Privacy Policy

PRIVACY POLICY - HEARTO

Effective Date: December 18, 2025

Developer: AppTechTown

1. INTRODUCTION

This Privacy Policy (collectively, the "Agreement") governs your use of Hearto (the "App"). This Agreement is a legally binding contract between you and the Developer regarding your use of the App.

By accessing or using the App, you acknowledge that you have read, understood, and agree to be bound by this Agreement. If you do not agree, please uninstall the App immediately.

2. DATA COLLECTION, PROCESSING, AND RETENTION

To ensure transparency and compliance with Google Play Developer Policies and global privacy laws (including GDPR and CCPA), we outline specifically how your data is handled throughout its lifecycle.

2.1. Health & Fitness Data (Processed Locally)

We prioritize your privacy. The following sensitive data is processed and stored exclusively on your device's local storage:

· Vital Signs: Heart rate (BPM) estimates, blood pressure logs, and blood sugar records.

· Physical Attributes: Gender, age, height, and weight (used solely to calculate BMI and calibrate measurement algorithms).

Privacy Commitment: We DO NOT upload, sync, or store this Health Data on our external servers. We do not sell or share your Health Data with any third parties. This data is permanently deleted if you uninstall the App or clear App data.

2.2. Technical & Usage Data (Collected Automatically)

To maintain the App's functionality, stability, and our free-to-use model (via advertising), we and our third-party partners may automatically collect certain technical data:

· Device Information:

o Identifiers: Android ID, Advertising ID (GAID), and device model.

o System Info: Operating system version, language settings, time zone, and screen resolution.

· App Activity & Analytics:

o App launch frequency, session duration, and feature usage patterns.

o Crash Logs: Stack traces and error reports (via Google Firebase) to help us identify and fix bugs.

· Advertising Data:

o Interaction with advertisements (e.g., ad views, clicks).

o General location data (approximate location derived from IP address) to serve relevant ads.

2.3. Purpose of Data Processing

We process the collected data for the following specific legal bases:

1. Service Functionality: To operate the App and provide health estimations on your specific device.

2. Analytics & Improvement: To understand user demographics and fix technical issues (Legitimate Interest).

3. Advertising: To display personalized or non-personalized advertisements, which allows us to offer the App for free (Consent, where required).

2.4. Data Retention Policy

We adhere to the principle of data minimization and retain data only as long as necessary:

· Local Health Data: Retained indefinitely on your device until you manually delete specific entries or uninstall the App. You have full control over this retention.

· Technical Data: Retained on third-party servers (e.g., Firebase, AdMob) for a limited period (typically up to 26 months) for analytics and fraud prevention purposes, after which it is automatically anonymized or deleted.

2.5. International Data Transfers

· Cross-Border Transfer: Our service providers operate globally. By using the App, you acknowledge that your Technical Data may be transferred to and processed in servers located in the United States or other jurisdictions.

· Safeguards: We ensure these transfers comply with applicable laws by relying on trusted partners who implement robust security measures, including Standard Contractual Clauses (SCCs) where necessary.

3. APP PERMISSIONS

To provide its core features, the App requires access to specific components of your device. We request only the minimum permissions necessary.

Permission and their Purpose & Justification:

• CAMERA 

(android.permission.CAMERA)

Essential for Measurement. The App uses the camera solely to detect color changes in your fingertip (photoplethysmography) to estimate your heart rate. We DO NOT record, save, or transmit any photos or videos.

• FLASHLIGHT

(android.permission.FLASHLIGHT)

Measurement Accuracy. Used to turn on the LED flash to illuminate your fingertip during measurement, ensuring accuracy in low-light conditions.

• INTERNET 

(android.permission.INTERNET)

Connectivity. Required to load advertisements, send anonymous crash reports, and verify subscription status with Google Play.

• NETWORK STATE

(android.permission.ACCESS_NETWORK_STATE)

Optimization. Checks if your device is connected to Wi-Fi or mobile data to manage data usage for loading ads.

• VIBRATE

(android.permission.VIBRATE)

User Feedback. Provides haptic feedback (vibration) when a measurement starts or completes.

• BILLING 

(com.android.vending.BILLING)

In-App Purchases. Enables the processing of payments for Premium subscriptions through Google Play.

• NOTIFICATIONS

(android.permission.POST_NOTIFICATIONS)

This permission is strictly used to send you:

   1. Health Reminders: Alerts to measure your heart rate or take medication/hydrate as scheduled by you.

   2. System Alerts: Updates regarding your Premium subscription status or critical app updates.

   3. Engagement: Occasional tips on wellness or new feature announcements.

Note: We strictly DO NOT use notifications to send false medical alarms or emergency alerts.

You may revoke these permissions at any time via your device settings. However, revoking the Camera permission will render the heart rate measurement feature unusable.

4. THIRD-PARTY SERVICES & SDKs

We integrate trusted third-party Software Development Kits (SDKs) to facilitate advertising and analytics. These parties act as independent data controllers or processors.

· Google AdMob: Used for serving advertisements. AdMob may use your device's Advertising ID to show personalized ads based on your interests.

o Privacy Policy: https://policies.google.com/privacy

· Google Firebase Analytics: Used for analyzing App usage and crash reporting. Data is collected in an anonymized and aggregated form.

o Privacy Policy: https://firebase.google.com/support/privacy

Opt-Out of Personalized Ads: You can opt-out of personalized advertising by adjusting your device settings (Settings > Google > Ads > Delete advertising ID).

5. CHANGES TO THIS POLICY

We reserve the right to update this Agreement to reflect changes in our practices or legal requirements. We will notify you of any material changes by updating the "Effective Date" at the top of this policy. Your continued use of the App constitutes acceptance of the updated terms.

6. CHILDREN'S PRIVACY

6.1. Age Restriction: The App is not directed to individuals under the age of 13 (or 16 in the EEA/UK, depending on local laws). We do not knowingly collect, use, or disclose Personal Data from children under these age limits.

6.2. Parental Control: If you are a parent or guardian and you believe that your child has provided us with personal information without your consent, please contact us immediately at apptechtown@gmail.com.

6.3. Data Deletion: Upon becoming aware that we have collected personal data from a child under the applicable age threshold, we will take immediate steps to delete such information from our servers and terminate the associated account (if any).

7. CONTACT US

If you have any questions regarding this Privacy Policy or Permissions, please contact us:

Email: apptechtown@gmail.com