1. Reputable Health does not and will never sell any personal data without the consent of the user. We understand that to achieve our mission of becoming the decentralized reputation platform for health & wellness, we will need to aggregate anonymized health data points, health stacks and other experiment data so that we create a fast learning health optimization recommendation model and a community where everyone can benefit from each other. Our promise is to make any such aggregation, opt-in by the user, so that they can decide how they’re data is being used.
2. Reputable Health does not track or share any personal data with third party companies unless you specifically choose to enable that option (e.g. with Google Fit or Apple Health).
3. To protect your privacy, any health data that you choose to track for your own purposes is encrypted before it is backed up on our servers.
4. Reputable Health is compliant with GDPR and other data handling policies and practices.
5. Reputable Health tracks as little personally identifiable data as possible to protect its users.
Information Reputable Health Collects and Uses
To register an account, you have to enter your email address and choose a password. You may also register using a Google Account, Apple Account or Facebook. Once you have registered, you will benefit from the following functionality:
- Access to platform to view any data that you choose to submit
- Automatic backup to our secure servers. as well as the ability to restore and recover your account and it’s associated data on another device
There are two main purposes for which we process personal data and the type of data that is processed to fulfill each purpose:
1. To provide our services and understand your needs
First and foremost it is vital for us to stress that we do not and will never sell any personal data about you to third parties without your consent. However you may still feel uncomfortable storing health information to a connected device. Therefore, you should consider the safety and privacy of your personal data before using the Reputable Health app generally.
When you use the Reputable Health app, or when you go on our website, Reputable Health collects, stores, and uses some personal data (e.g. your email address). We mainly do this to verify you as a user so that we can provide you with our services and to send you service messages by email, and our lawful basis for this processing is that it is necessary for the performance of a contract with you (i.e. our Terms and Conditions).
We may also occasionally send you marketing and promotional messages as well as reminders to your smartphone via push notifications. We will only send you such messages with your prior consent.
We are very thoughtful and selective about what we communicate and how often. You always remain in full control of your communication preferences with Reputable Health. You can change the settings within the app at any time.
We also process your personal data and non-personal data in order to understand your needs and your use of our app and website, to analyze bugs and fix issues, and to bring you more useful features. To sum it up, we process this data to provide you the best and most reliable experience of our services and we aim for it to be as anonymized as possible. These processing activities are based on our legitimate interests in providing a reliable service to you, and improving it or on your consent where you have opted in by accepting the use of certain cookies on our app or website.
These are the types of data we collect for the above purposes:
This data informs us about the device you use to access our services, such as the model, name and identifiers, device settings, the application identifier, and crash information. On our website, we collect information about your browser and browser settings, the operating system you use, and the system settings of your device.
Event and usage data
When you use the app or when you go to our website, our servers process anonymised data in order to understand your usage of our services, for example, which pages you visit or which tab in the app you open. We collect this information and use it as aggregate data to allow us to better understand which features are the most relevant or useful to our users as a whole, and to communicate with you about relevant and timely information and promotional content.
The amount we collect has been minimized wherever possible to respect your privacy.
2. To deliver personalized insights
The data you track in Reputable Health about your health and activities is considered sensitive personal data. Reputable Health does not store sensitive personal data without your explicit consent. It is only when you give us explicit consent by creating a Reputable Health account, and giving us your consent declaration, that we start storing health data that you choose to provide on our secured servers.
You can withdraw your consent at any time by simply deleting your account in the app.
Here is the type of data we collect and store when you create an account:
Personal data used for account creation
We need some of your personal data (only your email address) in order to create your Reputable Health account.
Health and sensitive data
With your consent, we store health data, such as your sleep, activity and readiness levels along with individual symptom levels, your medication and supplements and other health factors you track in the app.
The provision of this information is entirely voluntary, and it is up to you how much information to input.
You may also allow us to connect to third-party services, such as Oura, Apple HealthKit and Google Fit, to enable us to import Personal Data about your health and activities into the App. This imported data may include activity level, weight, calories burned, heart rate, sleep, blood pressure, blood glucose, temperature, number of steps/distance traveled, and other data about your health. We will process this data in order to provide you with the App functionality described below. When you choose to have this data imported you are subject to the Oura, Google Fit and Apple HealthKit privacy policies and practices.
It’s important to clarify that your health data is encrypted on our services and the only personal data it is attached to is your email address.
