Privacy Policy

Your privacy and data security are our top priorities

Last updated: January 15, 2024

End-to-End Encryption

Your health data is encrypted both in transit and at rest using industry-standard encryption protocols.

You Control Your Data

You own your health data and can export, delete, or modify it at any time through your account settings.

HIPAA Compliant

Our platform meets HIPAA standards for protecting sensitive health information and medical records.

1. Introduction

At Vitros ("we," "our," or "us"), we are committed to protecting your privacy and ensuring the security of your personal health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our health and wellness platform.

This policy applies to all information collected through our website, mobile applications, and related services (collectively, the "Service"). By using our Service, you consent to the data practices described in this policy.

2. Information We Collect

Personal Information

We collect information you provide directly to us, including:

  • Name, email address, and contact information
  • Account credentials and profile information
  • Demographic information (age, gender, location)
  • Payment and billing information
  • Communications with our support team

Health Information

With your explicit consent, we collect health-related information including:

  • Fitness and activity data (steps, exercise, sleep patterns)
  • Biometric data (heart rate, weight, blood pressure)
  • Nutrition and dietary information
  • Mood and wellness tracking data
  • Health goals and preferences
  • Data from connected devices and third-party apps

Technical Information

We automatically collect certain technical information, including:

  • Device information (type, operating system, browser)
  • Usage data (features used, time spent, interactions)
  • Log data (IP address, access times, error logs)
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Generate personalized health insights and recommendations
  • Track your progress toward health and wellness goals
  • Send you important updates and notifications
  • Provide customer support and respond to inquiries
  • Conduct research and analytics to improve our algorithms
  • Ensure security and prevent fraud
  • Comply with legal obligations

We will never use your health information for marketing purposes without your explicit consent.

4. Information Sharing and Disclosure

We do not sell your personal health information to third parties. We may share your information only in the following circumstances:

  • With Your Consent: When you explicitly authorize us to share information with healthcare providers, family members, or other third parties
  • Service Providers: With trusted third-party vendors who help us operate our Service (cloud hosting, analytics, customer support)
  • Legal Requirements: When required by law, court order, or government request
  • Safety and Security: To protect the rights, property, or safety of Vitros, our users, or others
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with continued privacy protection)

All third-party service providers are bound by strict confidentiality agreements and data protection requirements.

5. Data Security

We implement comprehensive security measures to protect your information:

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Strict role-based access controls and multi-factor authentication
  • Regular Audits: Ongoing security assessments and penetration testing
  • Data Centers: SOC 2 Type II certified data centers with 24/7 monitoring
  • Employee Training: Regular privacy and security training for all staff
  • Incident Response: Comprehensive breach response and notification procedures

While we strive to protect your information, no method of transmission over the internet is 100% secure. We encourage you to use strong passwords and keep your account credentials confidential.

6. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: Request a copy of your personal information
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Export your data in a machine-readable format
  • Restriction: Limit how we process your information
  • Objection: Object to certain types of processing
  • Withdrawal: Withdraw consent for data processing

To exercise these rights, contact us at privacy@vitros.app or through your account settings. We will respond within 30 days of receiving your request.

7. Data Retention

We retain your information for as long as necessary to provide our Service and fulfill the purposes outlined in this policy:

  • Account Information: Retained while your account is active and for 3 years after deletion
  • Health Data: Retained according to your preferences, with options for immediate deletion
  • Usage Data: Aggregated and anonymized data may be retained indefinitely for research
  • Legal Requirements: Some data may be retained longer to comply with legal obligations

You can request deletion of your data at any time through your account settings or by contacting us directly.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure adequate protection through:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions for countries with equivalent privacy protections
  • Certification schemes and codes of conduct
  • Additional safeguards as required by applicable law

9. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

For users between 13 and 18, we require parental consent before collecting any health information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Sending you an email notification
  • Displaying a prominent notice in our Service

Your continued use of the Service after the effective date of the revised policy constitutes acceptance of the changes.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Officer: privacy@vitros.app

Data Protection Officer: dpo@vitros.app

Address: 2118 Thornridge Cir. Syracuse, Connecticut 35624

Phone: (704) 555-0127

We are committed to resolving any privacy concerns promptly and transparently.

Related Documents

Terms of Use

Our terms and conditions for using Vitros

Contact Us

Get in touch with our privacy team