Fluxo

Privacy Policy

Last updated: April 14, 2026

1. Introduction

This Privacy Policy describes how Virada LLC ("Company," "we," "us," or "our") collects, uses, and protects your information when you use the Fluxo mobile application and related services (the "Service"). By using the Service, you consent to the practices described in this Privacy Policy.

We are committed to protecting your privacy. Fluxo is a personal training tool — your training data is yours, and we do not sell, rent, or share your personal information with third parties for marketing purposes.

2. Information We Collect

Account Information

When you create an account using our supported sign-in methods, we collect:

  • Email address
  • Display name (optional)

Profile Information

You may optionally provide physical and training attributes to receive personalized coaching:

  • Belt level
  • Height category
  • Weight class
  • Body type
  • Flexibility level
  • Age range
  • Preferred game style
  • Training focus areas
  • Training style (gi, no-gi, or both)

Training Data

As you use the Service, we collect the training information you provide:

  • Lesson notes and training session descriptions
  • Technique observations and experience levels
  • Chain configurations (technique sequences and connections)
  • Challenge progress (attempts, successes, failure patterns, session notes)
  • Belt mastery test results and promotion history
  • Roll review session highlights and coaching responses
  • Achievement records
  • Video reference URLs you manually add (we do not host or download videos)

AI-Generated Content

When you use AI-powered features, the Service may generate and store:

  • AI-generated training content and guidance
  • Suggestions, follow-up questions, and related outputs

Device Information

We collect limited device information necessary to operate the Service:

  • Device type and operating system version (for compatibility)
  • App version

Voice Input

If you use voice input for training notes, audio is processed using Apple's Speech Recognition framework to generate a transcription. Apple may process speech audio to provide this functionality. We do not separately record or store audio recordings ourselves. Only the resulting text transcription is stored as part of your training notes.

3. Information We Do Not Collect

Fluxo does not collect:

  • Location or GPS data
  • Contacts or address book information
  • Photos or camera data
  • Biometric data
  • Advertising identifiers or device fingerprints
  • Browsing history or activity outside the app

We do not use analytics services, tracking pixels, cookies, or any third-party analytics SDKs.

4. How We Use Your Information

We use your information solely to provide and operate the Service:

  • Provide the Service — Store and display your training data, track progress, and manage your account
  • Authentication — Create and manage your account using our supported sign-in methods and authentication providers
  • AI-Powered Features — Process your training descriptions and profile attributes through AI services to generate coaching insights, lesson expansions, personalized guidance, and roll review analysis
  • Cloud Synchronization — Sync your training data across devices when you create an account
  • Subscription Management — Process and verify your subscription status through Apple's App Store
  • Local Notifications — Send training reminders and weekly recaps based on your notification preferences (scheduled locally on your device)
  • Customer Support — Respond to feedback and support requests you submit through the app
  • Service Improvement — Identify and fix bugs, improve features, and maintain service reliability

We do not use your information for advertising, profiling, or any purpose unrelated to providing the Service.

5. How We Share Your Information

We share your information only with the following service providers, and only as necessary to operate the Service:

Cloud Backend and Authentication Providers

  • Your training data and account information are synced to our cloud backend and authentication providers for storage, account authentication, and account management
  • Our providers process data under their own privacy policies and applicable data processing agreements
  • All data transmission uses HTTPS encryption

Apple Services

  • Apple may process authentication requests when you use supported Apple sign-in features
  • We receive account information needed to create and maintain your Fluxo account, such as an email address associated with your sign-in method when provided
  • If you use voice input, Apple may also process speech audio to provide transcription through its speech recognition services

AI Service Providers

  • When you use AI features, sanitized training descriptions, technique names, and relevant profile attributes are sent to our AI service providers
  • We do not send your email address, account ID, or other direct identifying information to Google
  • AI providers process this data under their own terms and policies
  • We may update this policy if our AI data processing arrangements change materially

Apple (App Store)

  • Subscription transactions are processed entirely by Apple through the App Store
  • We receive only subscription status and transaction identifiers — not your payment details

We do not share your information with:

  • Advertising networks or data brokers
  • Analytics or tracking services
  • Social media platforms
  • Any other third parties

6. Data Storage and Security

Local-First Architecture

Your training data is stored locally on your device using Apple's SwiftData framework. Some features require internet connectivity, including account authentication, cloud synchronization, subscriptions, and AI-powered features. Your core training data remains stored on your device regardless of network connectivity.

Cloud Storage

If you create an account, your data is also stored on our cloud servers and with service providers in the jurisdictions where our infrastructure operates. All data transmission between your device and our servers uses HTTPS encryption.

Authentication Security

  • Passwords are transmitted securely to our authentication provider and are never stored on your device
  • Authentication tokens are stored securely in the iOS Keychain
  • Tokens are automatically refreshed and expire after a set period

Security Measures

We implement reasonable technical and organizational measures to protect your data, including encrypted data transmission, secure token storage, and access controls. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

7. Data Retention

  • Active accounts: Your data is retained as long as your account is active and you continue to use the Service
  • Account deletion: When you delete your account, all your data is removed from our servers. Local data on your device is also cleared. Residual copies of your data may persist in encrypted backup systems for a limited period before being automatically purged
  • Feedback submissions: Feedback you submit through the app is retained for customer support purposes
  • Authentication tokens: Stored in your device's Keychain until you sign out or delete your account

8. Your Rights and Choices

You have the following rights regarding your data:

Access and Export

  • You can view all your training data within the app at any time
  • You may request access to your personal data, including a copy where required by applicable law, by contacting us

Correction

  • You can update your profile information and training data directly within the app

Deletion

  • You can delete individual lessons, techniques, chains, challenges, and other training data within the app
  • You can delete your entire account and all associated data through the app's profile settings
  • Account deletion removes all data from both your device and our servers

Notification Preferences

  • You can enable or disable training reminders, weekly recaps, and other notifications in the app's profile settings
  • All notifications are local — we do not use push notification services

Voice Input

  • Voice input is entirely optional. You can always type training notes manually

9. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from individuals under 18. If we learn that we have collected personal information from a person under 18, we will promptly delete that information. If you believe a person under 18 has provided us with personal information, please contact us.

10. International Data Transfers

Your data may be transferred to and processed in the jurisdictions where our infrastructure and service providers operate. By using the Service, you consent to the transfer of your data to these locations.

If you are located in the European Economic Area (EEA), United Kingdom, or other regions with data protection laws, you have rights under applicable law, including the General Data Protection Regulation (GDPR). We process your data on the following legal bases:

  • Consent — provided when you create an account and use the Service. You may withdraw consent at any time by deleting your account.
  • Legitimate interest — to operate, maintain, and improve the Service
  • Contract performance — to fulfill our obligations under these terms when you subscribe to the Service

Under the GDPR, you have the right to access, rectify, erase, and port your personal data, as well as the right to restrict or object to certain processing. You also have the right to lodge a complaint with your local data protection supervisory authority. To exercise any of these rights, contact us at jeremiah@virada.net.

11. California Privacy Rights

If you are a California resident, you have the right under the California Consumer Privacy Act (CCPA) to:

  • Request disclosure of the categories and specific pieces of personal information we have collected
  • Request deletion of your personal information
  • Not be discriminated against for exercising your privacy rights

We do not sell personal information. We do not share personal information for cross-context behavioral advertising.

To exercise your rights, contact us at jeremiah@virada.net or use the in-app account deletion feature.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time by posting the updated policy on this page and updating the "Last Updated" date. Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

13. Contact Us

For questions or concerns about this Privacy Policy or our data practices, contact us at jeremiah@virada.net.