At Aether Kinetics, we view user data not as a commodity, but as a high-value asset requiring strict
stewardship. This document outlines our protocols regarding the collection, encryption, and utilization of
telemetric data.
1. Integration with Third-Party Hardware (Garmin)
Aether Kinetics utilizes the Garmin Connect™ Developer Program to provide enhanced biomechanical analysis.
Regarding this specific data integration:
- Data Usage: We access activity files (FIT), heart rate telemetry, and step counts
solely to calculate proprietary "Recovery" and "Game-State" metrics.
- No Transfer of Ownership: Data accessed via the Garmin API remains the property of the
user. Aether Kinetics does not sell, rent, or trade Garmin-sourced data to third parties, advertisers,
or data brokers.
- Limited Scope: We only request permission for data points strictly necessary for the
application's functionality (e.g., Dungeons & Fitness requires 'Activity' read access to generate XP).
2. Data Encryption & Storage
All sensitive biometric data is encrypted at rest using AES-256 standards. Data in transit is secured via TLS
1.3 protocol. Ephemeral data processing is prioritized; wherever possible, raw telemetry is processed
in-memory and discarded, retaining only the derived "Gamified" metrics.
3. User Rights & Deletion
In compliance with GDPR and CCPA, all users have the absolute right to:
- Request a copy of all data Aether Kinetics holds regarding their account.
- Request immediate deletion ("Right to be Forgotten") of their account and associated
data.
- Revoke API Access: Users may disconnect their Garmin devices at any time via the Garmin
Connect dashboard or within the Aether Kinetics application settings.
4. Contact Compliance Officer
For specific inquiries regarding API integration or data handling, please contact our engineering governance
team:
compliance@aetherkinetics.com