Principles of Processing
Data minimization and purpose limitation. We will not process Personal Data in a way that is incompatible with the purposes for which it has been collected or subsequently authorized by you or collect any Personal Data that is not needed for the mentioned purposes. For any new purpose of processing we will ask your separate consent.
YOUR CONSENT FOR PROCESSING HEALTH AND SENSITIVE DATA
If you create an account with Reputable Health, your personal data, including sensitive data and data related to your health, is stored on your device and is also stored and processed on Reputable Health servers. This is done so we can offer you the option of backing up your data and to enable additional features (such as the ability to transfer, restore, and recover data between Apple and Android devices).
By creating an account with Reputable Health you explicitly consent that:
i. Reputable Health may store and process personal data you provide through the usage of the Reputable Health app and through the account creation process solely for the purpose of providing Reputable Health services to you and to improve Reputable Health’s service features. Such Reputable Health services may include sending you information and reminders through the Reputable Health app, e.g. via push notification or to the email address you provided to Reputable Health, where you have separately agreed to receive such messages.
ii. Such personal data you provide to Reputable Health through the account creation process for the purpose of providing Reputable Health’s service includes personal data you enter into the Reputable Health app, such as your account data (e.g. your email address), and your health data which may include your sleep, activity, mood levels and individual symptom levels, your medication and supplements and other health factors you track in the app. All of your health data is encrypted on the server end.
You may withdraw your consent to this use of your data at any time by deleting your Reputable Health account. This can be requested by emailing email@example.com. You can also delete your data from the settings page within the Reputable Health App at any time.
We believe that data privacy is a basic human right. At Reputable Health we strive to ensure that your rights are respected.
Here are some key facts about your privacy that we would like you to know:
i. Our services have been designed to minimize the use of your personal data. We only collect and process your personal data for the purposes that have been previously outlined.
ii. Your data is highly secured on our servers. You can contact us at firstname.lastname@example.org if you have any questions about the security of our services.
iii. We do not retain your personal data in an identifiable format for longer than necessary to deliver our services. As soon as we can, we encrypt your email address and create an anonymised user ID so that your health data is not directly connected to your email address on our systems.
iv. Reputable Health does not engage in any automated decision-making or profiling activities.
As a user of Reputable Health services and website, you may exercise your user rights to:
i. Request information on, or a copy of, your personal data processed by Reputable Health. Upon your request, this information will be provided to you electronically.
ii. Gain access to your personal data by requesting a backup of your data (as explained in the next section) in a format that is readable by other companies or organizations (data portability).
iii. Correct your personal data and health data in the app settings and in the tracking categories available in the Reputable Health app.
iv. Withdraw your consent from data processing at any time by deleting your account (as explained in the support section of the app) and/or deleting the Reputable Health app from your smartphone, and/or unsubscribing from our newsletter by clicking the link at bottom of the email or by contacting email@example.com.
v. Request the complete deletion of your data, including all past data sent to third-party services used for tracking and analysis, by reaching out to firstname.lastname@example.org. Your data will be deleted as soon as possible and within 30 days.
vi. Object to our processing of your personal data, or ask us to restrict your personal data pending a decision on whether we can lawfully continue to process it.
vii. File a complaint with the relevant supervising authority if you believe Reputable Health is processing your personal data under violation of applicable data protection regulations. The servers that make the Platform and Reputable Health’s service available worldwide are located in the United States. All matters relating to the Platform and Reputable Health’s service are governed by the laws of the State of California, without reference to its conflicts of law rules that would result in the Platform of the laws of another jurisdiction. Please note that any information you provide will be transferred to the United States, and by using the Platform and/or Reputable Health’s service or providing Reputable Health with information, including health data, you authorize this transfer.
We apply security measures to protect against the misuse, loss, and/or alteration of personal data under our control. Though we cannot ensure or guarantee that misuse, loss or alteration of information will never occur, we use all reasonable efforts to prevent it and keep our security methods and systems under close review. Although we make good faith efforts to store all personal information entered into the App in a secure operating environment that is not available to the public, we cannot guarantee complete security. We cannot and do not guarantee that our security measures will prevent third party “hackers” from illegally accessing our site or App and obtaining access to content or information thereon.
How Reputable Health stores your personal data
If you have an account with Reputable Health, your personal profile data (email address) is stored separately from your health (sleep, activity, mood, symptoms, medication, your customized health factors) data and your service settings. This allows us to ensure the highest possible level of privacy for your health data. Your password is stored using one-way encryption (“hashing” plus “salting”).
