Privacy Policy

Effective May 7, 2026

1. Who we are

Atlas (the “app”) is a workforce-management application for fitness gym teams. Account creation is by invitation only — gym owners provision accounts for their staff. There is no self-signup flow.

This policy describes how we collect, use, and disclose information when you use the Atlas mobile app. By using Atlas you agree to this policy.

2. Information we collect

Information you provide

• Account credentials. When your gym owner provisions your account, we store your display name, role (coach, manager, or owner), and your sign-in identifier. The owner’s identifier is their real email; coach/manager identifiers are synthetic addresses of the form username@gym-slug.atlas that exist solely as login keys and don’t deliver mail.
• Authentication. Your password is stored hashed (we never see the plaintext). We use Supabase Auth for session management.
• Profile. Display name, optional out-of-office window, notification preferences (per-kind toggles, quiet hours), gym membership.
• Operational content. Tasks you create or are assigned, your comments on tasks, messages you send in team chat or direct messages, conversations you have with the Atlas AI assistant, announcements you post or acknowledge.

Information we collect automatically

• Push tokens. When you grant push permission, your device’s Expo push token is stored so the app can deliver notifications via Apple Push Notification Service. Multiple tokens per user (one per device) are supported; tokens are deleted on sign-out from that device.
• Product analytics. We use PostHog (posthog.com/privacy) to understand which features are used, how often, and where users get stuck. Events captured include sign-in, task lifecycle changes, message-send actions, and tab navigation. Each event is associated with your user identifier and your gym identifier (group analytics) but does not include the content of messages or tasks.
• Session recordings. During the early-access period, PostHog session replay records app interactions on iOS and Android. Recordings capture taps, navigation, and screen content for the purpose of understanding user behavior. Text you type into input fields (composers, password fields, name fields) is masked — it is not visible in the recording. Once early access ends, session replay may be reduced or disabled.
• Error reports. When something fails inside the app, we log the error and the surface it came from to a private app_errors table for our debugging. These records contain technical context (e.g. the failing operation, error code) and your user identifier; they do not contain message bodies or other private content.
• Device metadata. Standard mobile telemetry collected via PostHog (operating system, OS version, app version, device locale, screen size, network type).

3. How we use your information

We use the information we collect to:

• Operate the app, route messages and notifications, and persist your work across devices.
• Authenticate you and protect your account from unauthorized access.
• Generate responses from the Atlas AI assistant (your conversation is sent to a third-party AI provider; see Section 4).
• Understand product usage and improve the app via aggregate analytics.
• Diagnose crashes, bugs, and degraded experiences.
• Comply with legal obligations.

We do not sell your personal information. We do not use your data for cross-app advertising. We do not share content of your messages, tasks, or comments with third parties except as required to operate the service (for example, sending an Atlas conversation to the AI provider so the assistant can respond).

4. Third-party services

Atlas relies on the following sub-processors. Each operates under its own privacy policy.

Supabase — backend platform

Hosts our database, authentication, real-time messaging, and serverless functions. Stores your account, gym memberships, tasks, chats, and operational data. supabase.com/privacy

Anthropic and OpenAI — AI assistant

The Atlas AI assistant sends your conversation history to one of two providers (Anthropic Claude or OpenAI GPT) in order to generate a response. By default we use Anthropic Claude (Haiku 4.5); we fall back to OpenAI (GPT-4o‑mini) when Anthropic is unavailable. Your message text and the assistant’s response are stored in our database for context on future turns. anthropic.com/privacy · openai.com/policies/privacy-policy

PostHog — analytics and session replay

Captures product-analytics events and (during early access) session recordings as described in Section 2. PostHog operates from the United States. posthog.com/privacy

Expo and Apple Push Notification Service

Delivers push notifications to your device. Notification payloads include the title, a short preview, and a deep-link target (for example, the task or chat thread to open on tap). expo.dev/privacy · apple.com/legal/privacy

5. Data retention

• While your account is active, your data persists indefinitely so that your task history, chats, and preferences carry over across sessions.
• If you delete your account (Settings → Delete my account), your authentication record, push tokens, personal Atlas conversations, gym memberships, and the tasks you owned are permanently deleted. Comments and chat messages you authored remain in shared chat history but are anonymized (the author is set to “Unknown”) so the surrounding conversation isn’t broken for the rest of your team.
• If your gym owner removes you from the team, your account is deactivated; you lose access to the app but your historical task records remain in the gym for the team’s reference. You can request full deletion at any time.
• Analytics events in PostHog are retained for up to 30 days by default; session recordings for up to 30 days. We may retain aggregate, anonymized statistics indefinitely.
• Error logs are retained for up to 90 days.

6. Your rights and choices

• Access and export. You can request a copy of your account data by contacting us (Section 10).
• Deletion. Delete your account anytime from Settings → Delete my account. This is irreversible.
• Correction. Update your display name and notification preferences from Settings. Other corrections can be requested by contact.
• Notification controls. Each notification kind (direct messages, new tasks, comments, announcements, manager alerts, consultant insights) has an in-app toggle. Quiet hours are configurable.
• Push permissions. Revoke at any time via your device settings.

If you are in California, the EU, or the UK, you may have additional rights under your local privacy law (CCPA, GDPR). We honor verifiable requests where applicable.

7. Security

We use Supabase’s row-level security policies to ensure that members of one gym can’t access another gym’s data. Passwords are hashed using bcrypt. All network traffic between the app, our backend, and our sub-processors is encrypted in transit (HTTPS). No system is perfectly secure; we recommend you use a strong password and protect access to your device.

8. Children

Atlas is a workforce application intended for adult professionals. The app is not directed at children under 13, and we do not knowingly collect personal information from children. If you believe a minor has provided information to us, contact us and we will delete it.

9. Changes to this policy

We may update this policy as the product evolves. Material changes will be communicated in-app or by email. The “Effective” date at the top of this page indicates the most recent revision.

10. Contact

Questions, requests, or concerns:

• Email: privacy@galvanizedoperations.com

For data-deletion or data-export requests, please use the email above and include the gym name and the email or username on the account.

Atlas is operated by Galvanized Operations. This policy is provided for informational purposes and does not constitute legal advice. Last reviewed May 7, 2026.