Privacy Policy
Effective Date: February 15, 2024
• Personal Information: Name, contact details, demographic information, account credentials you provide directly.
• Wellness Device Data: Steps, calorie, heart rate, sleep patterns, oxygen trends, heart rate variability, and stress estimates from consumer wearables, used for personalized lifestyle insights.
• Diagnostic Data: Blood test results you choose to upload, which in turn is used to generate wellness insights.
• Usage Information: App screens viewed, button interactions, device type (iPhone model), session duration, and standard analytics to improve app performance and user experience.
Data related to lab tests and diagnostic services is handled strictly in accordance with the DPDP Act, 2023, and other applicable laws governing health data.
We use collected data to:
All wellness data from consumer wearables is used exclusively for trend visualization and lifestyle awareness within your personal account. No clinical analysis or medical interpretation will be done.
We do not use identifiable health information or wellness data for advertising, marketing or any commercial purposes. Data remains private to your account.
You have control over your information and can manage it at any time through the app.
We respect applicable data protection laws (such as GDPR and HIPAA where relevant) and will make reasonable efforts to honor requests to access, correct, delete, or export your data in line with those regulations.
We retain personal data only as long as necessary for the purposes outlined in this Privacy Policy, to provide app functionality, or to meet legal requirements. If you have opted to receive marketing communications, we may retain information related to your communication preferences for a reasonable period, based on your last interaction with our content, platform, products, or services. De-identified or aggregated data may be retained for research, analytics, and statistical purposes for a longer period.
Wellness Data (heart rate trends, sleep patterns, steps, stress insights, oxygen saturation, heart rate variability ): Data will automatically expire by one year, unless you delete your account permanently.
Account & Profile Information:( name, email, preferences): Retained while your account is active. Upon account deletion request, removed within 30 days (except for legally required backups).
User Control & Deletion
Immediate Deletion: Request deletion anytime through the app
Process: Data is permanently erased within 30 days.
We never retain data longer than required and honor all deletion requests promptly, subject to legal holds.
We prioritize the security of your data with industry-standard measures to protect against unauthorized access, loss, or misuse.
Encryption: All data is encrypted at rest using Key Management Service(KMS) by AWS
Wellness metrics are stored and encrypted on AWS servers in the US.
Access Controls: Role-based access (employees see only aggregated data) and device binding for user logins.
Safeguards: Regular security audits, penetration testing (annual), firewalls, intrusion detection, and anonymization of analytics data.
In case of a confirmed data breach, we will:
Where required under applicable data protection laws, including the General Data Protection Regulation (GDPR) and the Digital Personal Data Protection Act, 2023 (India), we will notify the relevant supervisory authority and/or affected individuals within the timeframes prescribed by law, particularly where the breach is likely to result in a risk to your rights and freedoms.
Notifications to affected users may be provided through email, in-app communication, or a notice on our website, as appropriate.
If you believe that your personal data has been compromised or have concerns regarding the security of your information, you may contact us at contact.us@genaihealth.care. We will review your concern and respond in accordance with applicable data protection laws.