Personal information you disclose to us
In Short: We collect personal information that you provide to us.
We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us.
The personal information that we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. The personal information we collect may include the following:
- Personal Information Provided by You. We collect names; email addresses; usernames; passwords; questionnaire answers; and other similar information.
- Payment Data. We may collect data necessary to process your payment if you make purchases, such as your payment instrument number (e.g., credit card number) and the security code associated with your payment instrument. All payment data is stored by Iyzico. You may find their privacy notice link(s) here: http://www.vagustim.io.
All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.
Information collected through our App
In Short: We collect information regarding your geolocation, mobile device, push notifications, and certain health information when you use our App.
If you use our App, we also collect the following information:
- Geolocation Information. We may request access or permission to track location-based information from your mobile device, either continuously or while you are using our App, to provide certain location-based services. If you wish to change our access or permissions, you may do so in your device’s settings.
- Mobile Device Access. We may request access or permission to certain features from your mobile device, including your mobile device’s Bluetooth, camera, microphone, storage, and other features. If you wish to change our access or permissions, you may do so in your device’s settings.
- Mobile Device Data. We automatically collect device information such as your mobile device ID, model and manufacturer, operating system, version information, system configuration information, application identification numbers, browser type and version, hardware model, Internet service provider and/or mobile carrier, and Internet Protocol (IP) address (or proxy server). If you are using our App, we may also collect information about the phone network associated with your mobile device, your mobile device’s operating system or platform, the type of mobile device you use, your mobile device’s unique device ID, and information about the features of our App you accessed.
- Push Notifications. We may request to send you push notifications regarding your account or certain features of the App. If you wish to opt-out of receiving these types of communications, you may turn them off in your device’s settings.
Data We Collect
- User-Provided Information:
- Sleep Data (Health Information): If you choose to integrate or allow access to your sleep data, the app will collect information such as sleep duration, sleep quality, sleep stages, or similar metrics. This data is sourced from your device or health-related integrations you approve (e.g., health APIs provided by your device’s operating system).
Apple HealthKit
We use Apple’s HealthKit framework, which provides a central repository for health and fitness data on iPhone and Apple Watch and – with your explicit consent – lets Apps communicate with the HealthKit store to access and share this data. If you download and use the Apple Watch version of the Application, we may collect and process your heart rate data, obtained through the HealthKit framework and the Apple CoreMotion processor, with your explicit consent. New data attributes may be added to the HealthKit framework, which will be portrayed in the Application and which you have to consent to.
If you grant the App access to HealthKit, it can add information to certain sections of HealthKit, i.e., adding the minutes of meditation that the User is listening to in the Application to the Awareness Time section in HealthKit.
Google Fit
We use Google’s Fit SDK which is an open platform that lets users control their fitness data. We do not collect or process any data from Google Fit. However, we may add information to certain sections of Google Fit, i.e., adding the minutes of meditation that the User is listening to in the App to the Awareness Time section in Google Fit. New data attributes may be added to the Google Fit framework, which will be portrayed in the App and which you have to consent to.
How We Use Your Information
- Displaying Sleep Data: If you enable it, we use your sleep data to provide personalized charts, insights, or summaries of your sleep patterns directly within the app.
- Personalization: We use locally stored data to deliver tailored recommendations, reports, or other features to enhance your user experience.
Data Storage and Security
- Local Storage: Your sleep data is stored locally on your device. We do not upload this personal health information to external servers without your explicit consent.
- Security Measures: We use reasonable administrative, technical, and physical security measures to protect your data from unauthorized access, alteration, disclosure, or destruction.
- No Third-Party Sharing Without Anonymization: We do not share personally identifiable or sensitive health data with third parties. If we ever share aggregated or anonymized data for analytics or improvement purposes, it will not identify you individually.
Data Sharing and Disclosure
- No Personal Data Sharing: We do not sell, rent, or share your personally identifiable sleep data or sensitive health information with third parties without your explicit permission.
- Anonymized Data: If we use third-party service providers or analytic tools, we will only share data that has been fully anonymized and does not identify you in any way.
Data Retention and Deletion
- Retention: We keep your personal and sleep data on your device as long as you maintain the app and do not delete it.
- Deletion: You can remove your data by uninstalling the app or using the appropriate in-app features to delete your stored information. Once removed, we do not retain your personal or sensitive data.
User Rights and Choices
- Access and Updates: You can view and update your sleep data within the app’s settings.
- Delete Your Data: You can delete your data at any time by removing it from within the app’s settings or uninstalling the app, which removes all stored data from your device.
Vagustim and the Use of OpenAI Services
Our AI-assisted service is powered by OpenAI’s ChatGPT technology. When you use our service, your survey scores (e.g., PHQ-9 or GAD-7) are transmitted to OpenAI servers via a secure API connection to provide you with a summary. We do not share any of your personal data or identifiable information with OpenAI. ChatGPT does not know to whom the surveys belong.
- Processing of Sensitive Data: Some of the information processed may be considered sensitive data. We process this data based on your consent and solely to provide you with our service. You may withdraw your consent at any time with future effect.
- OpenAI’s Data Retention Policy: OpenAI retains the information sent through the API for a maximum of thirty (30) days, after which it is deleted, except where OpenAI is required to retain copies under applicable laws. In such cases, OpenAI will isolate and protect that information from any further processing except to the extent required by applicable laws.
