Ross Labs (“we,” “us,” or “our”) operates the RunIt mobile application (the “App”). This Privacy Policy explains how we collect, use, store, and share your information when you use the App. By using RunIt, you agree to the collection and use of information as described in this policy.
1. Information We Collect
Account Information
When you create an account, we collect:
- Email address (if signing up with email)
- Name (first and last, entered during onboarding)
- Google or Apple account identifiers (if using social sign-in)
Profile Information
During onboarding and profile setup, we collect:
- Date of birth (required)
- Gender (optional: Male, Female, Other, or Prefer not to say)
- Height and weight (optional)
- Position preference (e.g., Point Guard, Center)
- Profile photo (optional)
- Bio/description (optional)
Location Data
RunIt uses your device’s location in the following ways:
- While the app is in use: We access your GPS coordinates to show nearby courts and runs on the map, display your position, and check you in to basketball venues.
- In the background: If you enable background location and geofencing, the App registers a geofence (100-meter radius) around a court you are checked into. This allows automatic check-in and check-out detection even when the App is closed. You can disable background location at any time through your device settings.
- Stored location data: Your approximate location is stored temporarily to show other users who is at a court. GPS coordinates and accuracy are logged when you check in to a run for attendance verification.
User-Generated Content
We collect content you create within the App:
- Highlight videos (up to 15-second basketball clips)
- Run announcements and event details
- Crowd reports (estimates of how many people are at a court)
- Venue requests (suggestions for new courts to add)
- Player ratings (skill and sportsmanship evaluations of other players)
- Sportsmanship reports
Device and Usage Data
We automatically collect:
- Device type, operating system, and app version (via Firebase Analytics)
- Crash reports and error logs (via Firebase Crashlytics)
- Push notification token (via Firebase Cloud Messaging)
- Session and engagement data (app opens, screen views, feature usage)
2. How We Use Your Information
We use the information we collect to:
- Provide the App’s features: Find nearby courts, organize pickup games, check users in and out of venues, display who is playing where.
- Build your player profile: Show your stats, ratings, skill tags, and reputation to other players.
- Enable social features: Friend requests, notifications when friends join a game, in-app notifications.
- Send push notifications: Game announcements, friend activity, and check-in/check-out alerts.
- Improve the App: Analyze crash reports and usage patterns to fix bugs and improve features.
- Maintain safety: Sportsmanship reporting, content moderation, and credibility scoring to keep the community fair.
- Gamification: Track experience points, quests, daily rewards, and referral bonuses.
3. Third-Party Services
We use the following third-party services to operate the App. Each has its own privacy policy governing how they handle data:
| Service | Purpose | Data Shared |
|---|---|---|
| Supabase | Database, authentication, file storage | Account info, profile data, game data, profile photos |
| Firebase (Google) | Analytics, crash reporting, push notifications | Device info, crash logs, usage events, push tokens |
| Cloudflare | Video hosting and delivery (highlight clips) | Uploaded videos |
| Carto | Map tile rendering | Map tile requests (zoom level and coordinates) |
| OpenStreetMap Nominatim | Address lookup when creating a run | GPS coordinates for reverse geocoding |
| Apple | Sign in with Apple authentication | Apple account identifier |
| Google Sign-In authentication | Google account identifier |
We do not share your personal information with any other third parties, and we do not use advertising networks or data brokers.
4. Data Storage and Security
- Your data is stored on servers in the United States via Supabase and Firebase.
- Video highlights are stored on Cloudflare’s global network.
- Authentication tokens used for background operations are stored in your device’s secure enclave (iOS Keychain / Android Keystore) using encrypted storage.
- We use industry-standard security measures including encrypted connections (HTTPS/TLS), row-level security policies on our database, and role-based access controls.
- Despite these measures, no method of electronic storage is 100% secure. We cannot guarantee absolute security.
5. Data Retention
- Account data: Retained as long as your account is active. When you delete your account, all your data is permanently removed (see Section 7).
- Location data: Real-time location is overwritten each time it updates and is not retained historically beyond active sessions. Check-in/check-out logs are retained as part of your attendance history.
- Highlight videos: Retained until you delete them or delete your account.
- Ratings and reports: Retained to maintain community integrity, even after the rated user deletes their account (ratings are anonymized).
- Crash reports: Retained by Firebase for up to 90 days.
6. Children’s Privacy
RunIt is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us and we will delete that information.
Users between 13 and 17 should have parental consent before using the App.
7. Your Rights and Choices
You have the following rights regarding your data:
- Access your data: Your profile, stats, and activity are visible to you within the App at all times.
- Edit your data: You can update your profile information, photo, and preferences at any time through the App.
- Delete your account: You can permanently delete your account and all associated data through Settings > Delete Account in the App. This action is irreversible and removes all your data from our servers.
- Control location access: You can enable or disable location permissions (including background location) at any time through your device’s Settings app.
- Control notifications: You can enable or disable push notifications through your device’s Settings app.
- Opt out of analytics: You can limit analytics data collection by disabling analytics in your device settings (iOS: Settings > Privacy > Analytics; Android: Settings > Google > Ads).
If you are a resident of the European Economic Area (EEA), you have additional rights under the GDPR, including the right to data portability and the right to lodge a complaint with a supervisory authority. If you are a California resident, you have rights under the CCPA, including the right to know what personal information is collected and the right to request deletion. To exercise any of these rights, contact us at the email below.
8. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy within the App or by push notification. The “Last Updated” date at the top of this policy indicates when it was last revised.
Your continued use of the App after changes are posted constitutes your acceptance of the updated policy.
9. Contact Us
If you have questions or concerns about this Privacy Policy or your data, contact us at: