Privacy Policy

Heart360Life Portal Privacy Policy

Last Updated: February 11, 2026

1. Introduction

Heart360Life Portal ("we," "our," or "us") is committed to protecting your privacy and the confidentiality of your health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our health data platform and services.

2. HIPAA Compliance

Heart360Life Portal is committed to maintaining the privacy and security of your Protected Health Information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA) regulations. We implement appropriate administrative, physical, and technical safeguards to protect your health information.

3. Information We Collect

We collect information that you provide directly to us and data from your connected devices, including:

  • Account Information: Name, email address, phone number, and authentication credentials
  • Health Data from Your Devices: Data synced from your smartphone, smartwatch, fitness tracker, or other health devices including:
    • Heart rate and heart rate variability
    • Steps, distance, and activity data
    • Sleep duration and quality metrics
    • Calories burned and nutrition data
    • Exercise and workout information
    • Blood pressure readings (if available)
    • Other health metrics from connected devices
  • Manually Entered Information: Health data, notes, and other information you manually enter into the platform
  • Usage Data: How you interact with our platform, features used, and preferences
  • Device Information: Device type, operating system, and connection information

Important: All health data displayed on your dashboard comes from your own devices and information you have supplied. We do not generate or create health data - we only display and analyze the data you provide or that is synced from your connected devices.

4. How We Use Your Information

We use your information to:

  • Provide and maintain the Heart360Life Portal platform and services
  • Display your health data in dashboards and visualizations
  • Generate insights, trends, and analytics based on your data
  • Provide AI-powered recommendations based on your health patterns
  • Enable lifestyle experiments and track their impact
  • Communicate with you about your account, services, and important updates
  • Improve our platform, services, and user experience
  • Comply with legal and regulatory requirements
  • Detect and prevent fraud, abuse, or security issues

5. Information Sharing and Disclosure

We may share your information with:

  • Healthcare Providers: With your explicit consent, we may share your health data with your treating physicians, care team members, or other healthcare providers you authorize
  • Service Providers: Third-party service providers who assist in our operations (under HIPAA Business Associate Agreements where applicable), such as cloud storage, analytics, and communication services
  • Legal Requirements: When required by law, court order, or regulatory authority
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to you)

We do NOT sell your personal information or health data to third parties for marketing or advertising purposes.

6. Your Rights

Under HIPAA and applicable privacy laws, you have the right to:

  • Access: Request access to your health information and data
  • Amendment: Request corrections or amendments to your health information
  • Restriction: Request restrictions on how we use or disclose your information
  • Deletion: Request deletion of your account and associated data (subject to legal retention requirements)
  • Portability: Request an export of your health data in a portable format
  • Opt-Out: Opt out of certain communications and data processing activities
  • Complaint: File a complaint if you believe your privacy rights have been violated

To exercise these rights, please contact us through our contact page or email us at the address provided below.

7. Data Security

We implement appropriate technical and administrative safeguards to protect your information, including:

  • End-to-end encryption of data in transit (TLS/SSL)
  • Encryption of data at rest
  • Access controls, authentication, and authorization
  • Regular security assessments and penetration testing
  • Employee training on privacy and security
  • Secure data storage and backup systems
  • Monitoring and incident response procedures

8. Data Retention

We retain your health data for as long as your account is active or as needed to provide services. You may request deletion of your account and data at any time. We may retain certain information as required by law or for legitimate business purposes, such as compliance with legal obligations or dispute resolution.

9. Cookies and Tracking Technologies

Our platform may use cookies, web beacons, and similar tracking technologies to enhance your experience, analyze usage patterns, and improve our services. You can control cookie preferences through your browser settings.

10. Children's Privacy

Heart360Life Portal services are designed for adult (non-pediatric) users. We do not knowingly collect information from children under 18 without appropriate parental consent. If you believe we have collected information from a child, please contact us immediately.

11. International Users

If you are accessing our platform from outside the United States, please note that your information may be transferred to, stored, and processed in the United States. By using our services, you consent to this transfer and processing.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on our website, updating the "Last Updated" date, and, where appropriate, sending you an email notification.

13. Contact Us

If you have questions about this Privacy Policy, wish to exercise your privacy rights, or have concerns about our privacy practices, please contact us:

Contact Us →