Last updated: April 9, 2025
Hello, we are Heart Rate Monitor ("Application" or "We"), developed by Hefei Yinuo Network Technology Co., Ltd. This Privacy Policy is meant to help you understand how we collect and use the personal information you provide when you access our Services through this application. By using our app, you consent to the practices described herein.
1.Collection of Personal Data and Method
We may process your personal data for the purposes we specify in this Privacy Policy.
The personal data of users collected and used by us in particular, are as follows: your full name, e-mail address and phone number which we will receive once you contact us; your order information if you make a purchase through in-app purchases; messages, text, information, photos, images, visual records, screenshots, and other data which you have uploaded or transmitted to the Heart Rate Monitor application; your certain health information as detailed below; and identifier for advertisers assigned by your mobile device used in accessing our services (The Identifier for Advertisers-IDFA), identifier for vendors/developers assigned by your mobile device (The Identifier for Vendors-IDVF), Internet Protocol Address-IP Address, and (if you give us permission) geolocation information.
Data Categories and Data Types
l Identity and Contact Information:Name, surname, phone number and e-mail address (if you contact us)
l Health information:
On camera access: We may ask for your permission to access your device's camera while you are using the app to provide the service of determining your heart/pulse rate and heart rate variabilities. In order to perform heart/pulse rate and heart rate variabilities measurement, Heart Rate Monitor uses your device's camera as a light sensor. Throughout the measurement process, images from the camera feed are processed exclusively on your device and are deleted immediately after processing. We are unable to collect, retain, or use any data that may exist within your camera roll. If you choose to save the measurements, these will be stored locally on your device along with the timestamp of the measurement.
Brief explanations on your rights: We may collect this information mainly for the purpose of providing our services (such as monitoring your heart rate, calculating heart rate variability and heart score). Your health information (except for gender and age) is stored only locally on your device and is not transmitted to or processed by our servers. Such data shall not be disclosed to third parties, except in cases where you voluntarily choose to share it.
You may request that this data be deleted at any time (in addition to your other rights). Your rights in relation to this data are set out in detail in this Privacy Policy.
We may collect the aforementioned data directly from you through electronic or physical mediums, your mobile device, third-party applications or third-party sources through which you can access our application, such as Apple App Store, Google Play App Store (similar platforms together with “App Stores”), for the purposes of compliance with legal obligations, enhancing our services, administering your use of our services, as well as enabling you to enjoy and easily navigate our services.
We may collect your log data generated while you are using our services/applications (through our products or third party products). This log data may include information such as your device’s Internet Protocol (“IP”) address, device name, operating system version, the configuration of the app when utilizing our service/application, the time/date of your use of the service/application, and other statistics.
General Principles Regarding Personal Data Processing
In accordance with this Privacy Policy, personal data are processed by us as a data controller in line with the basic principles outlined below:
(i) being in accordance with law and good faith,
(ii) being accurate and, where necessary, up-to-date,
(iii) being processed for specific, explicit and legitimate purposes,
(iv) being limited for the purpose for which they are processed and data minimization;
(v) being stored for the period stipulated in the relevant legislation or required for the purpose for which they are processed.
2.Purposes of Processing Personal Data and Legal Reasons
Your personal data will be processed via automatic or non-automatic means for the purposes stated below, in accordance with the applicable legislation and articles 5 and 6 of the PDP Law where it is expressly permitted by the laws, the establishment of a contract or direct relation to the performance of the contract and for the legitimate interests of us provided that your fundamental rights and freedoms are protected.
