Privacy policy
Last updated June 1, 2026
1. What we collect
Account data (name, email, phone), workout and nutrition logs you enter, check-in events (gym, time, approximate location at the moment of scan), purchase history, and device diagnostics. We do not collect background location.
2. How we use it
To run the product: sync your logs, verify check-ins, process payments, count streaks and TROX, and personalise your plan. Aggregated, anonymised stats (e.g. busiest hours) are shared with partner gyms — never your individual logs.
3. What gyms can see
Your partner gym sees your name, photo, package status and check-in history at their gym. They never see your workouts, nutrition, body data or activity at other gyms.
4. Payments
Card and wallet details go directly to our licensed payment processors. GYMTROX never stores full card numbers.
5. Your controls
Export your data, hide your activity from gym feeds, opt out of marketing, or delete your account (and all logs) in Settings → Privacy. Deletion completes within 30 days.
6. Data security
Data is encrypted in transit and at rest, hosted in certified data centres, with access limited to staff who need it. We run independent security reviews yearly.
7. Cookies & analytics
The web app uses essential cookies and privacy-respecting analytics. No third-party ad trackers, ever.
8. Children
GYMTROX is not for users under 16. If we learn we hold data on a child, we delete it.
9. Changes & contact
We'll notify you of material changes in-app. Privacy questions: privacy@gymtrox.com — our data protection officer replies within 7 days.