Account Deletion and Legal Defense Archive

Effective: 2025-10-06

This section describes what happens when you delete your account in the app, and what limited data we may retain for safety and legal defense purposes.

Account Deletion

When you request deletion in the app, we:

• Immediately disable access to your account.
• Permanently delete your account and personal information from our primary systems after a short grace period (used to finish cleanup tasks). In production this is 7 days; in test environments it may be shorter.

The following categories are deleted from our primary systems at or before the end of the grace period:

• Account identifiers (e.g., email/phone) and authentication records.
• Profile and preference data.
• Workout requests, workouts, and related history.
• Trainer chat messages.

Operational logs are minimized and set with short retention. We remove direct identifiers from access logs where feasible.

Pseudonymized Defense Archive (24 months)

To protect users and the service against fraudulent claims and to evidence the advice given by the app, we maintain a narrowly-scoped, pseudonymized archive containing:

• Workout request snapshots (high-level inputs, e.g., workout type, duration, style).
• Trainer chat messages (user prompts and assistant responses).

Important safeguards:

• No direct identifiers. We store a pseudonymous subject key (a one-way HMAC of your internal ID with a secret). We do not store names, email, or phone numbers in this archive.
• Purpose limited. Used only for establishment, exercise, or defense of legal claims and security investigations.
• Time limited. Items are configured to expire automatically after 24 months (730 days). We may retain specific items longer if required by law or if subject to a legal hold.
• Not user-visible. This archive is not used for personalization, advertising, or product features.
• Protected. Data is encrypted at rest and access is restricted and logged.

Your Rights

You can request deletion in-app at any time. We will delete your account and personal data from primary systems as described above. The pseudonymized defense archive is retained only for the limited legal purposes and timeframes noted. Where applicable law requires, you may make a request regarding this archive, and we will respond consistent with our legal obligations and the archive’s safety purpose.

Contact

Questions? Contact support at: matt@joinmija.com

Changes

We may update this section as our practices or legal requirements change. We will note the effective date above.