Last updated:
KnotNow ("we", "our") is committed to protecting your privacy. This policy explains how we collect, use, store, and protect your data when you use our website and services, including KnotNow Sessions (our sailing and watersports analytics feature). We comply with applicable data protection laws including the UK GDPR.
1. Activity and Location Data (Sessions)
When you use KnotNow Sessions, you may upload activity files (GPX or TCX) that contain:
- GPS track data: Latitude, longitude, timestamps, and altitude for each point in your route
- Activity metrics: Speed, distance, duration, and related performance data
- Optional wind data: If you set or we fetch wind direction for your session
Purpose: We process this data solely to provide session analysis, including map display, VMG, tack analysis, personal bests, and performance insights. We do not use your activity or location data for advertising, profiling, or any purpose other than delivering the analytics you request.
Storage: If you use Sessions without signing in, your data stays in your browser (localStorage) and is not sent to our servers. If you sign in, we sync your sessions to our servers so you can access them from any device. Data is stored securely and is associated only with your account.
Data sources: You may upload files from your own devices or export them from other services (for example Apple Watch or Strava). We only receive what you choose to send us.
KnotNow iOS app — location while recording. If you use Record in the KnotNow iPhone app, we request access to your device location while you are using that feature so we can log your GPS track, speed, and distance for session analysis. We do not use background location tracking outside an active recording you start. You can decline location permission and still use forecasts and other parts of the app; recording requires location access to work.
Strava (optional). If you connect Strava, we import activities you choose using Strava’s API under their terms. Imported data is used for the same session analysis purposes as GPX uploads. Disconnecting Strava stops new imports; data already in your KnotNow logbook remains until you delete it.
Garmin watch and Connect IQ. If you use a KnotNow experience on Garmin Connect IQ or transfer activity from your Garmin device to KnotNow, we receive only the information you initiate—typically comparable to a GPX or TCX upload (such as time-stamped position and movement-related metrics used for session analysis). We use it for the same purposes as other Sessions data described above. It is associated with your KnotNow account when you are signed in. Garmin’s own terms and privacy notices apply to your use of Garmin products and the Connect IQ platform. We do not access your Garmin device or account in the background without a clear action by you in the app or on the watch.
2. Forecast Preferences and Favourites
Your customisation preferences (wind speed ranges, tide settings, schedule, favourite spots) are stored locally in your browser. If you sign in, favourites are synced to our servers so you can access them across devices. This data is used only to personalise your forecast experience.
3. Account and Authentication
When you sign in, we use Auth0 for authentication. Auth0 may collect your email, name, and profile information as required for login. We receive a user identifier to associate your data with your account. See Auth0's privacy policy for details.
4. Third-Party Services
We use the following third parties to operate our services:
- Netlify: Website hosting and application functions. Signed-in session and account data are held in access-controlled databases operated as part of our service infrastructure. See Netlify's privacy policy.
- Auth0: Authentication and user management.
- Leaflet / OpenStreetMap: Map display for session routes. Map tiles are loaded from OpenStreetMap; no personal data is sent to them.
- Weather services: We may request historical weather data (e.g. wind) for your session's location and time to improve analysis. Only coordinates and time are sent; no user identity is included.
- Google Analytics / Tag Manager: We use analytics to understand how our site is used. This may include cookies and usage data. See Google's privacy policy.
5. Data Sharing and Sale
We do not sell your personal data. We do not share your activity or location data with third parties for marketing or advertising. Data is only shared with the service providers listed above as necessary to operate KnotNow.
6. Your Rights
Under UK GDPR, you have the right to:
- Access: Request a copy of the personal data we hold about you
- Rectification: Ask us to correct inaccurate data
- Erasure: Request deletion of your data
- Object: Object to processing in certain circumstances
- Data portability: Receive your data in a structured, machine-readable format
To exercise these rights, or to delete your Sessions data, please contact us. For data stored only in your browser, you can clear it by clearing your browser's local storage for this site.
7. Data Retention
We retain your data for as long as your account is active or as needed to provide the service. You can request deletion at any time. We may retain certain data where required by law or for legitimate business purposes (e.g. resolving disputes).
8. Security
We use industry-standard measures to protect your data, including encryption in transit (HTTPS). Session data is stored in secure, access-controlled systems and is only accessible to you (and to KnotNow staff where strictly necessary to operate or support the service). We process uploads into a structured form suitable for analysis rather than keeping a copy of every original file unchanged.
9. Changes to This Policy
We may update this policy from time to time. The "Last updated" date at the top will reflect any changes. Continued use of KnotNow after changes constitutes acceptance of the updated policy.
10. Contact
If you have questions about this privacy policy or your data, please contact us.