- To facilitate account creation and logon process. If you choose to link your account with us to a third-party account (such as your Google or Facebook account), we use the information you allowed us to collect from those third parties to facilitate account creation and logon process for the performance of the contract.
- To post testimonials. We post testimonials on our Services that may contain personal information. Prior to posting a testimonial, we will obtain your consent to use your name and the content of the testimonial. If you wish to update, or delete your testimonial, please contact us at [email protected] and be sure to include your name, testimonial location, and contact information.
- Request feedback. We may use your information to request feedback and to contact you about your use of our Services.
- To enable user-to-user communications. We may use your information in order to enable user-to-user communications with each user’s consent.
- To manage user accounts. We may use your information for the purposes of managing our account and keeping it in working order.
- To send administrative information to you. We may use your personal information to send you product, service and new feature information and/or information about changes to our terms, conditions, and policies.
- To protect our Services. We may use your information as part of our efforts to keep our Services safe and secure (for example, for fraud monitoring and prevention).
- To enforce our terms, conditions and policies for business purposes, to comply with legal and regulatory requirements or in connection with our contract.
- To respond to legal requests and prevent harm. If we receive a subpoena or other legal request, we may need to inspect the data we hold to determine how to respond.
- Fulfill and manage your orders. We may use your information to fulfill and manage your orders, payments, returns, and exchanges made through the Services.
- Administer prize draws and competitions. We may use your information to administer prize draws and competitions when you elect to participate in our competitions.
- To deliver and facilitate delivery of services to the user. We may use your information to provide you with the requested service.
- To respond to user inquiries/offer support to users. We may use your information to respond to your inquiries and solve any potential issues you might have with the use of our Services.
- To send you marketing and promotional communications. We and/or our third-party marketing partners may use the personal information you send to us for our marketing purposes, if this is in accordance with your marketing preferences. For example, when expressing an interest in obtaining information about us or our Services, subscribing to marketing or otherwise contacting us, we will collect personal information from you. You can opt-out of our marketing emails at any time (see the “WHAT ARE YOUR PRIVACY RIGHTS?” below).
- Deliver targeted advertising to you. We may use your information to develop and display personalized content and advertising (and work with third parties who do so) tailored to your interests and/or location and to measure its effectiveness.
- Personalized Protocol
- Consent: We may process your data if you have given us specific consent to use your personal information for a specific purpose.
- Legitimate Interests: We may process your data when it is reasonably necessary to achieve our legitimate business interests.
- Performance of a Contract: Where we have entered into a contract with you, we may process your personal information to fulfill the terms of our contract.
- Legal Obligations: We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).
- Vital Interests: We may disclose your information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person and illegal activities, or as evidence in litigation in which we are involved.
- Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
Account Information
- Log in to your account settings and update your user account.
- Contact us using the contact information provided.
- Access your account settings and update your preferences.
CCPA Privacy Notice
Category | Examples | Collected |
A. Identifiers
|
Contact details, such as real name, alias, postal address, telephone or mobile contact number, unique personal identifier, online identifier, Internet Protocol address, email address and account name
|
NO
|
B. Personal information categories listed in the California Customer Records statute
|
Name, contact information, education, employment, employment history and financial information
|
YES
|
C. Protected classification characteristics under California or federal law
|
Gender and date of birth
|
NO
|
D. Commercial information
|
Transaction information, purchase history, financial details and payment information
|
NO
|
E. Biometric information
|
Fingerprints and voiceprints
|
NO
|
F. Internet or other similar network activity
|
Browsing history, search history, online behavior, interest data, and interactions with our and other websites, applications, systems and advertisements
|
NO
|
G. Geolocation data
|
Device location
|
NO
|
H. Audio, electronic, visual, thermal, olfactory, or similar information
|
Images and audio, video or call recordings created in connection with our business activities
|
NO
|
I. Professional or employment-related information
|
Business contact details in order to provide you our services at a business level, job title as well as work history and professional qualifications if you apply for a job with us
|
NO
|
J. Education Information
|
Student records and directory information
|
NO
|
K. Inferences drawn from other personal information
|
Inferences drawn from any of the collected personal information listed above to create a profile or summary about, for example, an individual’s preferences and characteristics
|
YES
|
- Receiving help through our customer support channels;
- Participation in customer surveys or contests; and
- Facilitation in the delivery of our Services and to respond to your inquiries.
- whether we collect and use your personal information;
- the categories of personal information that we collect;
- the purposes for which the collected personal information is used;
- whether we sell your personal information to third parties;
- the categories of personal information that we sold or disclosed for a business purpose;
- the categories of third parties to whom the personal information was sold or disclosed for a business purpose; and
- the business or commercial purpose for collecting or selling personal information.
- you may object to the processing of your personal data
- you may request correction of your personal data if it is incorrect or no longer relevant, or ask to restrict the processing of the data
- you can designate an authorized agent to make a request under the CCPA on your behalf. We may deny a request from an authorized agent that does not submit proof that they have been validly authorized to act on your behalf in accordance with the CCPA.
- you may request to opt-out from future selling of your personal information to third parties. Upon receiving a request to opt-out, we will act upon the request as soon as feasibly possible, but no later than 15 days from the date of the request submission.