Privacy Policy

Last updated: June 2025

1. Information We Collect

Personal Information

• Account Information: Username, email address, password (encrypted)
• Health Data: Medication/supplement intake logs, dosages, timestamps
• Diary Entries: Personal notes, mood information, activity types
• Technical Data: IP address, browser type, device information

2. How We Use Your Information

• Provide medication tracking and analytics services
• Generate personalized health insights and reports
• Send account-related communications
• Improve our services and user experience
• Comply with legal obligations

3. Data Security

We implement industry-standard security measures:

• Data encryption in transit and at rest
• Secure authentication with optional 2FA
• Regular security audits and updates
• Limited access to personal data
• Secure cloud infrastructure (Digital Ocean)

4. Data Sharing

We do not sell, rent, or share your personal health information with third parties except:

• With your explicit consent
• To comply with legal requirements
• To protect our rights or safety
• Service providers under strict confidentiality agreements

5. Your Rights (GDPR Compliance)

You have the right to:

• Access: Request copies of your personal data
• Rectification: Correct inaccurate information
• Erasure: Request deletion of your data
• Portability: Export your data in a readable format
• Restriction: Limit how we process your data
• Objection: Object to data processing

6. Data Retention

• Active Accounts: Data retained while account is active
• Inactive Accounts: Data deleted after 3 years of inactivity
• Deleted Accounts: Data permanently deleted within 30 days
• Backups: May be retained for up to 90 days for recovery purposes

7. Cookies and Tracking

We use essential cookies for:

• Authentication and session management
• Security and fraud prevention
• Remembering your preferences

We do not use tracking cookies or analytics beyond essential functionality.

8. International Transfers

Your data may be processed in countries outside your residence. We ensure adequate protection through:

• EU Standard Contractual Clauses
• Adequacy decisions where applicable
• Appropriate safeguards and security measures

9. Children's Privacy

Our service is not intended for children under 16. We do not knowingly collect personal information from children under 16.

10. Changes to This Policy

We may update this policy periodically. Significant changes will be communicated via email or website notice.

11. Contact Us

For privacy-related questions or to exercise your rights:

• Email: privacy@halflifeme.com
• Data Protection Officer: dpo@halflifeme.com
• Address: Half Life Me, [Your Business Address]