← ROONEY Tech

Privacy Policy — Run Fun and Serious

Effective: 2026-05-10

Last updated: 2026-05-18

Developer: Rooney Industries LLC (d/b/a ROONEY Tech), Denver, CO

Contact: colin@rooneytech.com

Plain-English version →

Overview

Run Fun and Serious ("Run Fun," "the app") is a gait analysis and running coaching app published by Rooney Industries LLC. This policy explains what data the app collects, where it is stored, who else processes it, and what choices you have.

A plain-English companion describes the same system in friendlier language. If the two disagree, this version wins until corrected — please report disagreements to colin@rooneytech.com.

Data we collect

On-device only

The following data is created and stored locally on your iPhone. It is not transmitted to our servers unless you explicitly choose to share or export it:

• Runner profile — display name, shoe selections, sensor preferences.
• Apple Watch IMU recordings — accelerometer (~800 Hz) and device-motion (~200 Hz) data captured during runs. Stored locally; see "Sent to our cloud" below for the conditions under which a copy is uploaded alongside a cloud video job.
• AirPods motion data — head-orientation samples (~50 Hz) captured during runs when AirPods are connected. Same handling as Watch IMU above.
• Captured video — the original video file you record stays on your phone.
• Run labels — voice-labeled gait events from coaching sessions.
• Shoe photos — images you take of your running shoes.
• Conversation history — local copies of voice-coach session summaries.

Sent to our cloud (Cloudflare Workers + AWS S3 + RunPod) for processing

When you use cloud-backed features, the following data leaves your device:

• Video clips for analysis — sent to AWS S3 (US East, bucket runfun-video-uploads) for staging, then to a RunPod GPU container for pose estimation and overlay rendering. The job is associated with a randomly generated job ID and your profile UUID.
• Watch and AirPods IMU recordings alongside cloud video jobs — if a Watch or AirPods IMU file is available for the run being analyzed, a copy is uploaded to AWS S3 (prefix imu/) and passed to the same RunPod GPU container as an additional input. This is automatic when those sensor recordings exist for the clip you're submitting; if you want to avoid sensor uploads entirely, decline cloud analysis or run the app without the Watch / AirPods paired.
• Telemetry — anonymized timing measurements about cloud job stages (preflight, upload, queue, in-progress, completion) sent to our Cloudflare Worker for capacity planning. No video, audio, or PII content.
• FIT files (if you import a Garmin/COROS file or connect Strava) — uploaded to the Cloudflare Worker for parsing into a structured run summary that the AI coach can read.
• Strava OAuth tokens (if you connect Strava) — stored in Cloudflare KV (encrypted at rest by Cloudflare's storage layer; we do not add application-level encryption on top) so the app can upload your runs as Strava activities.
• Conversation logs and timing telemetry — pseudonymous records of voice-coach sessions are written to our Cloudflare D1 database so coaches can recall context across sessions.
• Email and user ID (if you sign up for email-based syncing) — stored in Cloudflare KV.

Sent to ElevenLabs for voice coaching

When you use the voice coaches (Kai, James, Minna, Simon, Krishna):

• Audio from your microphone is streamed to ElevenLabs's servers in the United States during active sessions to power real-time voice conversation.
• Transcripts of your conversations are generated by ElevenLabs and may be retrieved by the app.
• Coaching context — your runner profile fields, recent run summaries, sleep/recovery context, and FIT-derived training history are sent to ElevenLabs as conversation context so the coach can speak to your specifics.

ElevenLabs's privacy policy is at elevenlabs.io/privacy-policy.

ElevenLabs may use API conversation audio and transcripts to improve their AI models (their default behavior, per their Privacy Policy §3(c) as of 2026-05-10). We have decided to leave this default in place. We re-confirm the setting quarterly and will update this policy if anything changes.

We do not currently sell your conversation data, and per our reading, neither does ElevenLabs. If our position ever changes, we will tell you in advance.

Apple HealthKit (with your permission)

If you grant HealthKit access, the app reads (union of phone + Watch requests):

• Heart rate, resting heart rate, heart rate variability (HRV)
• Sleep analysis
• Active energy burned
• VO₂ max
• Walking heart rate average
• Workout history
• Body mass
• Step count
• Running dynamics: ground contact time, vertical oscillation, stride length, power, speed
• Swim distance + stroke count

The app may write back: workout records, walking/running distance, active energy, heart rate, swim distance + stroke count.

