Back to Home

Privacy Policy

Effective Date: March 2, 2026 (v2.3)

Your privacy is fundamental. Vitera is built with privacy at its core. Your health data stays on your device, processed locally using on-device intelligence, with optional AI features that you control. We don't collect, store, or sell personal information in identifiable form.

1. Information We Collect

1.1 Health Data

Vitera accesses health and fitness data from Apple Health (HealthKit) only with your explicit permission. This may include:

  • Sleep data: Sleep duration, sleep stages, time in bed, sleep quality metrics.
  • Heart data: Resting heart rate, heart rate variability (HRV), heart rate during sleep.
  • Respiratory data: Respiratory rate during sleep.
  • Activity data: Workouts, exercise minutes, training load, active energy burned.
  • Vital signs: Blood oxygen levels (when available) and wrist temperature.

Important: All health data remains stored in Apple Health on your device. Vitera reads this data locally. We never upload, transmit, or store your raw health data on external servers or in the cloud.

1.2 Device Information

We may collect limited, non-identifying technical information to improve app performance:

  • Device model and iOS version
  • App version and build number
  • Crash logs and diagnostic data (anonymized)

This information does not contain personal identifiers and cannot be used to identify you.

1.3 No Account Required

Vitera does not require you to create an account, sign in, or provide any personal information such as your name, email address, phone number, or payment details to use the core features of the app.

2. AI & Google Gemini Integration

Transparency First
To provide personalized, plain-English coaching insights, Vitera integrates with Google Gemini AI. We are committed to transparency about what data is sent.

2.1 Processed Mode (Default)

In Processed Mode, we only send derived, anonymized, and relative data. We never send raw measurements or personal identifiers.

  • Normalized Metrics: Z-scores and percentages (e.g., "HRV is 1.5 standard deviations below baseline").
  • Processed Scores: Readiness (0-100), Sleep Score, Training Load.
  • Context: Time of day, approximate workout types (e.g., "Running").

2.2 Full Access Mode (Opt-In Only)

If you explicitly enable "Full Access Mode" in your settings, Vitera will share daily health aggregates and personal baseline ranges with the AI to provide significantly more precise and context-aware coaching.

  • Aggregated Values: Daily summaries (e.g., average HRV in ms, total sleep duration in minutes).
  • Personal Baselines: Your "Personal Floor" and "Personal Ceiling" values for each metric.
  • Historical History: Recent trends and historical readiness series to identify emerging health patterns.

Strict Privacy Rule: Even in Full Access Mode, Vitera never sends raw HealthKit samples, beat-to-beat intervals, or high-frequency time-series data to the AI. Only calculated daily aggregates are shared. Furthermore, Full Access Mode honors your granular metric toggles; if you disable a specific metric (like HRV), its raw data is omitted from the Full Access payload.

2.3 What we NEVER send to AI

  • No Personal Info: Name, age, location, address, or contact info.
  • No Identifying Routes: Workout routes, GPS data, or map information.
  • No Personal Notes: Your private journal entries or specific session notes.

2.4 Your Control

You have granular control over AI data sharing:

  • Master Toggle: "Enable Vitera AI" - Turn off AI features entirely.
  • Mode Selector: Switch between "Processed" and "Full Access" modes.
  • Granular Control: Disable specific health metrics from being shared (e.g., share Sleep data but not Heart data). These toggles now apply to both Processed and Full Access modes.
  • Advanced Context Toggle: Specifically control the sharing of advanced Full Access context like sleep debt and restorative sleep.

For a detailed breakdown of exactly what data is shared with AI systems and how it is processed, see our AI Data Transparency Policy.

3. How We Use Your Information

3.1 On-Device Processing

All core health data analysis, calculations, and readiness score computations happen entirely on your device using local algorithms and Apple's HealthKit framework.

3.2 Features & Functionality

We use the information collected to:

  • Calculate your daily readiness score based on sleep, HRV, heart rate, and training load.
  • Provide personalized insights and recommendations (via local logic or optional AI).
  • Display trends and visualizations of your health metrics.
  • Send you optional notifications about your readiness status.
  • Improve app stability and fix bugs.

4. Data Sharing & Third Parties

4.1 We Do Not Sell Your Data

We will never sell, rent, lease, or trade your health data or personal information to third parties for marketing or any other purpose.

4.2 Service Providers

We use trusted third-party services for specific functions:

  • Google Gemini: Processes anonymized data to generate text insights (as detailed in Section 2). Data is not stored permanently by Google. Google Gemini processes requests transiently and does not use Vitera data to build user profiles or for advertising.
  • Firebase (Google): We use Firebase to log anonymized AI inputs and outputs for quality assurance, performance monitoring, and to improve the accuracy of our AI coaching. These logs are associated with **randomized, anonymous user IDs** and are NOT linked to your name, email, Apple ID, or any other identifying information.
  • Apple: Handles App Store distribution, crash reporting (opt-in), and push notifications.

4.3 Legal Requirements

We may disclose information if required by law, such as to comply with a subpoena, court order, or legal process, or to protect the rights, property, or safety of Vitera, our users, or the public.

4.4 No Tracking or Advertising

Vitera does not use third-party tracking technologies, advertising identifiers, or analytics for targeted advertising. We do not track users across apps or websites.

5. Your Privacy Rights & Controls

5.1 Health Data Permissions

You have complete control over what health data Vitera can access:

  • Grant or deny access to specific health data categories in Apple Health settings.
  • Revoke access at any time through: Settings → Privacy & Security → Health → Vitera.
  • Delete individual health data points in the Apple Health app.

5.2 App Data

You can:

  • Delete all app data by deleting the Vitera app from your device.
  • Clear app cache and preferences through the app settings.
  • Export your readiness history (stored locally on your device).

5.3 Notifications

You can enable or disable notifications at any time through:

  • In-app settings: Vitera → Settings → Notifications.
  • iOS settings: Settings → Notifications → Vitera.

6. Data Security

6.1 Device-Level Security

  • iOS encryption: All data is encrypted on your device using iOS file encryption.
  • App sandboxing: Vitera runs in a secure, isolated environment.

6.2 No Permanent Cloud Storage

Because all your health data and readiness calculations stay on your device, there is no central cloud database of your health records that could be breached. AI processing is transient. AI responses are cached briefly on your device to ensure a responsive experience.

6.3 Communication Security

If you contact our support team by email, communications are encrypted in transit using TLS/SSL. We never ask you to share health data via email.

7. Data Retention & Deletion

7.1 Health Data

All health data remains in Apple Health and is controlled by you. Vitera does not store separate copies of your health data. Deleting data from Apple Health will affect what Vitera displays, but the app will not delete health data without your explicit action.

7.2 App-Generated Data

Readiness scores, insights, and app preferences are stored locally on your device. This data is automatically deleted when you uninstall the app.

8. Children's Privacy

Vitera is not intended for use by children under the age of 13. We do not knowingly collect personal information from children. If you believe your child has provided us with personal information, please contact us.

9. International Users

Vitera is designed to operate primarily on your device. AI processing may utilize servers in the United States or other regions, subject to appropriate data protection safeguards.

10. California Privacy Rights (CCPA)

If you are a California resident, you have specific rights under the CCPA, including the right to know what personal information we collect, the right to request deletion, and the right to non-discrimination. We do not sell personal information.

11. European Privacy Rights (GDPR)

If you are in the EEA, you have rights under the GDPR, including access, rectification, erasure, portability, and objection. Since we process data locally, you generally exercise these rights directly on your device.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy, please contact us:

Email:
support@vitera.app