Keep me posted

Privacy Policy

Effective Date: November 17, 2025

1. Introduction

Zeven AG (“Zeven”, “we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose and protect information when you use our website, mobile application or any related services (the “Services”).

We comply with the Swiss Federal Act on Data Protection (FADP) and, where applicable, the EU and UK General Data Protection Regulation (GDPR/UK GDPR).

Contact:

Zeven AG

Grafenauweg 8, 6300 Zug, Switzerland

Email: privacy@zeven.ai

2. Data We Collect

2.1 Information You Provide

When you use our Services, you may provide:

  • Account information (name, email, login credentials)
  • Profile details and preferences
  • Training activities, notes, and files you upload
  • Communications with us

2.2 Data from Connected Services

If you connect third-party fitness platforms or devices, we may receive activity and performance data you authorize us to access. You control these connections and can disconnect them at any time through your account settings.

2.3 Technical Data

We automatically collect limited technical information necessary for our Services to function, including IP address, browser type, device information, and usage data. This data is processed anonymously for analytics.

2.4 Health and Fitness Data

Through connected devices and uploaded activities, we may process health-related data such as heart rate, training metrics, and performance indicators. This constitutes special category data under applicable law and is processed based on your explicit consent for providing personalized performance and coaching insights.

3. How We Use Your Data

We use your data to:

  • Provide and improve our Services
  • Communicate with you about your account and our Services
  • Send marketing communications (with your consent)
  • Ensure security and prevent misuse
  • Comply with legal obligations

Legal Basis:

  • Contract performance (to provide Services)
  • Legitimate interests (to improve and secure our platform)
  • Consent (for marketing and special category health data)
  • Legal obligations

4. Data Sharing

We do not sell your personal data.

We share data only with:

  • Service providers who help us operate our platform (hosting, email, analytics, payment processing)
  • Connected services you choose to integrate with
  • Legal authorities when required by law

All service providers are contractually obligated to protect your data and use it only as instructed.

5. International Data Transfers

We currently process data within the European Union. If we transfer data outside Switzerland or the EEA, we ensure appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

6. Data Retention

We retain your data only as long as necessary:

  • Active account data while your account exists
  • Deleted account data for 30 days (for recovery)
  • Legal and financial records as required by law (typically up to 7 years)
  • Anonymous analytics for up to 13 months

After these periods, data is deleted or anonymized.

7. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your data
  • Export your data in a portable format
  • Withdraw consent
  • Object to processing based on legitimate interests
  • Lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) or your local data protection authority

To exercise your rights: Contact us at privacy@zeven.ai or use your account privacy settings at zeven.ai/account/privacy.

8. Security

We implement appropriate technical and organizational measures to protect your data, including encryption, access controls, and secure hosting. While we use industry-standard security practices, no system is completely secure.

9. Cookies and Tracking

We use only essential cookies necessary for authentication and security. We use privacy-focused analytics that do not track individual users. We do not use advertising or tracking cookies.

10. Children’s Privacy

Our Services are not intended for individuals under 16. We do not knowingly collect data from children. If you believe a child has provided us with personal data, contact us immediately.

11. Updates to This Policy

We may update this Policy as our Services evolve. Material changes will be communicated by email or in-app notification at least 30 days before taking effect.

The latest version is always available at: zeven.ai/legal/privacy

12. Contact Us

For questions or requests regarding this Privacy Policy:

Zeven AG

Grafenauweg 8, 6300 Zug, Switzerland

Email: privacy@zeven.ai

Version: 1.0

Last Updated: November 17, 2025