HealthKit data is read on your device. Data the app reads is included as text context in coaching sessions sent to ElevenLabs (see "Sent to ElevenLabs" above). The raw HealthKit values are not separately uploaded to our servers as a structured dataset. Per Apple's App Store rules, HealthKit data is never used for advertising or sold to data brokers.

Optional integrations

• Strava — OAuth integration; we upload your runs as Strava activities at your request. Strava's terms apply: strava.com/legal/api.
• Oura Ring — pulled via API for sleep + recovery context shown to the coach. Per-user OAuth is not yet implemented; only the account holder's data is read today.

Data we do NOT collect

• We do not collect your real name, mailing address, or phone number.
• We do not use third-party analytics SDKs (no Mixpanel, Amplitude, Firebase Analytics, Sentry, Crashlytics, Segment, etc.). Our analytics is local to your device.
• We do not use advertising IDs, tracking pixels, or audience-segmentation tools.
• We do not serve ads.
• We do not currently sell your personal information for cross-context behavioral advertising. We have no plans to. If our position ever changes, we will tell you in advance.
• We do not build profiles for advertising or marketing purposes.

Third-party processors

Processor	Purpose	Data handled	Their policy
Amazon Web Services (S3)	Video staging	Video clips with random job IDs	aws.amazon.com/privacy
RunPod	GPU video processing	Video clips with job IDs and profile UUIDs	runpod.io/legal/privacy-policy
Cloudflare (Workers, D1, KV)	Application backend	Conversation logs, telemetry, OAuth tokens, FIT data	cloudflare.com/privacypolicy
ElevenLabs	Voice AI coaching	Audio + transcripts during sessions	elevenlabs.io/privacy-policy
Apple App Store / TestFlight	Distribution	App downloads, optional crash reports	apple.com/legal/privacy

Data retention

Surface	Retention
On-device data (profiles, IMU, video, conversation history)	Persists until you delete the profile or the app
AWS S3: source video clips (uploads/)	1 day
AWS S3: IMU recordings uploaded alongside cloud jobs (imu/)	1 day
AWS S3: rendered overlays + freeze frames (styled/, freeze-frames/)	7 days
Cloudflare KV: parsed FIT data (fit:*)	1 year
Cloudflare KV: raw FIT bytes (fit-raw:*)	30 days
Cloudflare KV: per-user training synopsis (fit-synopsis:*)	Persists by design (your training history; user-facing state)
Cloudflare KV: auth records (auth:*)	Persists by design (your account)
Cloudflare KV: Strava OAuth tokens	Persists until you disconnect Strava
Cloudflare D1: conversation logs	Persists by design (multi-session context)
ElevenLabs servers	Per ElevenLabs's policy and our agent-level configuration

A formal DELETE /me/data endpoint that wipes all cloud-side records by profile is not yet built. If you request it before then, we will perform the deletion manually — email colin@rooneytech.com.

Your choices

• Permissions — Camera, Microphone, Photos, Health, and Motion permissions are managed in iOS Settings and can be revoked at any time.
• Delete a profile — removes all on-device data for that profile.
• Delete the app — removes all on-device data.
• Disconnect Strava / Oura / HealthKit — revokes our access immediately at the source.
• Email-based delete-my-cloud-data request — colin@rooneytech.com, while the in-app button is being built.
• Offline use — on-device pose estimation works without an internet connection. Cloud processing and voice coaching require connectivity.

ML training on tester data

Run Fun trains gait classifiers (e.g. heel-strike vs. corrected form) on a small dataset of personally-known testers. If we want to use your run data for ML training, we ask you individually first; saying no does not break the app for you. If you have already participated and want your contribution removed from training data, email colin@rooneytech.com.

Children's privacy

Run Fun is not directed at children under 13. We do not knowingly collect data from children under 13.

Acquisition or restructuring

This policy continues to apply to data collected before any change in ownership or corporate structure. If Run Fun is sold or restructured, we will notify you in advance through the app and give you the opportunity to delete your data before the change takes effect.

Changes to this policy

We may update this policy as the app evolves. The "Last Updated" date will reflect the most recent revision. Material changes will be communicated in-app at least 14 days before they take effect.

Contact

Colin Rooney
Rooney Industries LLC
Denver, CO
colin@rooneytech.com