novark.
Get started

Legal

Privacy Policy

Last updated: March 2026

1. Who we are

Ark ("we", "us", "our") is an AI-powered gym management platform operated from India. We help fitness businesses manage their members, track engagement, and deliver personalised coaching through AI. Our website is novark.app.

2. What data we collect

Gym administrators: Name, email address, business name, and billing information when you sign up. We also collect usage data such as which features you use and how often.

Members: Name, phone number, email (if provided), attendance records, task completions, meal logs, progress check-ins, and messages sent to the AI coach. This data is entered either by the administrator or the member directly through the client portal.

Automatically collected: IP address, browser type, device type, pages visited, and session duration through standard web analytics.

3. How we use your data

  • To provide and operate the Novark platform
  • To power the AI coaching features using your account's content and member data
  • To send transactional emails (account verification, billing receipts)
  • To detect churn risk and generate member alerts for administrators
  • To improve the platform through aggregated, anonymised usage analysis
  • To comply with legal obligations

We do not sell your data to third parties. We do not use member data for advertising purposes.

4. Data storage and security

Your data is stored on servers hosted by Neon (PostgreSQL database) and Railway (application hosting), both of which are SOC 2 compliant cloud providers. Data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption.

We implement role-based access controls, ensuring administrators can only access data belonging to their own business. Member data is isolated per business and is never shared across accounts.

5. Third-party services

We use the following third-party services to operate Ark:

  • Groq / OpenAI — AI inference for the coaching and admin assistant features. Messages are processed in real time and not stored by the provider beyond their standard data retention policies.
  • Razorpay — Payment processing. We do not store card details on our servers.
  • Resend — Transactional email delivery.
  • Sentry — Error monitoring. Error reports may contain request metadata but are anonymised where possible.

6. Data retention

We retain your data for as long as your account is active. If you cancel your subscription, your data is retained for 90 days to allow for reactivation, after which it is permanently deleted. You can request immediate deletion by contacting us.

7. Your rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Withdraw consent for data processing

To exercise any of these rights, email us at privacy@novark.app.

8. Cookies

We use only essential cookies required to operate the platform (authentication tokens, session state). We do not use advertising or tracking cookies.

9. Changes to this policy

We may update this policy from time to time. Material changes will be communicated by email to registered admin accounts at least 14 days before taking effect.

10. Contact

For privacy questions or concerns, contact us at privacy@novark.app.

Terms of ServiceSecurity← Back to home