This Privacy Policy explains how Challengger Limited ("Challengger", "we", "us", or "our") collects, uses, and protects your personal data when you use the Challengger app and website (the "Service").
We are the data controller responsible for your personal data. If you have any questions about this policy or how we handle your data, contact us at info@challengger.com.
1. Who we are
Challengger is a social running-challenges app. You can create or join running challenges, and your runs are recorded to your account and counted toward the challenges you take part in. To do this, the Service connects to fitness data sources you choose to link, such as Garmin and Apple Health.
Challengger Limited is a company registered in England and Wales, company number 16295617. Registered address: 20 Wenlock Road, London, England, N1 7GU.
2. The personal data we collect
We collect and process the following categories of personal data:
Account and profile information
- Your name and email address.
- Authentication details. We use Auth0 to manage logins. Passwords are stored in hashed form and we do not have access to your plain-text password.
- Profile information you provide, and profile statistics derived from your activity (such as total distance, number of runs, active challenges, and streaks).
Connection credentials for linked services
- When you connect Garmin or Apple Health, we store the access tokens needed to import your activity data. We do not receive or store your Garmin or Apple account password.
Activity data
- Running activity data imported from Garmin and/or Apple Health, including distance, date and time, duration, and related run metrics.
- Records of which activities have been counted toward which challenges, and your resulting progress.
Challenge data
- The challenges you create or join, your participation, and your progress and completion status.
3. How and why we use your data
| Purpose | What this involves | Lawful basis (UK GDPR) |
|---|---|---|
| Provide the Service | Create and manage your account; let you create, join, and view challenges. | Performance of a contract |
| Import and process activity data | Record your runs to your account and evaluate each run against the rules of challenges you have joined (distance targets, minimum distance per run, time windows, frequency/consistency requirements) to calculate your progress and completion. | Explicit consent and/or performance of a contract |
| Display your progress | Show your activities, progress, completion status, and profile statistics within the app. | Performance of a contract |
| Notifications | Send you in-app notifications when an activity counts toward a challenge or a challenge updates. | Performance of a contract / legitimate interests |
| Service operation and security | Maintain, secure, and troubleshoot the Service and prevent misuse. | Legitimate interests |
| Communicate with you | Respond to support requests and send essential service messages. | Performance of a contract / legitimate interests |
We do not use your activity data for advertising, and we do not sell your personal data.
4. How we share your data
We share personal data only as described below:
Data sources you connect
- Garmin and Apple Health provide the activity data you authorise us to import. Your use of those services is governed by their own privacy policies. We import data from them; we do not send your activity data back to them.
Legal reasons: We may disclose data if required by law, to enforce our terms, or to protect the rights, safety, or property of our users or others.
Business transfers: If the Service is involved in a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction, subject to this policy.
5. International transfers
Some of our service providers may process data outside the UK. Where we transfer personal data outside the UK, we ensure an appropriate safeguard is in place, such as an adequacy decision or standard contractual clauses / the International Data Transfer Agreement.
6. How long we keep your data
We keep your personal data for as long as your account is active and as needed to provide the Service. Specifically:
- Account, profile, activity, and challenge data: retained while your account exists.
- After account deletion: deleted or anonymised within 90 days, except where we must retain certain information to comply with legal obligations or resolve disputes.
7. Your choices and controls
- Disconnect a data source. You can disconnect Garmin or Apple Health at any time from within the app. After disconnecting, we stop importing new activity data from that source.
- Access and update your profile. You can view and edit your profile in the app.
8. Your rights under UK GDPR
You have the right to:
- Access the personal data we hold about you.
- Rectify inaccurate or incomplete data.
- Erase your data ("right to be forgotten").
- Restrict or object to certain processing.
- Data portability — receive your data in a portable format.
- Withdraw consent at any time, where we rely on consent (this does not affect processing already carried out).
To exercise any of these rights, contact us at info@challengger.com. We will respond within one month.
If you are unhappy with how we handle your data, you can complain to the UK Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.
9. Security
We take appropriate technical and organisational measures to protect your personal data, including encryption in transit via HTTPS, hashed passwords, and access controls. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
10. Children
The Service is not directed to children under 16, and we do not knowingly collect personal data from them. If you believe a child has provided us with personal data, contact us and we will delete it.
11. Changes to this policy
We may update this Privacy Policy from time to time. We will post the updated version here and update the "Last updated" date.
12. Contact us
If you have any questions about this Privacy Policy or your personal data, contact us at:
Challengger Limited
info@challengger.com