Legal
EnduroEdge Privacy Notice
Effective date: 1 April 2026. This notice is designed to support launch readiness and POPIA alignment, and should be reviewed with South African legal counsel before broad public release.
1. Responsible party
EnduroEdge determines the purpose and means of processing personal information for the platform and acts as the responsible party for platform operations. Coaches using EnduroEdge may also have their own legal duties in relation to athlete information they process through the platform.
2. What personal information we collect
Depending on platform use, EnduroEdge may collect account details, athlete profile data, training history, race targets, readiness and wellness information, workout feedback, coach notes, linked-coach information, profile photos, device or wearable data, messages, and billing or access-status information.
3. Why we process it
We process personal information to create and manage accounts, deliver coaching features, personalise plans, support coach-athlete workflows, generate analytics, power AI coaching surfaces, secure the platform, manage entitlements, and improve service quality.
4. Lawful basis and POPIA alignment
Where POPIA applies, EnduroEdge aims to process personal information in a lawful and reasonable manner, for a specific purpose, with appropriate transparency, security, and data-subject rights handling. Certain information is processed because it is necessary to provide the platform after a user signs up and accepts the legal terms.
5. Sharing and operators
EnduroEdge may share information with service providers, infrastructure providers, AI providers, payment providers, analytics providers, coaches linked by the athlete, and third-party integrations requested by the user. We do not sell athlete data as a standalone commercial asset.
6. International transfers
Because EnduroEdge may rely on global cloud and AI providers, personal information may be processed or stored outside South Africa. Where applicable, EnduroEdge will take reasonable steps to ensure an adequate level of protection or contractual safeguards.
7. Security safeguards
EnduroEdge uses reasonable technical and organisational measures to protect personal information from loss, unauthorised access, destruction, misuse, or disclosure. No platform can promise absolute security, but security is treated as a core operating requirement.
8. Retention
We retain information only as long as reasonably necessary for the service, legal obligations, dispute handling, fraud prevention, coaching continuity, or legitimate business needs. Retention periods may vary by record type.
9. Data-subject rights
Subject to applicable law, users may request access to their personal information, request correction, object to certain processing, request deletion where appropriate, or ask how their information is being used. Requests may be subject to identity verification and legal limitations.
10. Cookies and platform telemetry
EnduroEdge may use browser storage, session tokens, and standard telemetry needed for authentication, security, and platform performance. Additional cookie controls should be added before broader public rollout if non-essential tracking is introduced.
11. Children and special information
EnduroEdge is intended for adult endurance athletes and coaches unless specifically configured otherwise. Where special personal information or information relating to children is processed, additional legal review may be required under POPIA.
12. Security compromises
If EnduroEdge becomes aware of a security compromise affecting personal information, the platform should assess the incident, contain the issue, and notify affected parties and regulators where required by applicable law, including POPIA section 22 obligations where relevant.
13. Complaints and regulator rights
Users may raise privacy complaints with EnduroEdge first. Where POPIA applies, users may also have the right to complain to the Information Regulator of South Africa or use the objection, correction, or deletion forms made available by the Regulator.
14. Contact and information officer
Before beta launch, EnduroEdge should assign and publish a responsible Information Officer or deputy Information Officer contact for privacy requests, POPIA notices, and compliance queries.