🔒

Privacy Policy

Last updated: April 2026

Introduction

Beyond The Gears ("we", "us", "our"), operated by GoldSpot Athletic Club, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

By using Beyond The Gears, you agree to the collection and use of information in accordance with this policy.

Information We Collect

We may collect the following types of information:

  • Account information: name, email address, and display name when you register
  • Profile data: cycling preferences, skill level, and profile picture
  • Activity data: Strava-synced ride statistics (with your explicit consent via OAuth)
  • Transaction data: order history, payment details (processed securely via Stripe — we do not store card numbers)
  • Usage data: pages visited, features used, and interaction patterns
  • Device data: browser type, IP address, and operating system
  • Communications: messages sent through our platform's messaging system

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send related notifications
  • Personalize your experience (e.g., AI coaching recommendations)
  • Facilitate event registration and group ride coordination
  • Send service-related communications and updates
  • Detect, prevent, and address technical issues or abuse
  • Comply with legal obligations

Third-Party Services

We integrate with the following third-party services, each governed by their own privacy policies:

  • Strava — for syncing your cycling activity data (OAuth-based, revocable at any time)
  • Google — for social login authentication
  • Stripe — for secure payment processing
  • OpenAI — for AI-powered coaching features (no personally identifiable data is shared)

Data Security

We implement industry-standard security measures to protect your personal information, including encrypted connections (HTTPS), secure password hashing, and access controls. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. You may request deletion of your account and associated data at any time by contacting us at admin@beyondthegears.com.

Cookies

We use session cookies to maintain your login state and preferences. We do not use third-party tracking cookies for advertising purposes.

Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Withdraw consent for data processing (e.g., disconnect Strava)
  • Export your data in a portable format

Children's Privacy

Our services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal data, we will take steps to delete such information.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. Continued use of the service after changes constitutes acceptance of the revised policy.

Contact Us

If you have any questions about this Privacy Policy, please contact us at admin@beyondthegears.com.