Privacy Policy

Effective Date: December 2024

🔒 Privacy-First Promise

CardioInsight collects NO data. Everything is processed locally on your device. We have no servers, no analytics, no tracking, and no data collection of any kind.

1. Introduction

CardioInsight ("we," "our," or "us") is committed to absolute privacy. This Privacy Policy explains how CardioInsight works without collecting any data from you.

2. What Data We Access vs. What We Collect

2.1 Health Data We Access (But Don't Collect)

With your explicit consent, CardioInsight accesses the following health data from Apple HealthKit for on-device processing only:

Workout Data: Exercise type, duration, start/end times, calories burned, distance
Heart Rate Data: Heart rate measurements during workouts
Location Data: GPS coordinates for workout routes (when location services are enabled)

Important: This data is never transmitted, uploaded, or stored on our servers. It remains exclusively on your device.

2.2 What We Actually Collect

Nothing. We collect zero data. CardioInsight operates entirely offline:

❌ No usage analytics
❌ No crash reports
❌ No user accounts
❌ No server communication
❌ No third-party tracking

3. How We Use Your Information

We use your health data exclusively for on-device processing to provide:

Local Analysis: Analyze your workout data locally to provide heart rate zone insights
Local Visualization: Create charts, graphs, and maps entirely on your device
Local Storage: Store your processed data locally using iOS Core Data
Local Performance Tracking: Help you track fitness progress using only local data

No data ever leaves your device.

4. Data Storage and Security

4.1 Complete Local Storage

All your data is stored exclusively on your device. CardioInsight has:

❌ No cloud storage
❌ No remote servers
❌ No data synchronization
❌ No backups to external services

4.2 Security Measures

Your data is protected by:

iOS device encryption (hardware-level security)
Apple's HealthKit security framework
App sandboxing (data isolated from other apps)
No network communication means no data breaches

5. Data Sharing

We share zero data because we collect zero data. Since CardioInsight operates entirely offline:

❌ No data is shared with third parties
❌ No data is sold or rented
❌ No data is transmitted to us
❌ No data is accessible to anyone except you

5.1 Legal Requirements

Since we collect no data, there is no data to disclose to legal authorities. Your privacy is protected by design.

6. Your Rights and Choices

6.1 HealthKit Permissions

You have complete control over your health data:

Go to iOS Settings > Privacy & Security > Health > CardioInsight
Toggle permissions on/off for specific data types
Revoke all permissions by turning off all data categories

6.2 Data Deletion

Your data can be deleted by:

Deleting the App: Removes all local data permanently
Using "Clear All Data": Option in the App settings
Revoking HealthKit permissions: Stops new data access

7. Children's Privacy

Age Requirement: CardioInsight is intended for users 13 years of age and older. We do not knowingly collect personal information from children under 13.

7.1 Users Under 13

If you are under 13 years old:

You must have your parent or guardian's permission to use CardioInsight
Your parent or guardian must supervise your use of the app
All health and fitness activities should be done under adult supervision
We recommend consulting with a pediatrician before starting any fitness tracking program

7.2 Parents and Guardians

If you are a parent or guardian and believe your child under 13 is using CardioInsight:

Please ensure you supervise their use of the app
Monitor their health and fitness activities
Consult with healthcare professionals for age-appropriate fitness guidance
Remember that while we collect no data, responsible fitness tracking requires adult oversight for children

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. You will be notified of changes through:

App Store update descriptions
Updated policy displayed in the App
Updated "Effective Date" at the top of this policy

Note: We cannot send you notifications about policy changes since we don't collect contact information.

9. International Users

CardioInsight works the same way globally - with complete privacy. Since all processing happens locally on your device, no data crosses international borders.

10. Third-Party Services

CardioInsight uses only Apple's built-in frameworks:

HealthKit: For accessing your health data (governed by Apple's Privacy Policy)
Core Data: For local storage on your device
MapKit: For displaying workout routes locally

No third-party analytics, tracking, or cloud services are used.

11. Data Retention

Your data is retained only as long as the App is installed on your device. When you delete CardioInsight, all local data is permanently removed and cannot be recovered.

12. Transparency Report

CardioInsight maintains complete transparency:

❌ Zero data collection requests received (because we collect nothing)
❌ Zero data breaches (because we store nothing remotely)
❌ Zero third-party data sharing (because we have no data to share)
❌ Zero government data requests (because we have no data to provide)

13. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

Email: support@cardioinsight.app

Subject Line: Privacy Policy Inquiry

We will respond to your inquiry within 48 hours.

Note: Even when you contact us, we don't store your email or create user profiles. Each support inquiry is handled independently.