Skip to content

Privacy Policy

Effective date: 2026-03-29

Cycle Log is designed to keep your data on your device. This policy describes what data the app collects, where it is stored, and the limited circumstances in which it leaves your device.

Data stored on your device

All of the following is stored locally in the app's private SQLite database and never transmitted without an explicit action from you:

  • GPS data — latitude, longitude, altitude, speed, heading, and accuracy recorded at each trackpoint during a ride
  • Ride metrics — distance, duration, average speed, max speed, elevation gain and loss, start and end time
  • Cycle details — name, brand, model, type, serial number, weight, year, and acquisition date
  • Log entries — title, optional notes, and the date each entry occurred

Strava integration

Strava is an optional, user-initiated feature.

  • Your Strava OAuth tokens (access token and refresh token) are stored encrypted on your device using the Android Keystore via FlutterSecureStorage. They are never logged or sent to any server other than Strava's own API.
  • GPX files are only uploaded to Strava when you explicitly tap the upload button on a ride.

Backups

Cycle Log can export a copy of your database from SettingsData. This is a manual, user-initiated action — the backup file is shared only where you choose to send it (for example a cloud drive or another device), and Cycle Log never uploads it anywhere automatically.

Data not collected

Cycle Log does not collect:

  • Advertising identifiers
  • Analytics or usage telemetry
  • Crash reports
  • Any data from users other than yourself

Contact

To report a privacy concern or ask a question, please open an issue at gitlab.com/stvnturner-group/cycle_log.