Legal
Privacy Policy
Last updated: July 6, 2026.
This Privacy Policy ("Policy") explains how Kono ("Kono," "we," "us," or "our") collects, uses, discloses, and safeguards information in connection with the Kono mobile application, related websites, and associated services (collectively, the "Service"). By downloading, accessing, or using the Service, you acknowledge that you have read, understood, and agree to be bound by this Policy. If you do not agree with this Policy, you must not access or use the Service.
1. Information We Collect
We collect the following categories of information:
- Account information: name, email address, password (stored as a salted hash), and authentication identifiers when you sign up or log in via email, Google, or Apple.
- Health and fitness data: workout history, training plans, pace, distance, duration, elevation gain, heart rate, calories, sleep, recovery, and other activity data you choose to sync from a connected fitness platform (currently Apple Health (HealthKit), and including Garmin Connect and Strava, subject to each platform's availability and your authorization), connected wearables, or manual entry. Activity records synced from these platforms may include route or location information that the connected platform or device recorded (see "Location Information" below).
- Device and usage data: device identifiers, operating system, app version, IP address, crash logs, and interaction and analytics data (including screens viewed and features used, collected via our analytics provider, PostHog) collected automatically through use of the Service.
- Communications: information you provide when you contact support, respond to surveys, or otherwise communicate with us.
2. Location Information
Kono does not currently capture your real-time GPS location directly. If you connect Garmin Connect, Apple Health, Strava, or another supported fitness platform, the activity records we import from that platform may include route or location data that the platform or your device recorded during your workout. We store that location data as part of the synced activity and use it only to display your activity history and power the Service's training features.
We plan to introduce in-app GPS tracking in a future release of the Service so that Kono can record your route directly during a workout. If and when we do, that feature will require your explicit permission before we access your device's location, we will describe the collection and use of that location data in this section at that time, and you will be able to decline or later revoke location permission through your device settings without losing access to the rest of the Service.
3. How We Use Information
We use the information we collect to:
- Provide, operate, maintain, and improve the Service, including generating training plans;
- Authenticate users and secure accounts against unauthorized access;
- Personalize content, recommendations, and coaching guidance;
- Communicate with you about the Service, including updates, security alerts, and support;
- Monitor, analyze, and improve performance, reliability, and usage patterns;
- Detect, investigate, and prevent fraud, abuse, and security incidents;
- Comply with applicable law, legal process, and enforceable governmental requests; and
- Exercise, establish, or defend legal claims.
4. Health and Fitness Platform Data (Apple Health, Garmin Connect, Strava, and Similar Sources)
Where you authorize the Service to access Apple HealthKit, Garmin Connect, Strava, or a similar fitness platform, we access only the categories of health and activity data necessary to power training plan generation, workout tracking, and recovery guidance. Data obtained through these platforms is used and disclosed only for providing health, fitness, or wellness features of the Service, or as otherwise permitted by the applicable platform's developer terms and applicable law. We do not use HealthKit, Garmin Connect, or Strava data for advertising, and we do not sell such data to data brokers or advertising platforms. Where a connected platform's own privacy settings mark an activity as private, we respect that designation and do not use or display that activity beyond what the platform permits.
You may revoke Kono's access to Apple Health data at any time through your device's Health or Settings application. Where you have connected a Garmin Connect or Strava account, you may disconnect it at any time from within the Service or through that platform's own account settings. When you revoke or disconnect access, we stop syncing new data from that platform and delete previously synced data from that source without undue delay, consistent with the applicable platform's developer requirements. Revoking access may limit or disable certain features of the Service.
Not every integration described in this Policy is available in every version or region of the Service; a given platform becomes available to connect once we have enabled it and, where applicable, obtained that platform's approval to access its API.
5. How We Share Information
We do not sell your personal information. We may disclose information to the following categories of recipients, each of which is bound by contractual obligations of confidentiality and data protection consistent with this Policy:
- Service providers: hosting and cloud infrastructure providers, our analytics provider (PostHog), authentication providers (Google, Apple), customer support, and communications vendors who process information on our behalf and solely for the purposes we specify;
- Legal and safety disclosures: where required to comply with law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of Kono, our users, or the public;
- Business transfers: in connection with a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of our assets, subject to standard confidentiality arrangements; and
- With your direction or consent: where you have explicitly authorized sharing, such as connecting a third-party wearable or export destination.
6. Data Retention
We retain personal information for as long as your account remains active and for a reasonable period thereafter to fulfill the purposes described in this Policy, including backup, dispute resolution, fraud prevention, and compliance with legal and regulatory obligations. We may retain de-identified or aggregated data indefinitely.
7. Your Rights and Choices
Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, or port your personal information, and to object to or withdraw consent for certain processing. You may exercise these rights, and may request deletion of your account and associated data, by contacting us at the address below. We will respond to verified requests within the time required by applicable law. We may retain information as necessary to comply with legal obligations, resolve disputes, and enforce our agreements.
8. Data Security
We implement administrative, technical, and physical safeguards designed to protect information from unauthorized access, disclosure, alteration, and destruction, including encryption of credentials and data in transit. No method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials and for all activity under your account.
9. Children's Privacy
The Service is not directed to, and is not intended for use by, individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected personal information from a child under 16 without verified parental consent, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us.
10. International Data Transfers
Your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States, where data protection laws may differ from those in your jurisdiction. By using the Service, you consent to such transfer, storage, and processing, to the fullest extent permitted by applicable law.
11. Third-Party Services
The Service integrates with or links to third-party services, including authentication providers (Google and Apple), fitness platforms (Apple Health, Garmin Connect, and Strava, subject to each platform's availability), and our analytics provider (PostHog). Your use of any third-party service is governed by that service's own privacy policy and terms, and we are not responsible for the privacy or security practices of any third party.
12. Changes to This Policy
We may update this Policy from time to time in our sole discretion. If we make material changes, we will provide notice through the Service or by other reasonable means. Your continued use of the Service after any change constitutes your acceptance of the revised Policy. We encourage you to review this Policy periodically.
13. Disclaimer
The Service provides training, fitness, and wellness information for general informational purposes only and does not constitute medical advice. To the fullest extent permitted by law, Kono disclaims all liability arising from reliance on information provided through the Service. Consult a qualified healthcare professional before beginning any exercise program. A full assumption-of-risk, release, and limitation of liability applicable to your use of the Service is set out in our Terms and Conditions, which you agree to by using the Service.
14. Contact Us
If you have questions, requests, or complaints regarding this Policy or our data practices, contact us at privacy@coachkono.com.
This document is a general template provided for convenience and does not constitute legal advice. Consult a qualified attorney to ensure this Policy meets the requirements applicable to your business, users, and jurisdictions before relying on it in production.