Privacy Policy
Last updated: 2025-12-14
Introduction
Fitlo helps gyms manage fitness competitions and provides AI-powered tools to streamline communication. This Privacy Policy explains how we collect, use, and protect your information.
Data We Collect
Account Information
- Email address
- Name and profile information
- Notification preferences (countries, cities, frequency, etc.)
Gmail Integration (Optional)
If you connect your Gmail account to use our AI receptionist features, we access and store:
- Email messages (subject, body, sender, recipient, date)
- Email metadata (labels, thread information)
- OAuth access tokens (encrypted)
How We Use Your Data
Competition Notifications
- Send notifications about competitions based on your preferences
- Improve our service and prevent abuse
AI Receptionist Features
When you connect Gmail, we use your email data to:
- Display your emails in a unified inbox
- Analyze email content using AI to determine if a response is needed
- Generate suggested email responses using AI
- Send email responses on your behalf when you approve them
- Organize emails by status (unread, needs response, sent, archived)
Third-Party Services
We use the following third-party services:
- Gmail API: To access your emails when you connect your Gmail account. We use Gmail API to read, send, and organize your emails.
- OpenAI: Email subject, sender, and body content are sent to OpenAI to:
- Determine if an email requires a response
- Analyze email sentiment (positive/neutral/negative)
- Generate suggested response drafts
- Extract structured information from emails
- Retell AI: To provide AI-powered phone and SMS responses for gyms. SMS opt-in data and consent are never shared with third parties.
- Supabase: To securely store your data with encryption at rest
- Mailgun: To send notification emails (no email content stored)
SMS Communications and Consent
By providing your phone number to Fitlo or any gym using Fitlo, you consent to receive informational text messages related to bookings, class reminders, and responses to your inquiries. Message and data rates may apply. Message frequency varies. Text HELP for help or STOP to opt out at any time.
SMS opt-in data and consent are stored securely and are not shared with third parties. We only use your phone number to respond to your inquiries and send information you've requested about gym services.
Google API Services User Data Policy
Fitlo's use of information received from Gmail APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We only use Gmail data to provide and improve our AI receptionist features. We do not transfer Gmail data to others except as necessary to provide the service, comply with applicable law, or as part of a merger or acquisition.
Data Security
We implement industry-standard security measures to protect your data:
- OAuth access tokens are encrypted at rest
- All data transfers use HTTPS encryption
- Database access is restricted and monitored
- We regularly review and update our security practices
Data Retention and Deletion
Email data is retained only as long as your Gmail account remains connected. When you disconnect your Gmail account:
- We immediately stop accessing your Gmail account
- Your stored emails and access tokens are deleted from our systems
- AI-generated suggestions are removed
Your Rights and Control
You have the following rights:
- Access: Request a copy of your data
- Correction: Update or correct your information
- Deletion: Delete your account and all associated data
- Disconnect Gmail: Revoke Gmail access at any time from the Integrations page
- Opt-out: Unsubscribe from notifications using the link in our emails
To exercise these rights, contact us at hello@fitlo.co or manage your settings in your account.
Contact
If you have questions about this Privacy Policy or our data practices, contact us at:
Email: hello@fitlo.co