a) Purposes of Processing Personal Data
In accordance with this text, your personal data is processed for the following purposes in accordance with the above general conditions:
l Identity and Contact Information:
n execution of activities in compliance with legislation
n compliance with legislation and protection of persons’rights, privacy and safety
n fulfillment of company/product/service commitments
n execution of communication activities
n execution/auditing of business activities
n providing after-sales support for goods/services and communicating with you to send information or about services (if you consent) marketing about services
n execution of goods/services sales processes
n conducting storage and archive activities
n execution of agreement processes
n operation of our product
l Health information
n operation of our services, e.g., to display your heart rate
n conducting support services for related to the services and providing information about the services
n fulfilment of legal obligations and ensuring compliance with legislation
Besides, the purposes of processing personal data may be updated in line with our obligations arising from our company policies and legislation; in particular,
·Creating user accounts for the service recipients/application users,
·Customizing our Services, understanding our users and their preferences to enhance user experience and enjoyment using our Services and improve our users’ experience,
·Informing about new products, services and applications and delivering you information regarding advertisements and promotions,
·Carrying out a digital subscription and in-app purchase processes of service recipients,
·Carrying out the auto-renewable subscriptions for giving users access to content, services, or premium features in our service,
·Carrying out the processes of information security,
·Conducting activities in accordance with legislation,
·Fulfilling the demands of competent authorities,
·Conducting the processes of finance and accounting transactions,
·Conducting communication activities,
·Conducting the processes of contracts,
·Carrying out strategic planning activities,
·Following up requests and complaints.
b) Legal Reasons
l Identity and Contact Information:
n It is necessary to process your personal data, provided that we establish a contractual relationship with you, or that it is directly related to our performance obligation arising from this contract
n We have to process data in order to establish a right for you, to exercise and protect this right
n Your consent (e.g., if you consent us to send you marketing material).
l Health information
n Before accessing your camera for heart rate measurement for the first time, we will ask for your explicit consent through a pop-up window. You can withdraw this consent at any time in "App Settings - Privacy - Camera Permissions
n It is necessary to process your personal data, provided that we establish a contractual relationship with you, or that it is directly related to our performance obligation arising from this contract
n We have to process data in order to establish a right for you, to exercise and protect this right
n Processing is necessary for compliance with a legal obligation
3.Security Measures for Personal Information Protection
l We use the information provided by you to help us provide and improve our Services.Third - party Service Providers would use the information to improve their advertising and measurement systems so they can show you relevant ads on and off our Services, but you can opt out of Ads Personalizations in the settings.
l We strive to provide users with information security to prevent the loss, improper use, unauthorized access or disclosure of information.
l Do not collect irrelevant personal information:We will take all reasonable and practicable steps to ensure that no irrelevant personal information is collected. We will retain your personal information only for as long as necessary to achieve the purposes stated in this statement, unless the retention period is extended or permitted by law.
l Remind users to protect personal information:You acknowledge and understand that the system and communication network used by you to access our services may have problems due to factors beyond our control. Therefore, we strongly recommend that you take active measures to protect the security of your personal information, including but not limited to not disclosing your account password and related personal information to others.
l Regular assessment of security risks:We will conduct regular assessments of security risks and personal information security impacts. You can consult and supervise through the contact information disclosed in this statement.
l Assume legal responsibility for accidental leakage:The internet environment is not one hundred percent secure, and we will do our utmost to ensure or guarantee the security of any information you send us. If our physical, technical, or management protective measures are compromised, leading to unauthorized access, public disclosure, tampering, or destruction of information, causing damage to your legitimate rights and interests, we will bear the corresponding legal responsibility.
l We hereby specially remind you that the personal information protection measures provided in this privacy statement apply only to this application and related services. Once you leave this application and related services to browse or use other websites, services, and content resources, we have neither the ability nor the obligation to protect any personal information you submit on software or websites outside of this application and related services, regardless of whether your login, browsing, or use of these software or websites is based on links or redirects from this application.
4.The Rights of Users
l Withdraw your consent at any time: You have the right to withdraw consent where you have previously given the consent to the processing of any information or permissions.
l Access or revise your personal information: You have the right to learn the details about what personal information we collect and how we process them, and to request revisions if there are errors.
l Have your personal information deleted: Please note that except for the contact information you send us for feedback, any of your information will only be stored on your device while you are using our application. If you want to delete your personal information that is stored on your device, please clear the cache of our app in your settings. For server - side personal information deletion requests, please contact us directly.
