Privacy Policy

Effective Date: May 13, 2026 • Last Updated: May 18, 2026

1. Introduction

inForm ("we," "our," or "us") is a personal health analytics application developed and operated by inForm LLC, a company incorporated in Pennsylvania, USA. This Privacy Policy explains how we collect, use, share, and protect your information when you use the inForm iOS application ("App"). By using the App, you agree to the practices described in this policy.

If you do not agree with this policy, do not use the App.

2. Information We Collect

2a. Health Data (via Apple HealthKit)

With your explicit permission, inForm reads the following data types from Apple HealthKit. We do not write any data to HealthKit.

Activity: Step count, walking and running distance, active energy burned, basal (resting) energy burned, stand time, estimated VO₂ max, workout sessions
Heart: Heart rate, resting heart rate, heart rate variability (SDNN)
Body: Body weight, height, body mass index (BMI), lean body mass
Vitals: Blood glucose
Nutrition: Calories consumed, protein, carbohydrates, total fat, water intake, dietary fiber
Sleep: Sleep analysis (time asleep, sleep stages)
Mindfulness: Mindful session duration

You control which data types you grant access to. You can revoke HealthKit access at any time in iOS Settings → Privacy & Security → Health → inForm.

2b. Camera Access and Food Photos

inForm requests access to your device camera to enable the food scanning feature. When you photograph a meal, fridge contents, or a receipt:

The photo is compressed and encoded on your device
The encoded image is transmitted over HTTPS to our API
Our API immediately forwards it to Google Gemini for visual analysis
The photo is not stored on our servers
Identified food items (names and macronutrients) are stored locally on your device in the iOS Keychain only if you choose to save them

You can control camera access at any time in iOS Settings → Privacy & Security → Camera → inForm.

2c. Food Data (entered or scanned in-app)

If you use the food logging features, inForm stores the names and estimated macronutrients of food items you log. This data is stored locally on your device in the iOS Keychain and is sent to our API when you request a dashboard analysis or send a chat message.

2d. Account Information (via AWS Cognito)

When you create an account, AWS Cognito (our authentication provider) collects and stores your email address and handles your authentication credentials using Cognito's Secure Remote Password (SRP) protocol. Your plaintext password is never transmitted to or stored by us. Cognito does not store health data.

2e. User-Entered Profile and Reflection Data

inForm stores a personal profile (such as your health goals) and optional text reflections you write within the app. This data is stored locally on your device in the iOS Keychain and is included in API requests to provide personalized analysis.

2f. Server Access Logs

Our API infrastructure generates server-side access logs stored in AWS CloudWatch for 30 days. These logs record:

Your IP address
The timestamp of each API request
The endpoint accessed (e.g., /dashboard, /chat, /food)
HTTP method, response status code, and latency

These logs do not contain your health data, food photos, or personal profile information. They are used solely for security monitoring and debugging, and are automatically deleted after 30 days.

2g. No Other Usage Data

We do not collect behavioral analytics, crash reports, advertising identifiers, or behavioral tracking data. We do not use advertising SDKs or tracking frameworks.

3. How We Use Your Information

We use the information above solely to provide the features of inForm:

Generating personalized health insights, highlights, and recommendations via Google Gemini AI
Providing a conversational health assistant that understands your health context
Identifying food items and estimating macronutrients from photos
Displaying your health trends and summaries within the App
Security monitoring and abuse detection (server access logs)

We do not use your health data for advertising, marketing, data brokering, or any purpose unrelated to your personal health management.

Sensitive personal information: Health data constitutes sensitive personal information under applicable law (including California CPRA). We use your health data only to provide inForm's features and for no other purpose.

4. Legal Basis for Processing (EU/EEA and UK Users)

If you are located in the European Union, European Economic Area, or the United Kingdom, we process your personal data under the following legal bases (EU GDPR and UK GDPR respectively):

Health data, food data, and profile information — Explicit consent (GDPR Article 9(2)(a)). You provide this consent by granting HealthKit permissions and accepting this Privacy Policy. You may withdraw consent at any time by revoking HealthKit access in iOS Settings and requesting account deletion.
Authentication data (email address) — Performance of a contract (GDPR Article 6(1)(b)). Your email address is necessary to create and manage your account.
Server access logs — Legitimate interests (GDPR Article 6(1)(f)). We retain minimal request-level logs to detect abuse and maintain the security of our service.

5. Third-Party Services That Receive Your Data

5a. Google Gemini (Google LLC)

When you request a dashboard analysis, chat with the health assistant, or use the food scanning feature, your health data and any food photos are transmitted to Google Gemini, an AI service operated by Google LLC, for processing. This includes the health data types listed in Section 2a, along with any food and profile data you have entered, and photos you submit for food scanning.

Google processes this data to generate AI-driven health insights and responses. Google's Gemini API may retain submitted data for a limited period (currently stated as up to 30 days in Google's API Terms of Service) for safety review and abuse monitoring, after which it is deleted. For the most current retention period, see Google's API data usage policy at ai.google.dev/gemini-api/terms and Google's general privacy policy at policies.google.com/privacy.

Important Once data is transmitted to Google for processing, we cannot control Google's data handling practices beyond their stated policies. Google Gemini is not a HIPAA-covered service. inForm is a personal wellness application and is not intended for clinical or medical use.

5b. Amazon Web Services — AWS Lambda

Your health data is transmitted to our backend API, which runs on AWS Lambda (Amazon Web Services). Lambda processes your data to facilitate communication with Google Gemini. Your health data is not stored in Lambda or any server-side database. Processing is transient — data exists only during the duration of the API request and is discarded immediately after.

5c. Amazon Web Services — AWS Cognito

Authentication is handled by AWS Cognito. Cognito stores your email address and authentication credentials for the purpose of account management. Cognito does not receive or store your health data. AWS's privacy practices are described at aws.amazon.com/privacy.

