Privacy Policy

Last updated: April 1, 2026

This Privacy Policy explains what JumpOnion collects, how data is processed, and how long data is retained when you use the service.

1. Data We Collect

  • Account information such as email, display name, and authentication identifiers provided through Supabase Auth.
  • Uploaded video files used for temporary processing.
  • Derived artifacts such as extracted WebP frames, analysis summaries, diagnosis cache, training plans, and export metadata.
  • Payment and subscription metadata from Stripe, including customer, checkout, and webhook records needed for billing and audit.
  • Operational logs required for abuse prevention, troubleshooting, and reliability monitoring.

2. How We Use Data

  • To authenticate users and secure access to private task data.
  • To process videos into frames, overlays, diagnostics, and training recommendations.
  • To manage payments, credits, refunds, support, and fraud prevention.
  • To monitor reliability, enforce limits, and improve product quality using aggregated operational evidence.

3. Raw Video vs. Retained Output

  • Raw uploaded video is stored temporarily in Cloudflare R2 under the upload flow and is intended to be deleted after processing.
  • JumpOnion retains processed WebP frame output and related task artifacts instead of keeping the original video long term.
  • Temporary upload objects may also be subject to automatic cleanup rules and hard-delete jobs.

4. Retention Windows

  • Sandbox task artifacts may be cleaned after 7 days.
  • L1 Basic and L2 Pro processed artifacts may be cleaned after 30 days.
  • L3 Coach processed artifacts may be retained indefinitely while the account remains on that tier.
  • Task records may be preserved for audit, billing, fraud prevention, and product history even after stored files are cleaned.

5. Service Providers

  • Supabase: authentication, database, and private storage.
  • Cloudflare R2: temporary raw video storage.
  • Modal.com: U.S.-based compute for extraction and GPU-assisted processing.
  • Stripe: payment processing and billing records.
  • Approved AI model providers: diagnosis and training-plan generation where enabled in the product.

6. Children and Minors

  • JumpOnion is intended to be used by parents, guardians, coaches, or older athletes with appropriate authority.
  • Users under 16 require parental or guardian consent.
  • If you believe data involving a minor was uploaded without authority, contact privacy@jumponion.ai so we can investigate and act.

7. Your Privacy Rights

  • You may request access to or deletion of your account data.
  • You may request account closure and basic export or support help where available.
  • We will verify the request before acting and may retain limited records where required for disputes, legal obligations, or fraud prevention.

8. Security

  • JumpOnion uses access controls, owner-scoped task access, and private storage patterns for user content.
  • Payment details are handled by Stripe rather than stored directly by JumpOnion.
  • No system can guarantee absolute security, but we work to minimize retained sensitive media and limit access paths.

9. Contact

For privacy questions, deletion requests, or concerns about uploaded athlete data, contact privacy@jumponion.ai.