l Personal information subject cancels the account:The account must meet the following conditions:(1) The account is in normal condition and there is no restriction such as being disabled.(2) If the account property is not settled, the virtual rights and interests that are not settled shall be abandoned.You can apply to cancel your account by email.Before you cancel your account, we will verify your personal identity, security status, device information, etc. You acknowledge and understand that the act of canceling an account is irreversible. After you cancel your account, we will delete all information related to your account or anonymize such information, except as otherwise provided by laws and regulations.
l Do not sell your personal information - California Resident: We will never sell personal information for any commercial purposes. But the third - party Service Providers we cooperate with (for example, our advertising partners) may use technology that "sells" your personal information as defined by the CCPA law. If you don't want your personal information to be used for interest - based advertising purposes or these potential sales as defined under CCPA law, you can opt out of it through the relevant settings of the third - party providers or our app settings.
l "Do Not Track" Policy - California Resident: "Do Not Track" Policy is required by California Privacy Protection Act (CPPA). Our Service does not track your browsing activity. But some third - party websites may track them if you are visiting such websites and want to prevent being tracked by these websites, you can modify the settings in your web browser.
5.Third - Party Services and Cookies
Third-party Services and Cookies In our services, the following third-party services and related information processing situations are involved: - Admob Ads SDK: This SDK functions to obtain and display ads. During its use, it will collect unique device identification codes (Android ID). For detailed information about its privacy practices, please refer to Google's Privacy Policy (URL: https://policies.google.com/privacy). - Google Analytic SDK: This SDK provides data statistical analysis services. To help us optimize app performance, it collects necessary information including application version, network status, device model, and application runtime logs (related to heart rate measurement functions only). It does NOT collect software lists or other irrelevant data.For detailed information about its privacy practices, please refer to Google's Privacy Policy (URL: https://policies.google.com/privacy).
6.Data Security and Storage
l Data Security: We implement industry - standard security measures, including encryption, access control, and regular security audits, to protect your personal information from unauthorized access, disclosure, alteration, or destruction.Specifically, we use SSL/TLS encryption protocols during data transmission and AES-256 encryption algorithms for sensitive user information during storage.
l Data Storage Location: For users in the European Economic Area (EEA) and other regions subject to the General Data Protection Regulation (GDPR), personal data is stored in data centers within the EEA to comply with GDPR requirements.For other users, data is stored in data centers in Ohio, United States.
l Data Retention Period:
(1)Log information: Retained for 180 days for debugging, analysis, and service improvement purposes. After this period, the log information will be anonymized or deleted.
(2)Contact information for feedback: Retained as long as necessary to respond to your feedback, and then deleted within 30 days after the feedback is resolved.
(3)Other personal information: Stored only during the period of your use of the application on your device, and deleted when you clear the app cache or uninstall the application, except as otherwise required by law.If data retention is required by laws (e.g., tax or healthcare regulations), we will retain the minimum necessary data forthe legally specified period and delete such data immediately after the period expires.
7.Age Verification for Minors (GDPR Compliance)
For users in the European Economic Area (EEA) or other regions subject to the General Data Protection Regulation (GDPR), we will implement age verification procedures if we have reason to believe that a user is a minor (under the age of 16, the general age of consent under GDPR). we will implement age verification procedures. This may include requesting parental or guardian consent through methods such as verifying a copy of a government - issued identification document (e.g., passport) of the parent or guardian, or using GDPR - compliant age verification services. If it is confirmed that the user is a minor without proper consent, we will not process their personal information further and will delete any collected personal information in accordance with GDPR requirements.
8.Changes to This Privacy Policy
We may update our Privacy Policy from time to time. When we make material changes to this Privacy Policy, we will notify you through in-app pop-ups, push notifications, or emails (if you have provided an email address) at least 7 days before the changes take effect. Your continued use of our Services after the effective date of the revised Privacy Policy constitutes your acceptance of the revised policy.
9.Contact Us
Your privacy matters to us. If you have questions or wish to send us comments about this Privacy Policy, please contact us by emailing to appdev@hfyinuo.com.We will endeavor to provide clear answers to your questions in a timely manner. Thanks for your support.