymize your data and your clients’ data within 30 days.
7. Your rights
Access, rectification, erasure, portability, restriction, objection.
To exercise these rights: [email protected] — subject “Privacy — data request”.
If you believe your rights have not been properly addressed, you may file a complaint with the data protection authority in your country.
8. Security
Rutinize implements encrypted communications (HTTPS), role-based access controls and security event logging.
9. Governing law
This Policy is governed by the laws of Canada. The foregoing does not affect the non-waivable rights recognized by the mandatory regulations of your country of residence.
10. Changes to this policy
When changes are significant, you will be notified with reasonable advance notice.
11. Contact
[email protected] — subject “Privacy — data request”.