Privacy Policy
Comprehensive privacy policy for health data, wearables integration, and GDPR compliance
Effective Date: July 7, 2026
1. Introduction
Eterniq ("we," "us," or "our") is committed to protecting the privacy of users ("you" or "your") of our longevity and health optimization platform ("Platform"). This Privacy Policy describes how we collect, use, disclose, and safeguard your information, including sensitive health data from wearable devices, in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
By accessing or using the Platform, you consent to the data practices described in this Privacy Policy. We prioritize your privacy and will never sell your personal or health data to third parties.
2. Information We Collect
2.1 Personal Information
- Account Information: When you create an account, we collect your name, email address, and password.
- Profile Information: You may optionally provide date of birth, gender, location, health goals, and lifestyle preferences.
- Contact Information: If you contact support or provide feedback, we collect your name, email address, and message content.
2.2 Health and Biometric Data
With your explicit consent, we collect sensitive health and biometric data to provide personalized longevity insights:
- Wearable Device Data: Heart rate, sleep patterns, activity levels, steps, exercise data, and other metrics from connected wearables.
- Health Metrics: Weight, BMI, blood pressure, glucose levels, and other health measurements you manually enter or sync from devices.
- Calculator Results: Data from our health calculators (BMI, PhenoAge, etc.) and your calculation history.
- Supplement Usage: Information about supplements you track, including dosages and timing.
2.3 Usage Data
- Device Information: Device type, operating system, browser, unique device identifiers, and IP address.
- Platform Usage: Features used, pages visited, time spent, calculators accessed, and interaction patterns.
- Analytics Data: Aggregated and anonymized usage statistics to improve our services.
2.4 Cookies and Similar Technologies
We use cookies and similar technologies to enhance your experience, analyze usage patterns, and maintain session security. You can control cookie preferences through your browser settings. We will always request your explicit consent before using non-essential cookies.
3. How We Use Your Information
- Provide Services: To operate the Platform, deliver personalized health insights, and enable wearable device integration.
- Personalization: To customize recommendations based on your health data, goals, and preferences.
- Health Analytics: To generate longevity scores, health trends, and personalized health optimization suggestions.
- Platform Improvement: To analyze usage patterns, fix bugs, and enhance features.
- Communication: To send service updates, health insights, and newsletter content (with your consent). You can opt out at any time.
- Research and Development: To improve our algorithms and develop new features using aggregated and anonymized data.
- Legal Compliance: To comply with applicable laws, regulations, and legal processes.
4. Data We Will Never Sell
We will never sell your personal information or health data to third parties.
Your health data is highly sensitive, and we treat it with the utmost care. We do not monetize your data through sales to advertisers, data brokers, or other commercial entities. Our business model is based on subscription services, not data sales.
5. Disclosure of Your Information
- Service Providers: We may share your information with trusted third-party service providers who assist us in operating the Platform (e.g., cloud hosting, analytics, email services). These providers are contractually bound to protect your data and use it only for specified purposes.
- Wearable Device Integrations: When you connect wearable devices, we access data through authorized APIs. We do not share your health data with the device manufacturers beyond what is necessary for integration.
- Legal Requirements: We may disclose your information if required by law, court order, or to protect our rights, safety, or the safety of others.
- Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will ensure any such transfer complies with applicable data protection laws and will notify you beforehand.
6. Data Security
We implement industry-standard security measures to protect your information:
- Encryption: Data is encrypted in transit (TLS/SSL) and at rest.
- Access Controls: Strict access controls limit who can view your data to authorized personnel only.
- Data Minimization: We collect only the data necessary to provide our services.
- Regular Audits: We conduct regular security audits and vulnerability assessments.
- Data Retention: We retain your data only as long as necessary for the purposes outlined in this policy or as required by law.
However, no method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
7. Your Privacy Rights (GDPR)
Under the GDPR, you have the following rights regarding your personal data:
- Right of Access: Request access to your personal data and obtain a copy.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data when it is no longer necessary or if you withdraw consent.
- Right to Restriction of Processing: Request limitation on how we process your data in certain circumstances.
- Right to Data Portability: Receive your data in a structured, machine-readable format and transfer it to another service.
- Right to Object: Object to processing based on legitimate interests or direct marketing.
- Right to Withdraw Consent: Withdraw consent for data processing at any time (this will not affect prior processing based on consent).
To exercise your rights, contact us at privacy@eterniq.life. We will respond within 30 days.
8. International Data Transfers
Your information may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure adequate protection through:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Adequacy decisions recognizing equivalent data protection standards
- Other appropriate safeguards as permitted by GDPR
9. Data Retention
We retain your personal and health data for as long as:
- Your account remains active
- Necessary to provide services you requested
- Required by law or for legitimate business purposes
When you delete your account, we will delete or anonymize your data within 90 days, except where retention is required by law.
10. Children's Privacy
The Platform is not intended for individuals under 18 years old. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at privacy@eterniq.life.
11. Changes to this Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of material changes via email or prominent notice on the Platform. Your continued use after changes constitutes acceptance of the updated policy.
12. Contact Us
If you have questions or concerns about this Privacy Policy or our data practices, please contact us:
- Email: privacy@eterniq.life
- Support: support@eterniq.life
For GDPR-related inquiries, you may also contact your local data protection authority.