Skip to main content

Legal / Privacy

Privacy Policy

This policy explains how Summit Chronicles handles personal information across the website and optional connected-fitness services.

Effective: 13 July 2026Controller: Summit Chronicleshello@summitchronicles.com
/01

Scope

Summit Chronicles is an independent expedition, training, and editorial website operated by Sunith Kumar in India. This policy applies to summitchronicles.com, its forms and newsletters, and any fitness service you expressly connect to Summit Chronicles.

Links to external websites and social platforms are governed by their own privacy policies. This policy does not replace the privacy terms of WHOOP, Intervals.icu, or another service you choose to use.

/02

Information we collect

Information you provide

  • Email address and subscription source when you join the newsletter.
  • Your name, contact details, and message when you contact us.
  • Information you include in partnership, media, or speaking inquiries.

Information collected automatically

  • IP address, browser and device information, request time, and requested pages.
  • Security, diagnostic, rate-limit, and server logs needed to operate the site.
  • Essential session information for restricted administrative features.

Summit Chronicles does not sell personal information. It does not collect payment-card information through the current site.

/03

Connected fitness data

Fitness integrations are optional. Data is accessed only after the account holder completes the provider's authorization process and grants the requested permissions.

WHOOP

If WHOOP is connected, Summit Chronicles may receive account or profile identifiers and authorized cycle, recovery, sleep, HRV, resting-heart-rate, strain, and workout information. OAuth access and refresh tokens are also processed to maintain the connection.

Intervals.icu and other sources

Intervals.icu may provide aggregated activity and wellness data that originated from a fitness account you connected to Intervals.icu. Summit Chronicles does not directly authorize or store credentials for those upstream accounts. Summit Chronicles displays source and freshness information when this data is presented.

Connected-fitness data is used to present the account holder's training record and related analysis. It is not sold, used for advertising, used to determine insurance or employment, or presented as medical diagnosis or treatment.

/04

How information is used

  • Operate, secure, troubleshoot, and improve the website.
  • Deliver newsletters requested by subscribers.
  • Respond to questions, partnerships, and other inquiries.
  • Authenticate authorized connections and retrieve permitted fitness data.
  • Build training summaries, activity histories, and recovery context.
  • Comply with legal obligations and enforce site terms.

Where applicable, processing is based on consent, performance of a requested service, legitimate operational interests, or legal obligations. Consent can be withdrawn at any time, without affecting processing that occurred before withdrawal.

/05

When information is shared

Information may be shared only as necessary with:

  • Hosting, storage, security, and infrastructure providers.
  • Buttondown or another disclosed provider used to deliver requested newsletters.
  • WHOOP and Intervals.icu when completing an authorized connection or API request.
  • Professional advisers, authorities, or other parties when required by law or needed to protect rights and safety.
  • A successor in a merger, reorganization, or transfer, subject to applicable privacy obligations.

Service providers may process information only for the relevant service and under their applicable contractual and legal duties. Personal information is not rented or sold.

/06

Retention and deletion

  • Newsletter information is retained until you unsubscribe, followed by limited suppression records when needed to honor that choice.
  • Correspondence is retained only while needed to respond, maintain relevant business records, or meet legal obligations.
  • Operational logs are retained for a limited period appropriate to security and troubleshooting.
  • OAuth tokens and connected-fitness data are retained only while needed for the authorized integration or another disclosed purpose.

When you revoke a fitness connection, delete the source account, request deletion, or when Summit Chronicles stops using that API, associated provider tokens and stored provider data will be promptly and permanently deleted unless retention is legally required. Backup copies may persist briefly until routine backup rotation completes and will not be restored for ordinary use.

/07

Your choices and rights

Depending on your location, you may request access, correction, deletion, restriction, portability, or information about how your personal data is processed. You may also withdraw consent or object to certain processing.

  • Use the unsubscribe link in any newsletter to stop marketing email.
  • Revoke WHOOP authorization through its connected-app settings, or manage upstream activity sources through Intervals.icu.
  • Email hello@summitchronicles.com to request access, correction, export, or deletion.

Identity may be verified before fulfilling a request. Summit Chronicles will respond within the period required by applicable law. You may also raise a grievance with the relevant data protection authority.

/08

Cookies and logs

The site may use strictly necessary cookies for authentication, security, preferences, and reliable operation. Server logs and rate-limiting records may process IP addresses and request metadata. Summit Chronicles does not currently use personal data from connected fitness providers for cross-site advertising.

If optional analytics or advertising technologies are introduced, this policy and any required consent controls will be updated before they are enabled.

/09

International transfers

Providers may process information in countries other than your own. Where applicable, Summit Chronicles relies on appropriate contractual, legal, and security safeguards for international transfers and limits information to what the service requires.

/10

Security

Reasonable technical and organizational safeguards are used to protect personal information, including access controls, encrypted transport, secret separation, restricted administrative access, and provider-token protection. No internet service can guarantee absolute security.

If a breach creates a risk requiring notification, affected individuals and authorities will be notified as required by applicable law.

/11

Children

Summit Chronicles is not directed to children under 13 and does not knowingly collect their personal information. Fitness-account connections are intended for people legally able to authorize the relevant provider account. Contact us if you believe a child has submitted personal information.

/12

Changes to this policy

This policy may be updated as the site, connected services, or legal requirements change. The effective date will be revised, and material changes will be communicated through an appropriate site or email notice when required.

/13

Contact

For privacy questions, requests, complaints, or fitness-data deletion, contact:

Summit Chronicles
Attn: Sunith Kumar
India
hello@summitchronicles.com

General website terms are available in the Terms of Service.

This policy is intended to describe Summit Chronicles' actual practices clearly. It is not a substitute for legal advice about obligations that may apply in a particular jurisdiction.