HR & BP Diary ("we," "our," or "us") is committed to protecting the privacy, integrity, and security of any personal information of our users.
This Privacy Policy (the "Policy") describes how we collect, use, and share the data you may provide by using our mobile application HR & BP Diary (the "App"), and any related services, newsletters, or electronic communications (collectively, the "Service").
Any personal information you provide to us while using the Service will be treated with care, subject to this Policy, and will not be used or disclosed in ways in which you have not consented except as indicated below.
By using our Service, you hereby consent to the collection, use, and disclosure of your personal information in accordance with this Policy. If you do not agree to this Policy, you may not use the Service and should remove all copies of the App you have immediately.
This Policy is subject to the provisions of our Terms of Use, which are incorporated by reference.
The first time you sign in to the Service via the App, the Service asks you to create a Service account (the "Account"). To create an Account, you must provide personal information such as your name and e-mail address and specify a password.
You may also use the App in offline mode (the "Local Mode") without connecting to our servers. In this case, Account registration is not needed, and your data is not stored on our servers.
Depending on the features you use, you may be asked for additional information such as birth date, gender, height, and weight.
This data is used for calculation of other parameters (such as BMI) and to evaluate your progress in achieving health-related goals.
We also collect standard information about our users, such as IP addresses, browser type, operating system, pages visited, referring and exit pages, and the dates and times of visits. This site visitation data is used to administer the Service and provide general statistics. Site visitation data is never linked to your personal information, and we do not use it to identify you individually.
The Service allows you to manage health records, including records you create for yourself and your family members. You can add different kinds of information either entered manually or collected automatically from compatible sensors or integrated health platforms.
You choose what information to put in your records. Examples of the types of information you can store include:
Blood pressure measurements (systolic and diastolic) entered manually or collected automatically via the App;
Heart rate measurements (resting heart rate, active heart rate) entered manually or collected automatically;
Data imported from Apple Health, Google Health Connect, or other compatible platforms (including activity, blood glucose, blood pressure, ECG, exercise, heart rate, oxygen saturation, respiration rate, sleep, temperature, and weight);
Personal text notes;
Images and scanned documents.
If you decide to invite a third party to use the Service, we will collect such third party's name and e-mail address so that we may send an invitation to use the Service.
When you need help from our customer services, you may need to provide your contact information such as your name, e-mail address, telephone or mobile number, and order details. Your contact information will not be distributed to any third parties.
The Service may automatically collect certain non-identifiable information regarding users, such as the serial number of your personal digital assistant or mobile device. Your non-identifiable information may be disclosed to others and permanently archived for future use. Once such information is linked with personal information, all of the linked information is treated as personal information and will be used and disclosed only in accordance with this Policy.
To configure your Account, you may set different Service settings, such as preferred units of measurement, threshold values, and notification parameters.
To improve the Service, we also collect information on how you interact with our services, including your IP address, location, cookies or other unique IDs, and the features you use. We combine this with other users' information to get an overall view of how the Service is used. We may use third-party services (such as Firebase) to collect anonymous usage statistics and app performance data. Firebase data is not linked to your personally identifiable health data records.
We use your information collected through the Account, including health information, to provide the Service and as described in this Policy. We may use personal information:
To send you the Service sign-up notification or message requesting e-mail validation;
To notify you about suspicious activity, such as accessing the Service from an unusual IP address;
To provide you with important information about the Service, including critical updates and new major releases;
To send you e-mail newsletters if you opt-in;
To determine your age and location to check if you qualify for an account or to choose the display language.
Your e-mail is included in the data-sharing invitations you send via the Service to identify you to the invited person.
We occasionally hire other companies to provide limited services on our behalf, such as answering customer questions. We give those companies only the personal information they need to deliver the service. We require the companies to maintain the confidentiality of the information and prohibit them from using the information for any other purposes.
We may access and/or disclose your personal information if we believe such action is necessary to: (a) comply with the law or respond to legal process served on us; or (b) protect our rights or property (including the enforcement of our agreements).
We use cookies with the Service to enable you to sign in and to help personalize the Service. You have the ability to accept or decline cookies. If you choose to decline all cookies, you may not be able to use the interactive features of this or other websites that depend on cookies.
We may use aggregated information from the Service to improve the quality of the Service and for marketing purposes. This aggregated information is not associated with any individual account. We do not use your individual Account and record information for marketing without first asking for and receiving your opt-in consent. We may use third-party analytics tools (including Firebase) to understand usage trends, improve app functionality, and diagnose errors. Any data collected via those tools are aggregated or anonymized and are not used to identify individual health record contents.
