Privacy Policy
Last Updated: November 13, 2024 | Version 1.0.2
Welcome to Lifetrails.
This privacy policy explains how Lifetrails Ltd ("we", "us", or "our"), registered in the EU under number FI34376188 and located at Caloniuksenkatu 8 A, 00100 Helsinki, collects, uses, and protects your information when you use our wellness and health tracking app and website. We are committed to protecting your personal and health data while providing you with innovative health insights. For any privacy-related questions, you can reach our Data Protection Officer at dpo@lifetrails.ai.
Our Commitment to Your Privacy
We understand that health and wellness data is deeply personal. Our commitment is to be transparent about our data practices, protect your information with industry-leading security, and give you control over your data. We never sell your personal data, and we maintain strict protocols for data protection in compliance with GDPR requirements.
Data We Collect
Health and Fitness Information
Through our mobile application, we collect health and fitness data through our app, Apple HealthKit, and Google Fit integrations. This includes, but is not limited to:
- Heart rate and heart rate variability
- Sleep patterns and quality metrics
- Physical activity and exercise data
- Blood glucose levels
- Blood pressure measurements
- Respiratory rate
- Body temperature
- Menstrual cycle data
- Meditation minutes
- Step counts and distance traveled
- Calories burned
Through our wellness assessments, we gather information about your mood, stress levels, and nutritional habits.
Calendar and Scheduling Information
Our app integrates with Google Calendar, Apple iCloud Calendar, and other calendar services to optimize your wellness journey. We access your calendar events, appointments, and scheduling preferences to help you maintain your wellness routine. This includes time zone settings, activity planning data, and reminder preferences. We process calendar data solely for scheduling optimization and do not read or store the content of your personal events.
Personal Information
To provide our services, we collect basic personal information including your name, email address, age, and gender. We also maintain your account preferences, time zone settings, language preferences, and emergency contact information when provided.
Technical Information
We automatically collect certain technical data necessary for our service operation. This includes:
- Device information such as device type, operating system version, and unique device identifiers
- IP addresses for security and regional service optimization
- App and website usage patterns, including how you interact with our services
- Login information and performance data
- Browser type and version information (for website visitors)
Analytics and User Experience Monitoring
To improve our services and understand how users interact with our platforms, we use industry-standard analytics tools. These tools help us understand how our services are being used, identify technical issues, and make improvements to better serve our users.
The analytics data we collect includes general usage patterns, interaction with features, and basic device information. This data is anonymized, stored securely, and used solely to improve our services and user experience. We ensure all analytics tools we use employ appropriate privacy and security measures to protect your information.
For error monitoring and quality assurance, we collect technical information when issues occur, including error reports and related device information. This helps us maintain the reliability and stability of our services.
How We Use Your Data
Core Services
We process your data to provide personalized health insights, track your wellness progress, generate recommendations, and help you maintain your schedule. This processing is essential for delivering our service and includes synchronizing with your health devices and sending relevant reminders.
Service Improvement and Machine Learning
Important: We use anonymized and aggregated data to improve our services and train our machine learning models. This helps us enhance our health insights, recommendations, and overall user experience. By using our services, you agree that we may use your anonymized data for machine learning and artificial intelligence training purposes. This processing never includes personally identifiable information and is conducted with strict privacy controls.
Analytics and Performance Monitoring
The data collected through our analytics and monitoring tools helps us understand how our services are used, identify technical issues, improve performance, and make informed decisions about feature improvements. All analytics data is processed in accordance with our data protection standards and stored securely with appropriate access controls. This data is never combined with your health or personal information and is used solely for service improvement purposes.
Data Protection
We implement comprehensive security measures to protect your data:
- All information is encrypted during transmission and storage using industry-standard protocols
- We maintain our infrastructure in compliance with both GDPR and HIPAA requirements
- Secure EU-based servers with regular security audits
- Continuous monitoring and threat detection
Your Privacy Rights
Under GDPR and other applicable privacy laws, you have significant rights regarding your personal data:
- Access: You can access your data at any time
- Correction: You may correct inaccurate data
- Deletion: You can request deletion of your data
- Data Portability: You may request a copy of your data in a portable format
- Restrict Processing: You can request limitations on how we process your data
- Object to Processing: You may object to certain types of processing
- Withdraw Consent: You can withdraw your consent for data processing at any time, though this may affect our ability to provide certain services
- Opt-Out of Analytics: You can opt out of certain types of analytics tracking through your device settings or by contacting our support team
Third-Party Integrations
We integrate with several third-party services to enhance your experience:
Apple HealthKit
Our integration with Apple HealthKit follows strict Apple privacy guidelines, accessing only authorized data with separate encryption.
Google Fit
We use OAuth 2.0 authentication and follow Google's API policies for all Google Fit integrations.
Calendar Integrations
Calendar integrations are limited to scheduling functions and operate under strict access controls that you can revoke at any time.
Data Retention
We retain your data only as long as necessary to provide our services and comply with legal requirements:
- Active Accounts: We maintain data throughout your usage period
- Account Deletion: After account deletion, we retain data for a maximum of 30 days to allow for recovery if needed
- Technical Logs: We keep technical logs and analytics data for 13 months to maintain service quality
- Anonymized Data: We may retain anonymized data indefinitely for research and machine learning purposes
Updates to This Policy
We will notify you of any significant changes to this privacy policy through app notifications, email, or in-app alerts at least 30 days before the changes take effect. Your continued use of our services after such notifications constitutes acceptance of the updated policy.
Contact Information
For any questions about this privacy policy or to exercise your privacy rights, please contact us:
Privacy Inquiries: privacy@lifetrails.ai
Data Protection Officer: dpo@lifetrails.ai
Postal Address:
Lifetrails Ltd
Caloniuksenkatu 8 A
00100 Helsinki
Finland