Data Controller: Ayesha Nazir

Email: ayesha.nazir@kinuhealth.com

Kinu Health is committed to protecting the personal and sensitive health information you choose to share with us.

We collect information that you voluntarily provide to ensure the app functions effectively and provides the personalized experience.

This includes:

Personal Identification Information:

• Data: Name, email address, username, and date of birth.
• Purpose: To create and secure your unique account, verify your identity for data recovery, and ensure the app content is age-appropriate (18+).

Physical & Profile Information:

• Data: BMI, weight, and height.
• Purpose: Used to provide accurate health context and baseline measurements for your personal profile.

Health and Medical Information:

• Data: Diagnosed autoimmune conditions, daily symptom logs, medication/supplement adherence logs, and biomarker results (lab test data).
• Purpose: To power the core functionality of the app—allowing you to track symptom progression over time, monitor adherence to treatment plans, and visualize biomarker trends (in-range/out-of-range).

Media & Image Data:

• Data: Photos of lab results provided by you.
• Purpose: Solely to allow you to digitize, store, and view your physical medical records within the app for easier health management.

Technical & Usage Data:

• Data: IP address, device type, notification settings, and app interaction timestamps.
• Purpose: To ensure the app remains stable, secure, and compatible with your specific device. We use notification IDs specifically to deliver the medication and appointment reminders you have requested.

We use your data solely to provide and improve the Kinu Health experience, including:

• Creating and maintaining your personal account.

• Visualizing your health trends and biomarker history.

• Sending medication, supplement, and appointment reminders.

• Providing customer support and responding to feedback.

Note: We do not sell your health or personal data to third parties or advertisers. We do not use your health data for marketing purposes.

We process your data based on the following legal grounds:

• Explicit Consent (Art. 6(1)(a) + Art. 9(2)(a) GDPR) for sensitive health data

• Contractual Necessity (Art. 6(1)(b)) when you use our services

• Legitimate Interest for minimal data used in analytics (if consented)

You can withdraw your consent at any time with effect for the future.

We implement industry-standard security measures to protect your sensitive health data.

• Encryption: All data is encrypted in transit using HTTPS/TLS and encrypted at rest on Firebase secure servers.

• Retention: We retain your data for as long as your account is active. If you choose to delete your account, all associated personal and health data will be deleted.

Kinu Health provides you with full control over your data. You may delete your account and all associated information at any time.

How to Delete Your Data:

• In-App: Navigate to the Settings or Profile menu, tap on "Delete Account," and confirm.

• Via Web (Manual Request): If you no longer have the app installed, please email us at support@kinuhealth.com (or your designated email) with the subject "Data Deletion Request." Please provide the email address used to create your account.

What is Deleted: Upon account deletion, your profile info, symptom history, biomarker logs, medication adherence records, and uploaded images are permanently removed from our active databases within 30 days.

Kinu is not intended for users under the age of 16. We do not knowingly collect data from children. If you are a parent and believe your child has provided data, please contact us immediately.

We may update this Privacy Policy as our services evolve. Material changes will be communicated clearly on our website. Please review this page regularly.