Your data is transmitted between your device and Reputable Health’s servers using the HTTPS protocol for encryption. HTTPS is the same technology used to create secure connections for your web browser and is indicated by a padlock icon in the URL bar of your browser.
Disclosure of your personal data
We will share some of your personal data with third parties outside Reputable Health only where it is strictly necessary to provide our services to you, where required by law, where we have another legitimate interest to do so or where you specifically consent to it. Personal data may be shared in the following circumstances:
- Third Party Support Service Providers: For example: technology service providers, payment providers, data storage providers, and marketing platforms (e.g. for sending marketing emails),
- Third Party Apps: some of your personal data may be shared with other Apps but only if you agree to that. Please see the section below for further information.
- When required to do so by law, regulation or court order;
- in response to a legitimate request for assistance by the police or other law enforcement agency.
- to seek legal advice from Reputable Health’s external lawyers or in connection with litigation with a third party; or
Reputable Health’s recommendations for protecting your personal data
We believe the biggest threat to the security and privacy of your personal data is if someone, probably someone you know, gains access to any of your devices. The data you enter into Reputable Health is private and it should stay that way. We have outlined some ways to keep your devices secure below.
Protect your device:
i. Activate either PIN, TouchID (iPhone 5S models onwards), or FaceID (iPhone X onwards) authentication for your device. This automatically encrypts your Reputable Health data and prevents any person from using your device without your permission.
ii. Set up a feature that will allow you to erase all the data from your device if it’s been lost or stolen. For iOS, activating this feature is a two-step process: first, you need to Activate “Find My iPhone” via iCloud (see instructions on Apple Support pages) and then enable “Erase your device” (see instructions on Apple Support pages).
For Android, download and set up Find My Device (formerly Android Device Manager) from the Google Play Store and, if needed, use the connected web interface to lock or wipe your phone remotely.
Data transfer to third party service providers
We may transfer personal data to third party service providers who support our business as follows:
In the Reputable App we use Firebase (https://www.firebase.com/), a framework maintained by the Google subsidiary Firebase residing in San Francisco, CA, USA, through which we use to track and administer the following real-time functions:
1. Tracking of basic user events for Firebase
2. User Authentication
3. Database Storage
4. Tracking of app crashes and their reasons through Firebase
For all mentioned Firebase services, only anonymized or pseudonymized user data is transmitted to Firebase (Google).
We use Firebase Crashlytics to track app crashes as they occur, and to prevent future ones. In case of an app crash, a report is created that contains the type and OS of the device, your last activities in the app, and your geolocation in pseudonymous form, and that is sent to Google.
Information on the functionality of Crashlytics is available under https://firebase.google.com/products/crashlytics/
We use Firebase Authentication to allow you to sign up and log in – Most apps need to know the identity of a user. Knowing your identity allows us to securely save user data in the cloud and provide the same personalized experience across all of the your devices.
Your data is safely stored on the secure Firestore database, which automatically encrypts all data before it is stored, as can be read here.
For more information on app crash data, go to the information provided by Crashlytics at https://try.crashlytics.com/terms/privacy-policy.pdf.
More information is available at: https://segment.com/legal/privacy/
Like many businesses, we use Zendesk to assist with customer support.
More information available here: https://www.zendesk.co.uk/company/privacy-and-data-protection/
Data transfer to third party apps:
We may transfer personal data to third party apps if you choose to enable this option:
Reputable Health will not exchange any personal data with Oura without your prior approval. Approval is given by you in the relevant settings of the Oura app or within the Reputable Health app during initial user profile setup or via app settings and can be revoked by you at any time. If you have given your approval, Reputable Health may interact with the Oura app on your iOS or Android device and read information from it, such as Steps, Sleep, Mindfulness, Activity, Heart Rate and Weight data.
You can choose if and to what extent your personal data is exchanged between Reputable Health and the Oura app by granting or revoking appropriate permissions in the Oura app settings. Please refer to the Privacy Information of Oura for further information about how Oura treats your personal data.
Apple Health (iOS)
Reputable Health will not exchange any personal data with Apple’s Health Kit app without your prior approval. Approval is given by you in the relevant settings of the Health Kit app or within the Reputable Health app during initial user profile setup or via app settings and can be revoked by you at any time. If you have given your approval, Reputable Health may interact with the Health Kit app on your iOS device and read information from it, such as Steps, Sleep, Mindfulness, Blood Pressure, Heart Rate and Weight data.
