SwimHub - Privacy Policy

Introduction

SwimHub ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application SwimHub (the "App").

By using SwimHub, you agree to the collection and use of information in accordance with this policy.

Developer Information

Developer: SwimHub Development Team
Contact Email: sport.hub.development@gmail.com
Application: SwimHub - Swimming Training Management
Version: 1.3.0

Information We Collect

Personal Information

When you register for and use SwimHub, we collect the following personal information:

Account Information
- Email address (required for authentication)
- Full name or display name
- Password (encrypted and securely stored)
Swimming Data
- Custom training programs you create
- Swimming results and performance data (distance, time, date)
- Training completion records
- Swimming style preferences
- Equipment preferences
App Usage Data
- Language preference
- Theme preference (light/dark mode)
- Last login timestamp
- App interaction patterns

Automatically Collected Information

We do not collect device identifiers, location data, or analytics beyond what is necessary for app functionality.

How We Use Your Information

We use the collected information for the following purposes:

Service Delivery
- Create and manage your user account
- Store and retrieve your swimming training data
- Sync your data across devices
- Provide personalized training recommendations
Service Improvement
- Maintain and improve app functionality
- Troubleshoot technical issues
- Ensure data security and integrity
Communication
- Send password reset emails when requested
- Provide critical service updates (if necessary)

                We do NOT:
                Send marketing emails
Share your data with third parties for advertising
Track your location
Collect data from children under 13

            

Data Storage and Security

Backend Infrastructure

SwimHub uses Supabase as our backend service provider:

Data Storage: All user data is stored on Supabase's secure cloud infrastructure
Location: Data is stored in secure data centers with enterprise-grade security
Encryption: Data is encrypted in transit (HTTPS/TLS) and at rest
Authentication: Industry-standard authentication with secure password hashing

Security Measures

We implement multiple security layers to protect your data:

Authentication Security
- Secure password hashing (bcrypt)
- JWT token-based authentication
- Automatic session expiration
- Secure password reset flow
Data Protection
- Row Level Security (RLS) policies ensure users can only access their own data
- HTTPS/TLS encryption for all data transmission
- Encrypted storage for sensitive information
- Network security configuration prevents cleartext traffic
App Security
- Code obfuscation with ProGuard
- Certificate pinning for API connections
- Secure local storage with flutter_secure_storage
- No hardcoded credentials or API keys

Data Retention

Active Accounts: Your data is retained as long as your account remains active
Account Deletion: You can request account deletion at any time by contacting us
Deleted Data: Upon account deletion, all personal data is permanently removed from our systems within 30 days
Backup Data: Deleted data in backups will be purged according to our backup retention schedule (maximum 90 days)

Your Data Rights

You have the following rights regarding your personal data:

Access: View all your data stored in the app
Modification: Edit your profile information and training data
Deletion: Delete specific training records or your entire account
Export: Request a copy of your data (contact us)
Portability: Your data can be exported in standard formats

How to Exercise Your Rights

In-App: Most data can be viewed, edited, or deleted directly in the app
Email Request: Contact us at sport.hub.development@gmail.com for data export or account deletion
Response Time: We will respond to requests within 30 days

Third-Party Services

SwimHub uses the following third-party service:

Supabase (Backend Service)

Purpose: Database, authentication, and API services
Data Shared: All user account and training data
Privacy Policy: https://supabase.com/privacy
Security: Enterprise-grade security with SOC 2 Type II compliance
Location: Data stored in secure cloud infrastructure

                We do NOT use:
                Analytics services (Google Analytics, Firebase Analytics, etc.)
Advertising networks
Social media integrations
Third-party tracking

            

Children's Privacy

SwimHub is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will delete such information from our systems.

International Data Transfers

Your data may be stored and processed in data centers operated by Supabase in various locations. By using SwimHub, you consent to the transfer of your information to these locations. We ensure that appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be effective immediately upon posting the updated Privacy Policy in the App and on our website. We will notify you of significant changes by:

Displaying a notice in the app
Sending an email to your registered email address (for material changes)

Your continued use of SwimHub after changes are posted constitutes acceptance of the updated Privacy Policy.

Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

Notify affected users within 72 hours of discovery
Provide details about the breach and data affected
Explain steps we're taking to address the breach
Advise on steps you can take to protect yourself

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: sport.hub.development@gmail.com
Response Time: We aim to respond within 48-72 hours

For data protection inquiries, please include:

Your registered email address
Nature of your request (access, deletion, correction, etc.)
Any relevant details to help us process your request

Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), our legal basis for processing your personal data includes:

Contract Performance: Processing necessary to provide the SwimHub service
Consent: Where you have given explicit consent for specific processing activities
Legitimate Interests: To improve our services and ensure security

Cookie Policy

SwimHub does not use cookies. The app stores minimal local data on your device for:

Authentication tokens (secure storage)
User preferences (language, theme)
Cached training data (for offline access)

This data is stored securely on your device and is not shared with third parties.

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

Right to Know: What personal information we collect and how we use it
Right to Delete: Request deletion of your personal information
Right to Opt-Out: We do not sell personal information, so opt-out is not applicable
Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights, contact us at the email address above.

Open Source Compliance

SwimHub is built using open-source technologies. We comply with all applicable open-source licenses. The app's source code and license information are available upon request.

Acknowledgment

By using SwimHub, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.

Version: 1.0
Last Reviewed: November 25, 2025