Back to home
Legal

Privacy Policy

Effective: April 28, 2026 · Last updated: April 28, 2026
The TL;DR Your health data lives on your device. We do not collect it, see it, sell it, or store it on our servers. Vitalis is built on the principle that your body is your business.
On This Page

1. Overview

Vitalis is a suite of four iOS applications — Vitalis Core, Vitalis Motion, Vitalis Somna, and Vitalis Nourish — designed to help you understand your own health. This Privacy Policy explains what data Vitalis processes, where that data lives, and what we do (and emphatically do not do) with it.

The short version: Vitalis is a local-first, privacy-first product. Health data you log in any Vitalis app stays on your device. We do not transmit it to our servers because we do not have servers that handle your health data.

2. What We Collect (and What We Don't)

What stays on your device

  • All health entries you create (food, workouts, sleep diary, mood, vitals, cycle data, etc.)
  • Imported HealthKit samples (heart rate, sleep stages, dietary energy, etc.)
  • App preferences (units, dark mode, notification times, goals)
  • Encrypted local backups managed by iOS

What we collect (anonymized)

  • Crash reports — via Apple's standard crash reporting, which contains no identifying information unless you opt in to share with developers. We use these to fix bugs.
  • App Store analytics — Apple provides aggregate, anonymized download and retention metrics. We never see individual user data.

What we never collect

  • Your name, address, phone number, or any direct identifiers (unless you email us)
  • Your health data — not in transit, not at rest, not at all
  • Your contacts, photos, location history, or other unrelated data
  • Behavioral analytics or ad-tech tracking identifiers

3. HealthKit and Apple Frameworks

Vitalis integrates with Apple HealthKit to read and (optionally) write health data. HealthKit is a system-level framework managed by iOS — Vitalis can only access the specific data types you authorize, and you can revoke that access at any time in Settings → Privacy → Health.

Per Apple's developer guidelines, data obtained from HealthKit is never transmitted to Vitalis servers, never used for advertising, and never shared with third parties. This is enforced both by our policy and by Apple's App Review process.

4. Data Storage and Encryption

Health entries created in Vitalis are stored locally on your device. We use iOS's built-in protections, including:

  • AES-256-GCM encryption for sensitive fields at rest
  • Hardware-backed Keychain for cryptographic keys (Secure Enclave when available)
  • iCloud Backup encryption when you opt in to iCloud Backup (managed by Apple)
  • App Group sandboxing for inter-app data sharing

If you delete a Vitalis app, the local data is removed from your device per iOS standard behavior. Data backed up to iCloud is governed by Apple's iCloud privacy policies.

5. Data Sharing Between Vitalis Apps

The four Vitalis apps communicate through Apple's App Group mechanism — a sandboxed, on-device shared container. This allows, for example, Vitalis Core to read a daily summary from Vitalis Somna so it can correlate sleep and mood. No data leaves your device through this mechanism.

You are always in control. If you only install one Vitalis app, no inter-app sharing occurs. Each app functions fully on its own.

6. Third Parties

Vitalis does not embed third-party SDKs that collect your health data. We do not use ad networks. We do not sell, rent, or share your data with anyone — including insurers, employers, marketers, data brokers, or research institutions — period.

The only third parties involved in delivering Vitalis to you are:

  • Apple Inc. — App Store distribution, HealthKit framework, iCloud Backup (if enabled by you)
  • Our hosting provider — used only to host this marketing website. They never see your in-app data.

7. HIPAA Notice

Vitalis is a consumer wellness application, not a covered entity or business associate under HIPAA (the U.S. Health Insurance Portability and Accountability Act). HIPAA generally applies to healthcare providers, health plans, and clearinghouses — not to consumer-controlled apps.

However, we voluntarily adopt many HIPAA-aligned practices because they are simply good engineering:

  • Encryption at rest (AES-256-GCM)
  • Hardware-backed key storage (Keychain / Secure Enclave)
  • Data minimization — we collect only what is functionally necessary
  • User-controlled data export and deletion
  • No transmission of PHI to third parties

If you are a healthcare provider considering using Vitalis with patients, please contact us. We do not currently offer Business Associate Agreements (BAAs).

8. Your Rights

Because your data lives on your device, you control it directly. You can at any time:

  • Export your data to JSON or CSV from within each app's Settings
  • Delete all data via Settings → Data Management → Clear All Data
  • Revoke HealthKit access via iOS Settings → Privacy → Health
  • Delete the app, which removes all local data per iOS behavior

If you reside in a jurisdiction with specific data rights (e.g., EU GDPR, California CCPA/CPRA), those rights apply. However, since we do not collect or store your health data on our infrastructure, most "right to access" or "right to deletion" requests can be satisfied by you, on-device, immediately.

9. Changes to This Policy

If we materially change this policy, we will update the "Last updated" date at the top and, where reasonable, notify you in-app. Continued use of Vitalis after a change indicates acceptance of the revised policy.

10. Contact

Questions, concerns, or polite corrections about this policy can be directed to:

privacy@vitalis.app

We read every message and respond within five business days.