Back to Home

Vital2AI - Privacy Policy

Vital2AI is built with privacy as a core principle. Your health data is among your most sensitive information, and we ensure it remains entirely under your control.

1. Local Processing & Sandboxed Security

All health data is read directly from HealthKit and processed entirely on your device. The app operates in a sandboxed environment, meaning it has no access to your other files or data beyond what you explicitly grant. We do not use any external servers to process, analyze, or interpret your health information.

2. Ephemeral Files & Automatic Cleanup

The CSV files generated for export are stored in a temporary, secure directory on your device. To ensure maximum security, these files are strictly ephemeral:

3. Biometric & Device Security

We use industry-standard Local Authentication (FaceID, TouchID, or your device Passcode) to gate the export process. This ensures that even if your device is unlocked, your health data can only be exported by you.

4. Zero Data Collection

We do not collect, store, or transmit your health data—or any analytics about your usage—to any third parties. The CSV files are generated locally and are only shared with the destinations you explicitly choose via the iOS Share Sheet.

5. HealthKit Access & Control

The app requests read-only access to specific HealthKit types necessary for the export. You have full control over these permissions and can revoke them at any time in your iPhone's Settings.

6. Verification & Open Source

Transparency is key to trust. Vital2AI is open-source software. This means our code is publicly available for anyone to audit, ensuring that we handle your health data exactly as described in this policy. You can verify every line of code to see how your information is processed entirely on your device.