At BioLogger, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our bio-tracking platform. Please read this policy carefully to understand our views and practices regarding your personal data.

1. Information We Collect

Information You Provide

• Account Information: Email address, name, and profile details when you sign up via Google OAuth
• Health & Fitness Data: Weight, body measurements, body fat percentage, and other metrics you manually enter
• Progress Photos: Images you upload to track visual progress
• Custom Metrics: Any custom measurements you create and track

Information from Device Integrations (When Enabled)

• Fitbit Data: Activity levels, sleep patterns, heart rate (when you connect your Fitbit account)
• Freestyle Libre Data: Continuous glucose monitoring data (when you connect your LibreView account)
• Other Devices: Data from any additional health devices you choose to connect

Automatically Collected Information

• Usage Data: How you interact with the app (pages visited, features used)
• Device Information: Browser type, operating system, device identifiers
• Cookies: We use essential cookies for authentication and functional cookies for preferences

2. How We Use Your Information

We use your information to:

• Provide and maintain the BioLogger service
• Generate health insights and correlations from your tracked data
• Display charts, trends, and progress over time
• Sync data from your connected devices
• Send important service notifications (account security, feature updates)
• Improve our service based on aggregate usage patterns
• Monitor AI token usage to prevent abuse

We do not: Sell your data to advertisers, use your health data for targeted advertising, or share individual health data with third parties for marketing purposes.

3. Data Sharing & Third Parties

We only share your data with trusted service providers when necessary to operate our platform. These providers are contractually obligated to protect your data and may only use it to provide services on our behalf:

• Infrastructure & Hosting: Your data is stored on secure cloud infrastructure with industry-standard encryption at rest and in transit.
• Authentication: We use secure third-party authentication services to manage your login credentials safely.
• Device Integrations: When you connect health devices or services (such as Garmin, Fitbit, or glucose monitors), data flows between those services and BioLogger according to their respective privacy policies. You control which integrations are active.Important: Any data you submit to BioLogger through third-party device integrations (including Garmin Connect, Fitbit, and others) is submitted to BioLogger and not to the device manufacturer. The device manufacturer (e.g., Garmin, Fitbit) has no responsibility or liability for any data you submit to BioLogger through their integration. BioLogger is solely responsible for the collection, use, and protection of your data once it reaches our platform.

We may also disclose information if required by law, to protect our rights, or in connection with a business transfer (such as a merger or acquisition).

4. Your Rights & Choices

You have control over your data:

• Access: View all your stored data at any time through your dashboard and export features.
• Export: Download all your data in CSV format at any time. Your data belongs to you.
• Correction: Edit or update any information in your profile or tracked measurements.
• Deletion: Delete individual entries or request complete account deletion. We will delete your data within 30 days of account deletion.
• Disconnect Devices: Revoke access to any connected device integrations at any time.

5. Data Retention

• Active Accounts: We retain your data for as long as your account is active and you continue to use our service.
• Account Deletion: When you delete your account, we will delete all your personal data and health information within 30 days.
• Anonymized Data: We may retain anonymized, aggregated data for analytics purposes that cannot be linked back to you.
• Legal Requirements: Some data may be retained longer if required by law (e.g., financial records for tax purposes).

6. Security

We implement appropriate security measures to protect your data:

• HTTPS/SSL encryption for all data in transit
• Encryption at rest for stored data
• Secure OAuth authentication (no passwords stored)
• Regular security reviews and updates

While we strive to protect your data, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

7. Cookies

We use the following types of cookies:

• Essential Cookies: Required for authentication and basic functionality. The service cannot work without these.
• Functional Cookies: Remember your preferences and settings.
• Analytics Cookies: Help us understand how users interact with the service to improve it.

You can control cookie settings through your browser, but disabling essential cookies may affect functionality.

8. For European Users (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

• Right to Access: Request a copy of all personal data we hold about you.
• Right to Rectification: Request correction of inaccurate data.
• Right to Erasure: Request deletion of your data ("right to be forgotten").
• Right to Data Portability: Receive your data in a structured, commonly used format (CSV export is available).
• Right to Object: Object to processing of your data in certain circumstances.
• Right to Restrict Processing: Request limitation of processing in certain circumstances.

Legal Basis for Processing: We process your data based on your consent (when you create an account and use the service) and our legitimate interests in providing and improving our service.

Data Protection Officer: For GDPR-related inquiries, please contact us at the email address below.

9. Children's Privacy

BioLogger is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: