Thrini logothrini
Legal

Privacy Policy

Last updated: 19 May 2026

1. Who we are

Thrini ("we", "us", "our") operates the Thrini mobile application and website at thrini.com. We are committed to protecting your personal information and your right to privacy. If you have any questions, contact us at support@thrini.com.

2. What data we collect

We collect information you provide directly to us, including:

  • Account information: name, email address, password
  • Profile data: age, gender, height, weight, fitness goals
  • Health and fitness data: workout logs, nutrition logs, check-in responses
  • Device and wearable data: steps, sleep, heart rate (when you connect integrations)
  • Usage data: how you interact with the app and features you use
  • Communications: messages you send to us via support or feedback

3. How we use your data

We use the data we collect to:

  • Provide, personalise, and improve the Thrini coaching experience
  • Generate adaptive fitness and nutrition plans
  • Send you app-related communications (plan updates, insights, tips)
  • Analyse usage patterns to improve our AI systems and product
  • Comply with legal obligations

We do not sell your personal data to third parties. We do not use your data to target you with third-party advertising.

4. Legal basis for processing (UK/EU GDPR)

For users in the United Kingdom and European Union, we process your data on the following legal bases:

  • Contract: To provide the services you signed up for
  • Consent: For health data processing and optional communications
  • Legitimate interests: To improve our product and services
  • Legal obligation: Where required by applicable law

5. Health data

Fitness and health data is treated as sensitive personal data under GDPR. We collect and process this data only with your explicit consent, solely to provide the adaptive coaching features of Thrini. You can withdraw consent and delete your health data at any time from your account settings.

6. Data sharing

We share your data only with:

  • Supabase: Our database and authentication provider (EU data residency available)
  • AI processing providers: Only anonymised, aggregated data is used for model improvement
  • Legal authorities: Only where required by law

7. Data retention

We retain your personal data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it by law.

8. Your rights

Under UK/EU GDPR, you have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data ("right to be forgotten")
  • Object to processing or request restriction of processing
  • Data portability — receive your data in a structured, machine-readable format
  • Withdraw consent at any time

To exercise any of these rights, email us at support@thrini.com.

9. Cookies

Our website uses minimal cookies — only those strictly necessary for the site to function. We do not use tracking or advertising cookies. You can control cookies through your browser settings.

10. Security

We implement industry-standard security measures including encryption at rest and in transit, access controls, and regular security reviews. However, no system is 100% secure and we cannot guarantee absolute security.

11. Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or via the app. Your continued use of Thrini after changes are posted constitutes acceptance.

12. Contact

For any privacy-related questions or concerns, contact our Data Protection contact at:

Thrini