Privacy Policy

Last updated: April 2026

1. Introduction

Sanitas AI ("Company", "we", "our", or "us") operates the Sanitas AI website and mobile application (the "Service"). This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.

2. Information Collection and Use

We collect several different types of information for various purposes to provide and improve our Service to you.

2.1 Types of Data Collected

• Personal Data: Email address, name, phone number, address, and usage data
• Health Data: Medical history, symptoms, lifestyle habits, and wearable device data are treated with the highest level of confidentiality and security
• Usage Data: IP address, browser type, pages visited, time and date of visit, and diagnostic data

3. Use of Data

Sanitas AI uses the collected data for various purposes:

• To provide and maintain our Service
• To notify you about changes to our Service
• To provide customer support
• To gather analysis or valuable information so that we can improve our Service
• To monitor the usage of our Service
• To detect, prevent and address technical issues and fraudulent activity
• To personalize health guidance and recommendations
• To conduct research and improve our AI algorithms (with your explicit consent)

4. Health Data Protection

Your health data is sacred. We implement the following protections:

• End-to-End Encryption: All health data transmitted between your device and our servers is encrypted using industry-standard TLS 1.2 or higher
• Data Minimization: We collect only the health information necessary to provide personalized guidance
• No Third-Party Sharing: We do not sell, trade, or share your health data with third parties, including advertisers, data brokers, or insurance companies
• Secure Storage: Health data is stored on encrypted servers with restricted access
• Data Retention: You can request deletion of your health data at any time, and we will comply within 30 days

5. Security of Data

The security of your data is important to us but remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

7. Third-Party Links

Our Service may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

8. Children's Privacy

Our Service does not address anyone under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from children under 18. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us.

9. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the bottom of this Privacy Policy. You are advised to review this Privacy Policy periodically for any changes.

10. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Right to Access: You have the right to request access to your personal data
• Right to Correction: You have the right to request correction of inaccurate personal data
• Right to Deletion: You have the right to request deletion of your personal data
• Right to Data Portability: You have the right to request a copy of your data in a portable format
• Right to Opt-Out: You have the right to opt-out of certain data processing activities

11. GDPR Compliance (EU Users)

If you are located in the European Union, the United Kingdom, or the European Economic Area, you have rights under the General Data Protection Regulation (GDPR). We are committed to complying with GDPR requirements. Our legal basis for processing your data includes:

• Your explicit consent
• Performance of a contract with you
• Compliance with legal obligations
• Protection of vital interests
• Legitimate interests pursued by us or third parties

12. CCPA Compliance (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA). You have the right to know what personal information is collected, to delete personal information collected from you, and to opt-out of the sale or sharing of your personal information.

13. Contact

If you have any questions about this Privacy Policy, please contact us at privacy@sanitasai.com