Kip

Privacy Policy

Last updated: 2 April 2025

1. Who we are

Kip is an AI-powered endurance coaching platform operated by Alexander Kapp. When this policy says "we", "us", or "our" it refers to Alexander Kapp and the Kip service.

2. Data we collect

We collect only what is needed to provide personalised coaching:

  • Account information — email address and password (hashed).
  • Athlete profile — sport, experience level, goals, FTP, training zones, and preferences you share during onboarding or coaching conversations.
  • Fitness data from connected services — activities, workouts, power, heart-rate, pace, and GPS metadata imported from services you connect (e.g. Strava, intervals.icu, Garmin via intervals.icu).
  • Training plans & workouts — plans generated by Coach Kip and your completion data.
  • Coaching conversations — messages exchanged with Coach Kip so the AI can maintain context and improve recommendations.

3. How we use your data

  • Generate and adapt personalised training plans.
  • Provide AI coaching feedback, workout analysis, and performance insights.
  • Calculate training metrics (CTL, ATL, TSB, power curves).
  • Improve the coaching experience over time.

We do not sell, rent, or share your personal data with advertisers or data brokers.

4. Third-party services

To deliver the service we rely on the following providers, each with their own privacy policies:

  • Supabase — database hosting and authentication.
  • Anthropic (Claude) — AI model powering Coach Kip's coaching conversations and analysis.
  • OpenAI — text embeddings for semantic search over your training history.
  • Strava / intervals.icu — fitness data sync (only when you connect these services).
  • Vercel — web application hosting.

Your data is sent to these providers only to the extent necessary to operate the features you use. Coaching conversations are processed by Anthropic's Claude API; fitness data is fetched from whichever service you connect.

5. Data storage & security

  • All data is stored in a Supabase-hosted PostgreSQL database with row-level security.
  • Third-party API credentials (e.g. Strava tokens) are encrypted at rest.
  • All connections use HTTPS/TLS encryption in transit.
  • Access to production infrastructure is restricted to the operator.

6. Data retention

We retain your data for as long as your account is active. If you delete your account, all associated data (profile, activities, plans, conversations) will be permanently removed within 30 days.

7. Your rights

You can at any time:

  • Access your data through the dashboard or by contacting us.
  • Export your training data.
  • Delete your account and all associated data.
  • Disconnect third-party services to stop further data sync.

If you are in the EU/EEA, you also have rights under the GDPR including the right to rectification, restriction of processing, and to lodge a complaint with a supervisory authority.

8. Cookies & tracking

Kip uses only essential session cookies for authentication. We do not use analytics trackers, advertising cookies, or third-party tracking scripts.

9. Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify you via email or an in-app notice. The "Last updated" date at the top reflects the most recent revision.

10. Contact

For any questions about this privacy policy or your data, please reach out to us at kip@alexkapp.eu.