Effective March 10, 2025
Healthium, Inc. ("Company" or "we" or "us") is committed to respecting your data privacy and providing transparency about our data practices. This Privacy Policy (this "Privacy Policy") explains how we collect, store, use, transfer, and disclose Personal Data from our users ("you") in connection with the Company mobile applications, web pages and related services.
Healthium, Inc. is a Delaware C-corporation (Registration No. 38-4330909).
Registered address: 131 Continental Dr, Suite 305, Newark, DE 19713, USA.
For inquiries regarding this Privacy Policy or your Personal Data, you may contact us at:
Email: support@healthium.one
This Policy applies to the following applications and services (collectively referred to as the “Apps” and individually the “App”) operated by Healthium, Inc.:
Additionally, this Policy applies to any content available through the Apps, our website https://healthium.one, and any related pages, our emails, and notifications (collectively referred to as "Content").
We may modify this Privacy Policy from time to time. If we make changes, we will notify you through one or more of the following means:
If required by applicable laws (such as GDPR, CCPA, or HIPAA), we may ask for your explicit consent before implementing new data processing activities or collecting additional Personal Data.
By continuing to use the Apps or our websites after the effective date of an updated Privacy Policy, you acknowledge and agree to the revised terms.
If you do not agree with any updates, you must discontinue use and delete the Apps.
2.1. We collect and process different types of data to provide and improve our services. The table below outlines:
| Data We Process | Purpose of Processing | How We Collect This Data | Legal Basis for Processing/ Business or Commercial Purpose |
|---|---|---|---|
| Account Information (e.g., name, email, password) | To create and manage your account, provide access to services, and authenticate users. | Directly from you during account registration. | Contractual necessity – Required to provide our services. |
| Profile Information (e.g., age, gender, weight, height, dietary preferences, fitness goals) | To personalize your experience and provide our services | Directly from you when setting up your profile. | Contractual necessity – Required to provide our services. |
| Health-Related Information (e.g., medical conditions, symptoms, menstrual cycle, fitness activity, consumption of water) | To track progress, provide health-related insights, and personalize services. | Directly from you (when entered in the app) with explicit consent. | Explicit consent – Required for sensitive data processing. |
| Payment Information (e.g., partial credit card data, transaction details) | To process payments for subscriptions and in-app purchases. | Through third-party payment providers (e.g., Apple, Google, PayPal, Stripe). | Contractual necessity – Required for payment transactions. Legitimate interest – To customize our service offerings to you |
| Usage Data (e.g., app features used, time spent, interactions, clicks) | To improve user experience, analyze behavior, and enhance Apps’ features. | Automatically collected via app activity tracking. | Legitimate interest – To analyze and optimize our services. |
| Device Information (e.g., IP address, device type, operating system, browser type, language) | To improve security, troubleshoot technical issues, and optimize performance. To improve user experience, analyze behavior, and enhance Apps’ features. | Automatically collected when you use the Apps or our website. | Legitimate interest – To maintain security and app functionality, to analyze and optimize our services. |
| Cookies & Tracking Data (e.g., browsing behavior, preferences, session tracking) | To provide personalized experiences, analyze trends, and optimize marketing. | Automatically collected via cookies and tracking tools. | Consent – Users can opt in/out of tracking. |
| Advertising IDs (e.g. Apple Identifier for Advertising (IDFA) or Google Advertising ID (AAID) | To track data and measure the performance of our campaigns, to analyze trends, and optimize marketing. | Received from third-party authentication providers when you log in using our services. | Consent – Users can opt in/out of tracking. |
| Geolocation data (e.g. state, country) | To personalize Apps features, suggest relevant content, ensure security, and prevent fraud. | Automatically collected if you enable location permissions on your device. | Consent – Users can enable or disable location tracking in settings. |
| Marketing & Advertising Data (e.g., ad interactions, campaign performance data) | To measure campaign effectiveness and optimize marketing efforts; to improve our Apps, to conduct research and analysis. | Received from third-party ad partners. | Legitimate interest – Necessary for business growth and advertising. |
| Customer Support & Communication Data (e.g., emails, feedback, chat history) | To respond to inquiries, provide support, and improve Apps; to send product updates or warranty information. | Directly from you when contacting customer support. | Legitimate interest – Necessary to provide customer support. |
2.2. Apple HealthKit and Google Health Connect
You will also have the option to permit us to import and export data from third-party health services such as Apple HealthKit and Google Health Connect. The information that may be shared includes, but is not limited to:
We use this data to enhance your health tracking experience and provide more personalized recommendations. This data is incorporated into the Apps’ health and fitness tools to help you track and manage your progress.
2.3. Important Notes about HealthKit and Google Health Connect Data:
By enabling the integration with Apple HealthKit or Google Health Connect, you acknowledge that your health data may be used within the Apps to provide personalized insights and tracking features. You can manage your data-sharing preferences at any time within the App settings or through the third-party service’s privacy controls.
