METAMATIC
Sign In

Privacy Policy

Last Updated: January 17, 2026

This Privacy Policy describes how Metamatic ("we," "us," or "our") collects, uses, and protects your information. By using the service, you agree to the practices described below.

Information Collection

  • Google Account Data: When you sign up via Google OAuth, we collect your email address and name to create and manage your account.
  • Strava Account Data: When you connect to Strava, we collect and store the OAuth tokens necessary to maintain the connection and interact with your activities.
  • Activity Metadata: We receive metadata for each activity including, but not limited to, activity ID, activity type, distance, cadence, heart rate, and output power.
  • Web Push Notifications: We collect device-specific subscription information required to send push notifications to your browser.
  • Analytics: We use Google Analytics to collect information about how users interact with our website to improve the service. This may include IP addresses and browser information.

Information Usage

  • Service Delivery: Your Google information is used to manage your account and identify you within the system.
  • Activity Processing: Strava metadata (such as distance and heart rate) is used solely as context to generate new activity titles and descriptions.
  • Database Storage: We save the generated title, generated description, and the associated Strava Activity ID to our database.
  • Notifications: Web push data is used to alert you when an activity has been renamed.

Data Retention

  • Minimalist Storage: We do not store raw Strava biometric or performance data (heart rate, power, etc.) in our database after the title generation process is complete.
  • Persistent Data: We retain your Google profile information, Strava OAuth tokens, and a history of generated titles/descriptions until you delete your account.
  • Deletion: If you disconnect your Strava account or delete your Metamatic account, we purge your associated tokens and personal data from our systems.

Third-Party Sharing

  • Strava: We share the generated titles and descriptions back to your Strava profile to update your activities.
  • Google Analytics: We share anonymized usage data with Google to help us understand site traffic.
  • No Sale of Data: We do not sell, rent, or trade your personal information to third parties for marketing or any other purpose.

Security

  • We use industry-standard encryption for data in transit and at rest.
  • Strava OAuth tokens are stored securely to prevent unauthorized access to your Strava account.

International Compliance (GDPR/UK GDPR)

If you are located in the European Economic Area (EEA) or the United Kingdom, you have the following rights:

  • Right of Access: You can request a copy of the data we hold about you.
  • Right to Erasure: You can request that we delete your personal data.
  • Right to Rectification: You can ask us to correct inaccurate information.
  • Right to Withdraw Consent: You can revoke our access to Strava or Google at any time.

Your Rights (All Users)

  • You may access your data or update your settings via the Metamatic web dashboard.
  • You may revoke Strava access at any time through your Strava settings or the Metamatic dashboard.
  • You may request full account deletion by contacting support.

Contact

For questions regarding this policy or to exercise your data rights, please contact us at support@metamatic.ai