Last updated May 13, 2026
Ridgeform ("the App") is developed by Xinwei Chen. This policy explains what data the App accesses, how it is used, and your rights.
Ridgeform does not collect, store, or transmit any personal data to our servers. All activity data remains on your device.
Strava — If you choose to connect your Strava account, the App uses the Strava API via OAuth 2.0 to read your activity data (routes, elevation, heart rate, power). Your Strava credentials are never stored in the App; only an encrypted access token is kept in the iOS Keychain on your device. The token exchange is handled by a secure server-side proxy. You can disconnect Strava at any time from the Import screen.
Strava's own privacy policy: strava.com/legal/privacy
The App requests access to your photo library for two purposes:
Photos are processed entirely on-device. No images or videos are uploaded to any server.
When you import GPX or FIT files, they are parsed on-device to extract route and metric data. The original files are not retained after parsing.
The App does not include any analytics or crash reporting SDKs. No usage data is collected.
All data (activity records, Strava tokens, preferences) is stored locally on your device using the iOS Keychain and app sandbox. Nothing is synced to the cloud.
The App is not directed at children under 13 and does not knowingly collect data from children.
We may update this policy from time to time. Changes will be posted on this page with an updated date.
Questions about this policy? Reach out at xinweichen222@gmail.com