Privacy Policy
1. Information we collect
- Account information — name, email, and credentials you provide when you create an account.
- Health information you choose to provide — medications, supplements, conditions, goals, wearable and device data, uploaded lab results, and (where you opt in) genetic or at-home screening results.
- Usage information — how you interact with the Services, device and browser type, and similar technical data, collected to operate and improve the product.
You decide what health information to enter. You can use much of the educational content without an account.
2. How we use your information
- To build and personalize your health "digital twin" and the wellness and educational information we surface to you.
- To run interaction and pharmacokinetic checks on the medications and supplements you enter.
- To operate, secure, maintain and improve the Services.
- To communicate with you about your account and respond to your requests.
We do not sell your personal or health information.
3. How your information is shared
- With clinicians you choose — sharing your twin with a healthcare professional happens only with your explicit, scope-limited and time-limited consent, and that access can be revoked.
- Service providers — vetted vendors (e.g., hosting, partner labs you choose to use) that process data on our behalf under confidentiality obligations.
- Research — only if you opt in, and only in de-identified form using differential-privacy safeguards designed to prevent re-identification.
- Legal — where required by law or to protect rights, safety, and the integrity of the Services.
4. Consent, control and deletion
Your twin is yours. Sharing is governed by user-controlled, tokenized consent that is scope-limited and time-limited, with verifiable deletion when access is revoked. You can request access to, export of, or deletion of your data at any time (see Contact). Where applicable law (such as the Washington My Health My Data Act, GDPR, or CCPA/CPRA) grants you specific rights, we honor them.
5. Security
We use administrative, technical and physical safeguards — including encryption in transit and at rest and user-owned encryption keys for shared data — designed to protect your information. No method of transmission or storage is perfectly secure, and we cannot guarantee absolute security.
6. HIPAA and regulatory status
Trouvera's consumer features operate within U.S. FDA general-wellness boundaries. Trouvera is generally not acting as a HIPAA "covered entity" in the consumer context; where we process protected health information on behalf of a healthcare provider, we do so under an appropriate agreement. Our consumer health-data practices are governed by this Policy and applicable consumer-health-data laws.
7. Cookies and analytics
We use essential cookies to operate the site and limited analytics to understand and improve usage. You can control cookies through your browser settings.
8. Children
The Services are not directed to children under 16, and we do not knowingly collect their information.
9. Changes to this Policy
We may update this Policy from time to time. Material changes will be posted here with a revised "Last updated" date.
10. Contact
Questions or requests regarding privacy or your data: customerservice@trouvera.health.