2.4. Information Obtained from Third Parties
We may receive additional information about you from third parties, unless explicitly restricted under applicable law in certain jurisdictions.
We do not collect or use sensitive personal data or any information that falls under “special categories of personal data” under applicable law, except for health information as described in subsection 2.3. of this Policy.
The data received from third parties is used only for the specific purpose for which it was provided.
2.5. Non-Personal Data
If the information covered by this Section 2 is aggregated or de-identified so it is no longer reasonably associated with an identified or identifiable natural person, we may use it for any business purpose. To the extent information covered by this Section 2 is associated with an identified or identifiable natural person and is protected as personal data under applicable data protection laws, it is referred to in this Privacy Policy as “Personal Data”.
We use the data we collect in a variety of ways to provide, personalize, and improve your experience with our Apps and services. Below is a breakdown of the key purposes for which we process your data:
3.1 Provide and Improve our services
We use your data to deliver the functionality and services you expect, including:
Account Management: To create, maintain, and update your account, and to allow you to access and use the Apps and website.
Personalized Experience: To customize the Apps experience (e.g., providing health tracking tools, diet plans, workout routines) based on the data you provide (such as your fitness goals, symptoms, or preferences).
Health & Fitness Tracking: To process your health data, allowing you to track your progress (e.g., diet, fitness activities), set goals, and monitor changes over time.
Meal & Fitness Recommendations: To suggest meal plans, fitness routines, and diet modifications tailored to your health and fitness needs.
3.2 Communication & Customer Support
We use your data to communicate with you and respond to inquiries or requests:
Account Notifications: To send you important updates about your account, including subscription information, payment reminders, and service changes.
Support & Assistance: To respond to customer service requests and provide technical assistance when you encounter issues or need help with the Apps.
Surveys & Feedback: To collect feedback about your experience, helping us improve the Apps and services.
3.3 Health-Related Insights & Recommendations
We process your health-related data (only with explicit consent) to:
Track Health Trends: To analyze and track your health data, providing insights and feedback tailored to your specific needs (e.g., changes in symptoms, weight, fitness progress).
Provide Personalized Tips: To send you relevant health tips, content, and recommendations (e.g., managing PCOS symptoms, meal ideas, fitness routines).
Improve Health Outcomes: To suggest modifications to your fitness or diet based on your progress, helping you achieve your health goals.
3.4 Analytics and Research
We analyze data to improve our services, detect issues, and support future improvements:
Service Improvement: To analyze usage patterns and user behavior to enhance functionality, performance, and user satisfaction.
Product Development: To help guide future features and service offerings, ensuring they meet the needs of our users.
Health & Wellness Research: To collect anonymous, aggregated data for research purposes (e.g., understanding trends in diet or fitness practices). This data is anonymized and cannot identify you personally.
3.5 Marketing and Advertising
With your consent (and in accordance with applicable laws), we use your data to:
Targeted Ads: To display personalized ads based on your usage patterns and preferences.
Promotions & Offers: To send you relevant promotional content, special offers, and app updates. You can manage ad preferences via settings.
Performance Analytics: To evaluate the effectiveness of our marketing campaigns and advertisements across different platforms (e.g., Google, Facebook).
3.6 Legal Compliance
We may process your data to comply with legal obligations or protect our rights:
Regulatory Compliance: To meet legal, tax, and financial reporting requirements.
Fraud Prevention & Security: To detect and prevent fraud or malicious activity and protect the security of our Apps, website, and user data.
Legal Disputes & Enforcement: To enforce our Terms & Conditions and Privacy Policy, defend against legal claims, or comply with law enforcement requests when necessary.
3.7 Consent Management
For certain processing activities (e.g., processing health data, marketing communications), we rely on your explicit consent. You have the right to withdraw consent at any time by adjusting your settings within the App or by contacting us. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
How to Withdraw Consent:
Emails: Click the unsubscribe link included in each marketing email.
Push Notifications: Adjust your device settings to disable push notifications from the Apps.
In-App Messages: Manage preferences in the App settings, where applicable.
Direct Request: You can also contact us at support@healthium.one to request an opt-out from marketing communications.
3.8 Automated Decision-Making & Profiling
We may use your data for automated decision-making and profiling to offer you personalized health and fitness recommendations. However, no decision that has a legal effect on you will be made solely on the basis of automated processing. If you wish to receive more details or challenge a decision, you can contact us at support@healthium.one.
We respect your privacy rights and provide you with control over your Personal Data. Depending on your jurisdiction, you have specific rights regarding how we collect, use, store, and share your data.
