Effective Date: September 3, 2025 | Last Updated: November 11, 2025
Privacy Policy
Your Wellness and Fitness Data Belongs to YOU. At Privexa, we're building a decentralized welness data ecosystem where you maintain complete ownership and control of your wellness data. This privacy policy explains how we handle your information
1. Information We Collect
Wellness Data
- Wearable Device Data: Step counts, heart rate, sleep patterns, activity levels, and other fitness metrics from connected devices
- Fitness Reports: Lab results, diagnostic reports, prescriptions, and Fitness evaluations that you choose to upload
- Family wellness History: Hereditary wellness information you provide for wellness insights
- wellness Tracking: Symptoms, medications, wellness goals, and wellness activities you log
Account and Profile Information
- Name, email address, phone number, and date of birth
- Profile preferences and app settings
- Blockchain wallet addresses and token transaction history
Technical Data
- Device information, operating system, app version
- Usage analytics and app performance data
- IP address and general location data (city/state level)
2. How We Use Your Information
🔐 Privacy-Preserving Data Storage Using Blockchain Technology
We use advanced blockchain technology to create secure, encrypted data vaults where you maintain complete ownership and control of your wellness data. Your data is stored using decentralized storage solutions with cryptographic security, ensuring your information remains private and accessible only to you.
We use your information to:
- Provide wellness Insights: Generate personalized wellness recommendations and insights using privacy-preserving technology
- Token Rewards: Calculate and distribute tokens based on your wellness activities and data sharing
- Vault Management: Securely store your wellness data in your personal, encrypted vault
- App Functionality: Enable core features like wearable synchronization, report uploads, and wellness tracking
- Platform Improvement: Analyze aggregated, anonymized usage patterns to improve our services
3. Data Ownership and Control
Revolutionary Data Ownership: Unlike traditional apps, your wellness data in Privexa is stored in YOUR encrypted vault with YOUR private keys. You have complete control over:
- What data to share and when
- Which healthcare providers can access your information
- Who can purchase access to your anonymized data
- The ability to transfer your vault between devices and platforms
4. Data Sharing and Third Parties
Healthcare Partners
When you redeem tokens for healthcare services, we may share relevant wellness information with partner hospitals, laboratories, and healthcare providers to facilitate your care. You explicitly consent to each instance of sharing.
Research and Clinical Trials
You may choose to participate in research studies or clinical trials. Your data for these purposes is always anonymized and aggregated. You can opt out at any time.
Data Marketplace (Optional)
You may choose to monetize your anonymized wellness data through our decentralized marketplace. Participation is entirely voluntary, and you receive compensation for any data usage. Data is stripped of all personally identifiable information.
We Never Share Data Without Your Consent
We do not sell, rent, or share your personal wellness information with third parties without your explicit consent, except as required by law or in emergency situations.
5. Data Security and Encryption
Your data security is paramount to our mission:
- End-to-End Encryption: All wellness data is encrypted using industry-standard AES-256 encryption
- Private Key Control: You hold the private keys to your wellness vault - we cannot access your data without your permission
- Blockchain Security: Your data ownership and permissions are secured on the blockchain
- Zero-Knowledge Architecture: Our systems process your data using homomorphic encryption, meaning we never see your raw data
- Regular Security Audits: We conduct regular security assessments and penetration testing
6. Token Economy and Blockchain
Our token system operates on blockchain technology:
- Token transactions are recorded on the blockchain for transparency
- Your wallet address and transaction history are part of the public blockchain
- Token rewards are automatically calculated based on your wellness activities
- Token redemption for healthcare services creates a deflationary mechanism
7. Your Rights and Choices
Your Data Rights
- Access: View all data in your vault at any time
- Portability: Export your complete wellness data in standard formats
- Deletion: Delete your account and vault (note: blockchain records cannot be deleted)
- Correction: Update or correct any wellness information
- Consent Withdrawal: Opt out of data sharing, research participation, or marketplace listings
- Legacy Control: Designate who inherits access to your vault
8. Children's Privacy
Privexa is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information promptly.
9. International Data Transfers
As Privexa operates in India, your data may be processed within Indian jurisdiction. We ensure adequate protection of your data in compliance with applicable privacy laws. Your encrypted vault travels with you regardless of your location.
10. Data Retention
Your wellness data remains in your vault indefinitely until you choose to delete it. We retain the following for operational purposes:
- Account information: Until account deletion
- Token transaction records: Permanently on blockchain
- Anonymized analytics: Up to 7 years for research purposes
- Support communications: Up to 3 years
11. Legal Basis for Processing (GDPR Compliance)
We process your data based on:
- Consent: For wellness data collection, AI analysis, and marketplace participation
- Legitimate Interest: For app functionality, security, and service improvement
- Contractual Necessity: To provide token rewards and healthcare services
- Legal Obligation: To comply with healthcare regulations and anti-money laundering requirements
12. Third-Party Services and Integrations
Wearable Device Integration
When you connect wearable devices, we access data through official APIs provided by device manufacturers (Apple Health, Google Fit, Fitbit, etc.). We only collect data types you explicitly authorize.
Healthcare Provider Integration
Integration with hospitals, laboratories, and clinics is governed by separate data sharing agreements that you must consent to before any integration is activated.
Analytics and Performance
We use privacy-focused analytics tools to understand app performance and usage patterns. All analytics data is aggregated and anonymized.
13. Cookies and Tracking
Our mobile app does not use traditional web cookies. We may use:
- Local storage for app preferences and cached data
- Analytics SDKs that comply with privacy regulations
- Authentication tokens for secure login sessions
14. Updates to This Privacy Policy
We may update this privacy policy to reflect changes in our practices or applicable laws. We will:
- Notify you of material changes through the app or email
- Post the updated policy with a new effective date
- Obtain your consent for any material changes affecting your rights
- Maintain a history of policy versions for transparency
15. Regulatory Compliance
Privexa complies with applicable privacy and healthcare regulations including:
- India's Digital Personal Data Protection Act (DPDP) 2023
- General Data Protection Regulation (GDPR) for EU users
- Healthcare data protection requirements in operating jurisdictions
16. Your Choices and Settings
You can control your privacy through the app settings:
- Data Sharing Controls: Choose which data types to share for AI analysis
- Notification Preferences: Customize wellness alerts and communication preferences
- Marketplace Participation: Opt in or out of the data marketplace
- Research Participation: Control participation in clinical trials and research studies
- Third-Party Integrations: Manage connections to wearables and healthcare providers