holistiq

Privacy Policy

Last updated: December 4, 2025

Introduction

Holistiq (“we,” “our,” or “us”) is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered sleep wellness coaching application. We believe in transparency and want you to understand exactly what happens with your data.

Information We Collect

Personal Information You Provide

We collect information that you voluntarily provide to us when you create an account, use our services, or communicate with us:

  • Account Information: Name, email address, and password when you create an account
  • Health Profile: Age, sex, weight, sleep goals, target bedtime, and other wellness preferences you choose to share
  • Sleep Data: Screenshots from sleep tracking devices (Oura Ring, Apple Health, WHOOP, Garmin, etc.) that you upload
  • Conversation History: Your chat conversations with our AI wellness coach
  • Payment Information: Billing details processed securely through Stripe (we do not store your full card number)

Automatically Collected Information

When you access or use our application, we automatically collect certain information:

  • Device Information: Browser type, operating system, and device identifiers
  • Usage Data: Features accessed, interaction patterns, and time spent in the app
  • Log Data: IP address, access times, and error reports for troubleshooting

How We Use Your Information

We use the information we collect for the following purposes:

  • Personalized Recommendations: Analyze your sleep data to provide tailored wellness advice and insights
  • Service Delivery: Operate, maintain, and improve our platform and features
  • Communication: Send important updates, notifications, and (with consent) marketing messages
  • Support: Respond to your questions, comments, and support requests
  • Analytics: Understand usage patterns to enhance user experience
  • Security: Detect, prevent, and address fraud, abuse, and security issues

AI Processing & Third-Party Services

Our AI wellness coach uses advanced language models to analyze your sleep data and provide personalized recommendations. Here's what you should know:

  • AI Providers: We use OpenAI and Anthropic's AI services, with appropriate data protection agreements in place
  • Image Processing: Uploaded screenshots are processed using GPT-4 Vision to extract sleep metrics
  • Data Retention: AI providers may temporarily process your data but do not retain it for training their models
  • Anonymization: Any aggregated analytics we perform uses anonymized, de-identified data

Data Storage & Security

We take the security of your data seriously and implement multiple layers of protection:

  • Cloud Infrastructure: Your data is stored securely using Google Firebase services with enterprise-grade security
  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Strict access controls ensure only authorized personnel can access user data
  • Regular Audits: We conduct regular security assessments and vulnerability testing

Data Sharing & Disclosure

We do not sell your personal information. We may share your data only in the following limited circumstances:

  • Service Providers: Third-party vendors who help us operate our platform (hosting, payment processing, AI services)
  • Legal Requirements: When required by law, court order, or governmental authority
  • Protection of Rights: To protect our rights, privacy, safety, or property, and that of our users
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to you)
  • With Consent: When you explicitly authorize us to share specific information

Your Rights & Choices

You have control over your personal information. Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data (“right to be forgotten”)
  • Data Portability: Export your data in a machine-readable format
  • Opt-Out: Unsubscribe from marketing communications at any time
  • Account Deletion: Delete your entire account through Settings → Data & Privacy

To exercise these rights, please contact us at privacy@holistiq.cc.

Data Retention

We retain your personal information for as long as your account is active or as needed to provide our services. When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain certain information for legal, accounting, or security purposes. Anonymized, aggregated data may be retained indefinitely for analytics purposes.

Cookies & Tracking

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Required for authentication and basic functionality
  • Preference Cookies: Remember your settings and preferences (like date range selections)
  • Analytics Cookies: Help us understand how you use the app (can be disabled)

Children's Privacy

Our service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we discover we have collected information from a child under 18, we will promptly delete it.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure that such transfers comply with applicable data protection laws and that appropriate safeguards are in place, including standard contractual clauses approved by relevant authorities.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the new policy on this page, updating the “Last updated” date, and sending you an email notification if the changes are significant. We encourage you to review this policy periodically.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@holistiq.cc

Contact Form: holistiq.cc/contact