By default, you are the custodian of the records you create. You may invite additional people to be custodians. Each custodian can add and remove other custodians and users who can view and modify the record. Some of the information stored in the records you manage may be highly sensitive, so you need to consider carefully with whom you choose to share the information.
You can share health information from records you control:
To co-manage the health of a family member;
To use it with other health-related products and services;
To consult with your health care provider;
To provide fitness information to coaches and trainers.
You can share information in a health record you are custodian of with another person by sending a sharing invitation e-mail via the Service. If the person accepts your sharing invitation and has or creates a Service account, you grant him or her access to that information. You can revoke view and read access anytime.
You can also choose to grant custodian access to other persons, such as your spouse, for any record of which you are a custodian. A custodian can also revoke access to a record from any other user having access to this record, including you.
The level of access you can grant as a custodian includes:
View-only access (time-limited access);
View-and-modify access (time-limited access);
Custodian access (no time limit).
A custodian of a health record can:
Read the record;
Change the record;
Delete the record;
Grant to others any level of access to the record, including custodian access.
By logging into your account, you can access much of your personal information, including your dashboard with your recent measurements data (such as blood pressure and heart rate) and activity statistics. You can also download information in a commonly used file format.
Your account settings let you change and delete your personal information. For instance, you can edit or delete the profile data you provide and delete your account if you wish. If you choose to delete your account, please note that while most of your information will be deleted within 30 days, it may take up to 90 days to delete all of your information from our backup systems.
The Service provides you with settings and tools to control our data use. For example, through your sharing settings, you can limit how your information is visible to other users. If you live in a jurisdiction subject to the EU GDPR, in certain circumstances, you can object to our processing of your information based on our legitimate interests.
If you reside in a jurisdiction subject to the EU GDPR, you can seek to restrict our processing of your data in certain circumstances. Please note that you can delete your account anytime. If you need further assistance, please contact us at tongchaowei55@gmail.com, and we will consider your request in accordance with applicable laws.
We keep your account information (such as your name, e-mail address, and password) for as long as your account is in existence because we need it to operate your account. We keep other information, like your measurements results or activity data, until you use your account settings or tools to delete the data or your account, because we use this data to provide you with your personal statistics and other aspects of the Service. We also keep information about you and your use of the Service for as long as it is necessary for our legitimate business interests, for legal reasons, and to prevent harm.
If an account has not had a successful login for an extended period of time, it may be considered inactive. Personal data associated with inactive accounts is retained only for a limited period. After that period, personal data may be deleted or irreversibly anonymized, unless continued retention is required for legal, regulatory, or compliance purposes.
We work with partners who provide us with analytics and advertising services. This includes helping us to understand how users interact with the Service and serving ads on our behalf. These companies may use cookies and similar technologies to collect information about your interactions with the Service and other websites and applications.
Children under the age of thirteen (13), or any higher minimum age (sixteen (16) for the jurisdictions covered by the EU GDPR) in the jurisdiction where that child resides, are not permitted to create accounts unless their parent has consented in accordance with applicable law. If we learn that we have collected the personal information of a child under the relevant minimum age without parental consent, we will take steps to delete the information as soon as possible. Parents who believe that their child has submitted personal information to us and would like to have it deleted may contact us at tongchaowei55@gmail.com.
We continuously evaluate our security posture to further enhance the security of user data. A combination of technical, administrative, and physical controls are employed to maintain the security of personal information. Data transfers from the App to our servers are processed through secure connections. Sensitive user data is stored encrypted to safeguard against unauthorized or unlawful access. The use of information received from Health Connect adheres to the Health Connect Permissions Policy, including the Limited Use requirements.
However, no method of transmitting or storing data is completely secure. Should you have a security-related concern, please contact us at tongchaowei55@gmail.com.
We operate internationally and may transfer information to the United States and other countries for the purposes described in this Policy. Where personal data of users located in the European Economic Area is transferred to countries outside the EEA, we rely on Standard Contractual Clauses approved by the European Commission, together with appropriate technical and organizational safeguards, to ensure an adequate level of protection in accordance with GDPR Chapter V.
This Policy may be changed by us from time to time at our sole discretion. You will be notified of changes to this Policy by our issuing an update or new version of the App. Upon installing the update or new version of the App, you will be asked to review and agree to the new Privacy Policy. The collection, use, and disclosure of your personal information will be governed by the latest version of this Policy. New versions of this Policy will be posted at the relevant page within the App. Accordingly, when you use the Service, you should check the date of this Policy and review any changes since the last version.
If you have questions, suggestions, or concerns about this Policy, or about our use of your information, please contact us at:
Email: tongchaowei55@gmail.com
Disclaimer
HR & BP Diary is for fitness and wellness purposes only. Not a medical device. Always consult a doctor for medical advice.