5d. Apple HealthKit

HealthKit data is not shared with Apple beyond what Apple already collects through the HealthKit framework itself. We do not upload HealthKit data to iCloud.

6. International Data Transfers

If you are located in the European Union, European Economic Area, or the United Kingdom, your personal data will be transferred to and processed in the United States, where Google LLC and Amazon Web Services operate their services.

EU/EEA users: Both Google LLC and Amazon Web Services are certified under the EU-US Data Privacy Framework (DPF), which has been recognized by the European Commission as providing adequate protections for personal data transferred from the EU/EEA to the United States. You can verify certifications at dataprivacyframework.gov.

UK users: Transfers to the United States are covered by the UK-US Data Bridge, the UK Government's adequacy mechanism for data transfers to certified US organizations. Google LLC and Amazon Web Services participate in the UK Extension to the DPF, which encompasses the UK-US Data Bridge.

7. Data Storage and Retention

On your device (Keychain): Authentication tokens, your user profile, food log entries, and personal reflections are stored in the iOS Keychain with the kSecAttrAccessibleAfterFirstUnlockThisDeviceOnly protection class. This data remains on your device and is not uploaded to our servers. Reflections are automatically pruned after 30 days. Archived food items are removed on load.
In transit: Health data is transmitted to our API and to Google Gemini only when you initiate a request (dashboard refresh, chat message, or food scan). All transmissions use HTTPS with TLS encryption.
Server-side (health/profile data): We do not operate a database. No health data, profile data, food data, or photos are stored on our servers beyond the duration of a single API request.
Server access logs (CloudWatch): Request-level logs (IP address, timestamp, endpoint, status) are retained for 30 days in AWS CloudWatch, then automatically deleted.
Account data (Cognito): Your email address and authentication credentials are retained in AWS Cognito for as long as your account exists. You may request account deletion at any time (see Section 9).
Google Gemini: Data submitted to Google Gemini may be retained by Google for up to 30 days per Google's API terms, as described in Section 5a.

8. Data Security

All data in transit is encrypted using HTTPS/TLS
On-device sensitive data is stored in the iOS Keychain with device-level encryption
Authentication tokens are stored securely in Keychain and are automatically refreshed
We do not store health data on servers
Access to our backend API requires a valid authenticated session token validated by AWS Cognito
Required multi-factor authentication (TOTP) protects all accounts

Despite these measures, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

9. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach (where required by GDPR) and will notify affected users without undue delay where the breach poses a high risk to individuals. We will contact you using the email address associated with your Cognito account.

10. Children's Privacy

inForm is intended for users aged 13 and older (or 16 and older for users in the EU/EEA, where the GDPR age of digital consent applies). We do not knowingly collect personal information from children under these ages. If you are under 13 (or under 16 in the EU/EEA), do not use this App. If we learn that we have collected information from a child below the applicable age threshold, we will delete it promptly. Contact us at askeland@inform-health.dev if you believe we have inadvertently collected such information.

11. Your Rights and Choices

HealthKit Access

You may revoke HealthKit permissions at any time in iOS Settings → Privacy & Security → Health → inForm.

Camera Access

You may revoke camera permissions at any time in iOS Settings → Privacy & Security → Camera → inForm.

Account Deletion

You may request deletion of your account and associated Cognito data by contacting askeland@inform-health.dev. We will process your request within 30 days. Note that health data is stored on your device, not our servers, so account deletion does not affect locally stored data. You can delete local app data by deleting the App from your device.

Data Access

You may request a description of the data we hold about you (your Cognito email/account) by contacting us at askeland@inform-health.dev.

GDPR Rights (EU/EEA and UK Users)

If you are located in the European Union, European Economic Area, or the United Kingdom, you have the right to:

Access your personal data
Correct inaccurate personal data
Request deletion of your personal data
Restrict processing of your personal data
Data portability
Withdraw consent at any time (without affecting the lawfulness of prior processing)
Lodge a complaint with your national data protection supervisory authority — for example, the Irish Data Protection Commission, the CNIL (France), or the ICO (UK, at ico.org.uk). A directory of EU supervisory authorities is available at edpb.europa.eu.

To exercise these rights, contact askeland@inform-health.dev. We will respond within 30 days (or within the timeframe required by applicable law in your jurisdiction).

CCPA/CPRA Rights (California Users)

If you are a California resident, you have the right to:

Know what personal information we collect about you
Correct inaccurate personal information we hold
Request deletion of your personal information
Opt out of the sale or sharing of your personal information
Limit our use of sensitive personal information to providing the service

We do not sell your personal information and do not share it for cross-context behavioral advertising. Your health data is sensitive personal information; we use it only to provide inForm's features. To exercise these rights, contact askeland@inform-health.dev.

Other US State Privacy Rights

Residents of other US states with applicable privacy laws (including Virginia, Colorado, Connecticut, Texas, and others) have similar rights regarding access, correction, deletion, and opting out of the sale of personal data. We extend these same rights to all users regardless of state. To exercise them, contact askeland@inform-health.dev.

12. HealthKit Data Use Restrictions

In compliance with Apple's HealthKit guidelines, we confirm that:

HealthKit data is used solely to provide health management features within inForm
HealthKit data is never used for advertising or marketing
HealthKit data is never sold to third parties or data brokers
HealthKit data is never used to track users across apps or services
HealthKit data is never stored in iCloud by inForm

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this page. If changes are material, we will notify you within the App and require you to re-accept the updated policy before continuing to use the App.

14. Contact

For privacy questions, data requests, or concerns:

inForm LLC
Attn: Kyle Askeland
Pennsylvania, USA
askeland@inform-health.dev