Privacy Policy

Olympus AI LLC · Effective: May 10, 2025 · Last updated: May 15, 2026

Legal: Terms of Service Privacy Policy Refund Policy

Olympus AI LLC ("we," "us," or "our") operates the Chiron Trainer application. This Privacy Policy explains what data we collect, how we use it, who we share it with, and your rights regarding that data.

By using the Service, you agree to the collection and use of information as described in this policy.

1. Information We Collect

Information you provide directly:

Account & contact: email address, name (if provided);
Health & fitness data: age, gender, height, weight, body composition, fitness goals, training history, injury history, sleep habits, and dietary preferences — entered during onboarding or through conversation;
Nutrition logs: meals, calories, macronutrients, and food descriptions you share with Chiron;
Workout logs: exercises, sets, reps, weights, and session notes;
Conversation content: all messages you send to and receive from Chiron;
Photos: food or progress photos you optionally send through the messaging interface;
Payment information: billing details collected and stored by Stripe. We do not store full card numbers.

Information collected automatically:

Messaging platform identifiers (Telegram user ID) used to route messages;
Timestamps of messages and logged activities;
Server logs including IP address and request metadata for security and debugging.

2. How We Use Your Information

We use your data to:

Provide personalized AI coaching — your health and fitness profile is included in every conversation to give Chiron relevant context;
Generate workout programs, nutrition recommendations, and progress analyses;
Send proactive check-ins, reminders, and weekly recaps via Telegram;
Process subscription payments and manage your account;
Send transactional emails (receipts, expiry notices, subscription confirmations);
Detect and prevent abuse, fraud, and security incidents;
Improve the Service using aggregated, de-identified data;
Comply with legal obligations.

3. Sensitive Health Data

Chiron collects health and fitness information that may be considered sensitive under applicable law (including California's CPRA and Washington's My Health My Data Act). We treat this data with heightened care:

It is used solely to provide the coaching service;
It is not sold to third parties;
It is not shared with advertisers or data brokers;
Access is restricted to authorized personnel and automated systems required to operate the Service;
It is sent to Anthropic's Claude API to generate AI coaching responses — see Section 4 for details.

AI processing disclosure: Your messages, health profile, fitness logs, and progress photos are transmitted to Anthropic's API to generate Chiron's responses. Anthropic processes this data under their Privacy Policy. We have verified that Anthropic does not use API-submitted data to train their models.

Consent: We obtain your explicit consent to health data collection and AI processing during the onboarding process, before collecting any health information. You may withdraw consent at any time by contacting us at support@chirontrainer.com.

Geographic restriction: The Service is not currently available to residents of the EU, EEA, or UK.

4. How We Share Your Information

We do not sell your personal information. We share data only with the following service providers under contractual obligations to protect it:

Anthropic (Claude AI): Your fitness profile and conversation messages are sent to Anthropic's API to generate Chiron's responses. Governed by Anthropic's Privacy Policy.
Stripe: Payment processing. Governed by Stripe's Privacy Policy.
Amazon Web Services (AWS): Cloud infrastructure, database hosting, and photo storage. AWS is SOC 2 and ISO 27001 certified.
Telegram: Messages are routed through Telegram to deliver coaching to your device, subject to Telegram's privacy policy.

We may also disclose data when required by law, court order, or to protect the rights, property, or safety of Olympus AI LLC, our users, or the public.

5. Data Retention

Active accounts: Data is retained for as long as your subscription is active;
After cancellation: Data is retained for up to 90 days to allow reactivation, then deleted from production systems;
Deletion requests: Email support@chirontrainer.com at any time. We will complete deletion within 30 days, except where retention is required by law;
Backups: Deleted data may persist in encrypted backups for up to an additional 30 days;
Payment records: Stripe transaction records are retained as required by law (typically 7 years);
Security logs: IP addresses and access logs are retained for up to 90 days for security purposes;
Health profile: Deleted within 30 days of account deletion request or 90 days post-cancellation, whichever is first;
Conversation history: Deleted on the same schedule as health profile data.

6. Security

We use industry-standard measures including encryption in transit (TLS), encrypted database connections, and access controls. No system is perfectly secure and we cannot guarantee absolute security. If we become aware of a data breach affecting your personal information, we will notify you as required by applicable law.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

Access the personal data we hold about you;
Correct inaccurate data;
Delete your data ("right to be forgotten");
Export your data in a portable format;
Opt out of proactive (non-transactional) messages — reply "STOP" or contact support.

To exercise any of these rights, email support@chirontrainer.com.

8. California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act, including the right to know what personal information we collect, the right to delete it, and the right to opt out of its sale. We do not sell personal information. Contact us at support@chirontrainer.com to exercise your rights.

9. Children's Privacy

The Service is not intended for anyone under 18. We do not knowingly collect personal information from children under 18. If we learn we have inadvertently done so, we will delete it promptly.

10. Third-Party Links

The Service may contain links to third-party websites. We are not responsible for their privacy practices and encourage you to review their policies independently.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the Service. Continued use after changes become effective constitutes acceptance of the revised policy.

12. Contact

Olympus AI LLC — Privacy
30 N Gould St Ste R
Sheridan, WY 82801
support@chirontrainer.com
chirontrainer.com