Politika privatnosti

2.2 Publicly Available Race Data

We aggregate and display publicly available race results from official race organizer websites, public results databases, and sports federations (such as ITRA, UTMB, and others). This data may include:

• Athlete names and surnames
• Nationality or country of representation
• Race finishing times, splits, and rankings
• Race category and age group
• Historical race participation records

Legal Basis: Legitimate Interest (GDPR Article 6(1)(f)). We process this data to provide sports analytics, statistical insights, and historical records for the endurance sports community. This data has been made publicly available by race organizers or official results services.

We do not collect sensitive personal data such as exact dates of birth, home addresses, contact information, or health data of athletes.

2.3 User Account Data

When you create an account on our platform via third-party authentication (Google Account or Strava Account), we may collect:

• Email address
• Display name and profile photo (as provided by the authentication provider)
• Strava athlete ID and activity data (if connected via Strava)

Legal Basis: Consent (GDPR Article 6(1)(a)). You voluntarily create an account and authorize the transfer of this data during the authentication process.

We request only the minimum necessary permissions (scopes) from third-party authentication providers and use the obtained data solely for the features you have explicitly chosen to use.

2.4 Voluntary Communications

If you contact us via email, we collect the information you provide in your message (name, email address, message content) for the purpose of responding to your inquiry.

4.2 Athlete Data: Erasure, Objection, Restriction, and Anonymization

If you are an athlete whose personal data appears on our platform through publicly available race results, you have the right to request erasure, restriction of processing, or anonymization of your data.

Identity Verification: Before processing any such request, we may ask you to provide reasonable proof of identity to confirm that the request relates to your own personal data. This is necessary to protect athletes from unauthorized modification or deletion of their records.

Upon receiving and verifying a request, we will review it and respond within one month. Depending on the nature of the request and applicable legal requirements, we may:

• Anonymize your personally identifiable information by replacing it with an anonymous identifier across our platform.
• Remove your data from search results on our website.
• Restrict the display of your personal data.
• In limited cases, decline the request (in whole or in part) if there are overriding legitimate grounds for continued processing, in which case we will provide a written explanation.

Please note:

• Aggregated and anonymized statistical data (such as average speeds, finish time distributions, and other non-identifiable metrics) may be retained, as this data cannot be linked back to you.
• This process applies only to data hosted on our platform. We cannot remove your data from original third-party sources (race organizer websites, official results databases).
• If you have a user account linked to your athlete profile, deleting your account will also trigger anonymization of your athlete data upon request.

4.3 User Account Deletion

Registered users can request complete deletion of their account and all associated data. Upon account deletion:

• Your profile, preferences, and any user-generated content will be permanently removed.
• If requested, your linked athlete data will be anonymized as described in section 4.2.
• Možete opozvati pristup ovoj aplikaciji u svojim Strava postavkama u bilo kojem trenutku. Nakon opoziva, automatski ćemo izbrisati vaše Strava podatke s naših servera u roku od 14 dana.

To exercise any of these rights, please contact us at contact@endurance-analytics.com.