HeartBuddy Privacy Policy

Your health data privacy and security is our top priority. This policy explains what information HeartBuddy collects, how we use it, and your rights regarding your data.

Last updated: December 4, 2025
Effective: December 4, 2025

Our Privacy Principles

Local Data Storage

Your health data is primarily stored locally on your device. We do not collect or store your personal health information on our servers without your explicit consent.

No Sale of Data

We never sell, rent, or trade your personal information or health data to third parties for any purpose.

Transparency

We are transparent about what data we collect, how it's used, and who has access to it. You have full control over your information.

User Control

You can access, export, modify, or delete your data at any time. Your data belongs to you.

Information We Collect

Health and Fitness Data

  • Blood pressure readings (systolic and diastolic values)
  • Heart rate measurements
  • Timestamps of health measurements
  • User-entered health notes and observations
  • Health goals and target ranges

Purpose: To provide blood pressure tracking, health monitoring features, and personalized insights. All data is stored locally on your device.

Personal Information

  • Age (optional, for age-appropriate health recommendations)
  • Display name or nickname (optional)
  • User preferences and settings

Purpose: To personalize your app experience and provide relevant health insights. This information is stored locally on your device and is never shared without your explicit consent.

Device and Technical Information

  • Device type and operating system version
  • App version and settings
  • Crash logs and performance data (anonymized)
  • App usage analytics (anonymized)

Purpose: To improve app performance, fix bugs, and enhance user experience. This data is anonymized and cannot be used to identify you personally.

Your Rights and Control

Access Your Data

You have the right to access all personal data we process about you, including health data stored locally on your device.

How to exercise this right: Use the export feature in the app to download your data in CSV, PDF, or JSON format

Rectification

You have the right to correct inaccurate or incomplete personal data.

How to exercise this right: Edit your profile information and health readings directly within the app

Erasure (Right to be Forgotten)

You have the right to request deletion of your personal data.

How to exercise this right: Use the 'Delete All Data' option in app settings or uninstall the app to remove all local data

Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format.

How to exercise this right: Export your data in CSV, PDF, or JSON formats through the app's export feature

Object to Processing

You have the right to object to certain types of data processing.

How to exercise this right: Adjust privacy and analytics settings in the app or contact us at privacy@carecodelabs.com

Security Measures

Data Security

We implement industry-standard security measures to protect your health data. Your information is primarily stored locally on your device with strong encryption.

  • Local device storage with secure encryption
  • Industry-standard encryption protocols for data at rest
  • Secure data transmission when using optional backup features
  • Regular security updates and patches
  • No server-side storage of personal health data by default
  • Optional encrypted cloud backup with user consent

Data Sharing and Third Parties

We Do Not Sell Your Data

HeartBuddy does not sell, rent, or trade your personal health information to third parties. Your health data belongs to you and remains on your device.

We May Share Data Only:

  • When you explicitly export and share your data (you control who receives it)
  • With cloud backup services (Google Drive) if you enable optional backup features
  • Anonymized analytics data with third-party service providers (Google Analytics, AdMob) to improve app functionality
  • When required by law or to protect rights, property, or safety

Third-Party Services

HeartBuddy uses the following third-party services:

  • Google Mobile Ads (AdMob): For displaying advertisements. AdMob may collect device identifiers and usage data. See Google's Privacy Policy
  • Google Drive API: Optional backup storage if you choose to enable cloud backup. See Google's Privacy Policy
  • Expo Push Notifications: For sending reminder notifications. No health data is transmitted through notifications.

Contact Us

If you have questions about this privacy policy, your data rights, or our privacy practices, please contact us. We are committed to addressing your concerns promptly.

Developer Contact

Company: CareCodeLabs

Email: support@carecodelabs.com

Privacy Email: privacy@carecodelabs.com

Email Privacy TeamBack to HeartBuddy
This privacy policy was last updated on December 4, 2025

We may update this policy periodically. Material changes will be communicated through the app.

By using HeartBuddy, you agree to this privacy policy. Continued use after changes constitutes acceptance of the updated policy.