PEM Sports
Legal

Privacy Policy

Last updated: June 2026

Your data belongs to you.We collect only what is necessary to provide PEM Sports, never sell your information, and give you full control over your account and data at any time.

This Privacy Policy describes how Pemsoft collects, uses, and protects information you provide when using PEM Sports, available at fitness.pemsoft.org. By using PEM Sports, you agree to the practices described in this policy.

1. Information We Collect

We collect the following categories of information:

  • Account information: your name, email address, and profile picture provided at registration.
  • Fitness data: workouts, sets, reps, weights, goals, progress metrics, and any notes you record in the app.
  • Health inputs: optional data such as bodyweight, sleep quality, and resting heart rate that you choose to log.
  • Device information: device type, operating system, and app version, collected for diagnostics and compatibility.
  • Usage data: anonymised feature interactions, session frequency, and crash reports used to improve the app.

We do not collect payment card details directly. Payments are handled by your device's app store (Apple App Store or Google Play), which applies its own privacy practices.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain PEM Sports and its features
  • Personalise your training experience and display your progress accurately
  • Generate AI training plans based on your profile and goals
  • Send transactional emails such as account confirmations and security alerts
  • Diagnose and fix technical issues
  • Analyse aggregate, anonymised usage patterns to improve the product
  • Comply with legal obligations

We do not use your personal data for advertising, profiling for third parties, or any purpose unrelated to operating PEM Sports.

3. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share information only in the following limited circumstances:

  • Service providers: trusted third-party vendors who process data on our behalf under strict contractual obligations (for example, cloud hosting and analytics). They may not use your data for their own purposes.
  • Legal requirements: we may disclose data when required by applicable law, court order, or to protect the rights and safety of Pemsoft, our users, or the public.
  • Business transfer: in the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity. We will notify you before your data becomes subject to a different privacy policy.

4. Data Retention

We retain your data for as long as your account remains active or as needed to provide the service. If you delete your account, we will delete or anonymise your personal data within 30 days, except where we are required by law to retain certain records for longer.

You can request deletion of your account and data at any time by contacting us at support@pemsoft.org.

5. Security

We implement industry-standard security measures to protect your data, including:

  • TLS encryption for all data in transit
  • Encryption at rest for stored personal and fitness data
  • Access controls limiting data access to authorised personnel only
  • Regular security reviews of our infrastructure

No system is completely secure. We encourage you to use a strong, unique password and to enable two-factor authentication where available.

6. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: request a copy of the personal data we hold about you
  • Correction: ask us to correct inaccurate or incomplete data
  • Deletion: request that we delete your personal data
  • Portability: receive your data in a structured, machine-readable format
  • Restriction: ask us to limit how we process your data in certain circumstances
  • Objection: object to processing based on legitimate interests

To exercise any of these rights, contact us at privacy@pemsoft.org. We will respond within 30 days.

7. Third-Party Services

PEM Sports relies on the following third-party services that may process your data:

  • OpenAI: when you use AI-assisted features such as plan generation, relevant profile data (training level, goals, and preferences) is sent to OpenAI's API for processing. This data is used solely to generate your training plan and is subject to OpenAI's Privacy Policy. We do not send personally identifiable information such as your name or email to OpenAI.
  • Apple Health and Google Fit: if you choose to enable these connections, data may be exchanged with those platforms under their respective privacy policies. These integrations are optional and can be disabled at any time in the app settings.

We recommend reviewing the privacy policies of any third-party service before enabling integrations.

8. Children's Privacy

PEM Sports is not directed at children under the age of 16. We do not knowingly collect personal data from users under 16. If we become aware that a child under 16 has provided us with personal data, we will delete it promptly. If you believe a child has submitted data to us, please contact privacy@pemsoft.org.

9. International Data Transfers

Your data may be processed and stored in countries outside your own. Where data is transferred internationally, we take steps to ensure it receives an equivalent level of protection, including relying on appropriate legal mechanisms such as standard contractual clauses.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be announced via in-app notification or email before they take effect. The "last updated" date at the top of this page reflects when the policy was last revised. Continued use of PEM Sports after any changes constitutes your acceptance of the updated policy.

11. Contact

For privacy-related questions or to exercise your data rights, contact us at privacy@pemsoft.org. For general support, use support@pemsoft.org.