RepDeck

Privacy Policy

Last updated: June 30, 2026

RepDeck (“we”, “the app”) helps athletes turn gym whiteboard workouts into shareable workout cards and update Strava activity descriptions. This policy explains what we collect, how we use it, and your choices.

Summary: Strava workout stats are not sent to AI. Only whiteboard photos you choose (and text you edit) are processed by AI. Strava tokens are stored encrypted on our servers and are never exposed in the mobile app.

Information we collect

How we use information

AI processing

Whiteboard images are sent to OpenAI for optical character recognition and workout extraction. We do not send Strava statistics, heart rate, or other activity metrics to AI models. You review and can edit parsed workout text before generating a card or updating Strava.

Third-party services

Data retention & deletion

We retain account data, uploaded images, and generated cards while your account exists and as needed to provide the service. You may disconnect Strava in the app at any time. To request account or data deletion, contact us at the email below.

Security

Strava access tokens are encrypted at rest. Backend APIs require authenticated access. User content is scoped to your account. No system is perfectly secure; use a strong, unique password for your RepDeck account.

Children

RepDeck is not directed at children under 13, and we do not knowingly collect their data.

Changes

We may update this policy from time to time. The “Last updated” date at the top will change when we do.

Contact

Questions or privacy requests:
cjmoses7@gmail.com