4.1 Rights of U.S. Residents (CCPA & Other Privacy Laws)
Depending on your U.S. state of residence, you have certain rights in relation to your personal data, including:
Right to Know: You have the right to know what personal data we have collected about you, including the categories of sources from which the personal data is collected, the business or commercial purpose for collecting, selling, or sharing personal data, the categories of third parties to whom we disclose personal data, and the specific pieces of personal data we have collected about you.
Right to Data Portability: You have the right to access your information in a portable format.
Right to Delete: You have the right to request that we delete personal data that we have collected from you.
Right to Correct: You have the right to correct inaccurate personal data that we may maintain about you, subject to appropriate verification.
Right to Opt Out of Sale or Sharing: We use and disclose to third parties personal data for the purposes, described in section 2. Accordingly, you have the right to opt out of the "sharing” of your personal data, or the use and disclosure of your personal data for “targeted advertising” (as these terms are defined in applicable law).
Freedom from Discrimination: You have the right to be free from unlawful discrimination for exercising any of your privacy rights.
Right to Restrict the Use of Sensitive Personal Information: You have the right to restrict the use of your sensitive personal information.
4.2 Do Not Sell My Information (CCPA Opt-Out)
Under CCPA and CPRA, California residents have the right to opt out of the “sale” or “sharing” of their Personal Data.
Please note, that
If you are a California resident and wish to opt out of data sharing for targeted advertising or analytics purposes, you can:
Submit a request by emailing us at support@healthium.one with “Do Not Sell My Personal Information” in the subject line.
Disable cookies and tracking in your browser settings or App settings.
4.3. Rights of EU/EEA Residents (GDPR Compliance)
Individuals residing in the countries of the European Union have certain statutory rights in relation to their personal data introduced by the General Data Protection Regulation (the "GDPR"). Under GDPR, you have the following rights:
Right to Rectification: You are responsible for ensuring the accuracy of your Personal Data that you submit to the App. If you believe that your Personal Data is inaccurate, you have the right to contact us and ask us to correct such Personal Data.
Right to Access and to Data Portability: You have the right to request information about whether we have any Personal Data about you, to access your Personal Data. You have the right to receive your Personal Data in a structured, commonly used, and machine-readable format.
Right to Erasure (Right to be Forgotten): You can request that we delete your Personal Data if it is no longer needed for the purpose for which it was collected. However, this right may not apply in cases where we have a legal obligation to retain data.
Right to Restrict Processing: You can ask us to restrict the processing of your data under certain circumstances (e.g., if you contest the accuracy of the data).
Right to Object: You can object to the processing of your data for direct marketing or other legitimate interest-based processing.
Right to Withdraw Consent: If we process your Personal Data based on consent, you can withdraw your consent at any time without affecting the lawfulness of processing based on consent before withdrawal.
Right to Lodge a Complaint: You have the right to file a complaint with your local Data Protection Authority if you believe we are processing your data unlawfully.
Following the provisions of GDPR, we might also require you to prove your identity (for example, by requesting an ID or any other proof of identity) in order for you to invoke the mentioned rights, specifically if you exercise them with respect to special categories of Personal Data like data about health. This is made to ensure that no rights of third parties are violated by your request, and the rights described in this section are exercised by an actual Personal Data subject or an authorized person.
4.4. How to Exercise Your Rights
To exercise any of your privacy rights under this Policy, or any applicable laws:
Email us at: support@healthium.one
Mailing Address: 131 Continental Dr, Suite 305, Newark, DE 19713, USA.
We will verify your identity before processing your request to ensure the security of your data.
Response Time: We will respond within one month (subject to extension in complex cases).
If you have concerns about how we handle your Personal Data, you have the right to contact your local Data Protection Authority (for EU/EEA users) or State Attorney General (for U.S. users).
We will share your Personal Data and information with third parties only in the ways that are described in this Privacy Policy.
5.1. We may disclose your Personal Data:
| Category of Third Party | Purpose of Sharing | Examples |
|---|---|---|
| Service Providers & Contractors | To provide essential services, such as payment processing, customer support, cloud storage, and analytics. | Payment processors (e.g., Apple Pay, Google Pay), cloud storage providers (e.g., Google Cloud, Digital Ocean), customer service platforms. |
| Analytics & Performance Tools | To understand user behavior, improve our Apps, and optimize performance. | Google Analytics, Firebase, Amplitude. |
| Advertising & Marketing Partners (only if consented) | To provide relevant advertisements and track marketing effectiveness. | AppsFlyer, Facebook Ads, X. |
| Legal & Regulatory Authorities | To comply with laws (e.g., tax, corporate compliance), court orders, or law enforcement requests. | Government agencies, law enforcement authorities. |
| Corporate Transactions | If we undergo a business transfer, such as a merger, acquisition, or asset sale, your data may be transferred as part of the transaction. | Acquiring companies or merging entities. |
5.2. Data Shared with Service Providers
We share the information we collect with third-party business partners who commit to comply with applicable laws concerning their usage of your Personal Data. These providers only have access to Personal Data necessary to perform their services and are contractually obligated to:
Use data solely for the purpose of providing their services.