You can choose if and to what extent your personal data is exchanged between Reputable Health and the Health Kit app by granting or revoking appropriate permissions in the Health Kit app settings. Please refer to the Privacy Information of Apple Health for further information about how Apple treats your personal data.
Reputable Health will not exchange any personal data with Google Fit without your prior approval, such approval is given by you in the relevant settings of Google Fit or within the Reputable Health app during initial user profile setup or via app settings and which can be revoked by you at any time. If you have given your approval, Reputable Health may interact with Google Fit on your Android device and read information from it, such as Steps, Sleep, Blood Pressure, Heart Rate and Weight data.
You can choose whether or not your personal data is exchanged between Reputable Health and Google Fit by granting or revoking appropriate permissions in Google Fit settings.
Reputable Health’s use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.
Please refer to the Privacy Information of Google Fit for further information.
More information is available at: https://www.google.com/fit/ & https://policies.google.com/privacy (general information on Google Analytics and data protection).
COOKIES, TRACKING AND PAYMENT DATA
With your consent our website uses certain non-essential cookies, which are small text files that are intended to make the site better for you to use. In general, cookies are used to retain preferences, store information for things like shopping carts, and provide tracking data to third-party applications like Google Analytics. You may, however, disable cookies on Reputable Health’s site. The most effective way to do this is to disable cookies in your browser. We suggest consulting the help section of your browser or doing your own web research on how to disable cookies. In the meantime, here is a short guide to help:
1. Most browsers allow you to refuse to accept cookies—for example:
- in Internet Explorer (version 10) you can block cookies using the cookie handling override settings available by clicking “Tools,” “Internet Options,” “Privacy,” and then “Advanced”;
- in Firefox (version 24) you can block all cookies by clicking “Tools,” “Options,” “Privacy,” selecting “Use custom settings for history” from the drop-down menu, and unticking “Accept cookies from sites”; and
- in Chrome (version 29), you can block all cookies by accessing the “Customize and control” menu, and clicking “Settings,” “Show advanced settings,” and “Content settings,” and then selecting “Block sites from setting any data” under the “Cookies” heading.
2. Blocking all cookies will have a negative impact upon the usability of many websites. If you block cookies, you may not be able to use all the features on our website.
3. You can delete cookies already stored on your computer—for example:
- in Internet Explorer (version 10), you must manually delete cookie files (you can find instructions for doing so at http://support.microsoft.com/kb/278835 );
- in Firefox (version 24), you can delete cookies by clicking “Tools,” “Options,” and “Privacy”, then selecting “Use custom settings for history”, clicking “Show Cookies,” and then clicking “Remove All Cookies”; and
- in Chrome (version 29), you can delete all cookies by accessing the “Customize and control” menu, and clicking “Settings,” “Show advanced settings,” and “Clear browsing data,” and then selecting “Delete cookies and other site and plug-in data” before clicking “Clear browsing data.”
We obtain your consent before we use any non-essential cookies on your device when you choose to access our website. You may withdraw your consent at any time, by either disabling cookies on your device or following the instructions on how to withdraw your consent individually for each third party provider Reputable Health uses for its third party tracking and analysis services.
For the purpose of tracking the performance of our services and to improve Reputable Health services Reputable Health uses the following third party services:
Google analyzes this information to offer reports for Reputable Health on website usage and online usage of associated services. Google may also transfer this information to third parties either when this is required by law or when third parties are contracted by Google to process this data. Google will not allow your IP address to be linked to any other personal data. You can prevent cookies from being stored on your computer by changing your browser settings; however, if you choose to do this, your experience when visiting our website or using some of our features may be altered.
By using Reputable Health’s website, you consent to have non-personal data used and processed by Google as described above. You can withdraw consent for this use of your data at any time, but this withdrawal only applies to future activities.
This service is not intended for children under the age of 16. Reputable Health does not knowingly collect or use personal data from children under the age of 16. By registering to a Reputable Health account you confirm that you are at least 16 years old.
If Reputable Health gains actual knowledge that the information has been collected from children under 16, we reserve the right to immediately delete the account and wipe all related information, including health and sensitive data of the user, from our servers.
If you are a parent and learn that your child is using Reputable Health without your permission or if you have any specific question about data privacy at Reputable Health, do not hesitate to get in touch with us at email@example.com.