Maintain the confidentiality and security of your Personal Data.
Carry out other purposes that are disclosed to you and to which you consent.
Comply with applicable privacy laws
These are the third-party services with whom, among others, we may share some of your Personal Data and information:
AppsFlyer. AppsFlyer is a mobile marketing platform. We may share certain non-identifiable information about you and some Personal Data (but never any data related to health) in order to carry out marketing activities and provide you better and more targeted service. Learn more about Appsflyer: https://www.appsflyer.com.
Facebook. We use Facebook as our advertising partner to display advertising in our Apps or to manage our advertising on other sites. Normally, Facebook collects only non-personally identifiable information about your activities on this App and other apps to provide you targeted advertising based upon your interests. Learn more about Facebook advertising policy: https://m.facebook.com/ads/ad_choices.
Crashlytics. Crashlytics, a Google business division, provides us crash reporting solution that we use in order to track when the App crashes or works improperly on your device. Crashlytics may collect certain device identifiers in order to understand on what devices and under which circumstances the App does not work or crashes. See more about Crashlytics here: https://try.crashlytics.com/reports/.
Intercom. We use Intercom as an intermediary for user support and communication. Intercom may collect some of your Personal Data (like contact information) to facilitate interactions between us and you. See more about Intercom and its privacy policy: https://www.intercom.com/legal/privacy.
X. We use X as our advertising partner to display advertising in X. Normally, X collects only non-personally identifiable information about your activities on this App and other apps to provide you targeted advertising based upon your interests. See more about X's privacy approach: https://x.com/en/privacy.
Firebase. Firebase is an analytics product from Google, Inc. that allows us to track crashes of the App, monitor events in the App, provide us stats regarding the use of the App. Firebase may collect certain device identifiers in order to understand on what devices and under which circumstances particular incidents and events happen. See more on Firebase: https://firebase.google.com/.
DigitalOcean. We use DigitalOcean for cloud hosting and infrastructure services. DigitalOcean may collect certain technical data to ensure the reliable performance and security of our services. See more about DigitalOcean and its privacy policy: https://www.digitalocean.com/legal/privacy-policy.
Stripe. We use Stripe as our payment processor to handle transactions securely. Stripe may collect some of your Personal Data (like payment details) to process payments and prevent fraud. See more about Stripe and its privacy policy: https://stripe.com/privacy.
5.3. Aggregated Information
We may also share aggregated, anonymized, or de-identified information, which cannot reasonably be used to identify you. For example, we may share, including, without limitation, in articles, blog posts, and scientific publications, general age demographic information, and aggregate statistics about certain activities or symptoms from data collected to help identify patterns across users.
Security of your Personal Data is important to us. We follow generally accepted industry standards to protect the Personal Data submitted to us, both during transmission and once we receive it.
Among others, we utilize the following security measures to protect your Personal Data:
Encryption of your Personal Data in transit and in rest: We use TLS/SSL encryption to protect data transmission between your device and our servers.
Systematic vulnerability scanning and penetration testing: We conduct security audits, penetration testing, and vulnerability scans to identify and fix potential risks.
Organizational and legal measures: For example, our employees have different levels of access to your Personal Data, and only those in charge of data management get access to your Personal Data and only for limited purposes required for the operation of the App. We impose strict liability on our employees for any disclosures, unauthorized accesses, alterations, destructions, misuses of your Personal Data.
Conducting periodical data protection impact assessments in order to ensure that the Apps fully adhere to the principles of 'privacy by design', 'privacy by default' and other internationally accepted data protection principles. We also commit to undertaking privacy audit in case of Company's merger or takeover.
Bear in mind that no method of transmission, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security. If you have any questions about security on our Apps, you can contact us by the email support@healthium.one.
We will retain your Personal Data for as long as the App is installed on your mobile device or as needed to provide you service. If you remove the App, we will remove your Personal Data and use copies of your Personal Data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
If you wish to cancel your account or request that we no longer use your information to provide you services, contact us by support@healthium.one.
We use servers located in the United States to transfer, process, and store your Personal Data.
We are committed to protecting the privacy of children. The App is not intended for children and we do not intentionally collect information about children under 18 years old. The App does not collect Personal Data from any person the Healthium, Inc. actually knows is under the age of 18.
If you are aware of anyone under 16 using the App, please contact us by the support@healthium.one and we will take the required steps to delete such information and (or) delete their account.
To communicate with our Data Protection Officer, please email by support@healthium.one.
If you have any questions or concerns about your privacy, any provisions of this Privacy Policy, or any of your rights, you may contact us by support@healthium.one.