Privacy Policy

Sensus - Body Literacy. Powered by You.

Effective Date: February 18, 2026  |  Last Updated: March 12, 2026

---

Introduction

Sensus ("we," "us," or "our") is committed to protecting your privacy and handling your personal information in accordance with applicable privacy laws worldwide, including:

• Australia: Privacy Act 1988 (Cth) and Australian Privacy Principles (APPs)
• European Union/UK: General Data Protection Regulation (GDPR) and UK GDPR
• United States: California Consumer Privacy Act (CCPA/CPRA) and other state privacy laws
• Canada: Personal Information Protection and Electronic Documents Act (PIPEDA)
• Brazil: Lei Geral de Proteção de Dados (LGPD)

This Privacy Policy explains how we collect, use, disclose, and protect your information when you use the Sensus mobile application ("App"). By using the App, you consent to the practices described in this policy.

1. Information We Collect

1.1 Information You Provide Directly

When you use the App, you may provide:

Wellness Data (Sensitive/Health Information):

• Pain and discomfort logs (location, intensity, type)
• Body region markers and sensation descriptions (stabbing, deep, radiating)
• Body state check-ins (e.g., "thriving," "balanced," "unsettled," "struggling")
• Positive body sensation markers (e.g., lightness, energy, ease, strength, openness)
• Contextual factors you select or enter (sleep quality, exercise, stress, posture, weather, and other wellness contexts)
• Context details (e.g., hours of sleep, type of exercise)
• Movement and exercise observations
• Response ratings for movements explored in the movement library
• Personal notes and observations

Profile Information (Optional):

• Display name
• Age range and date of birth (for personalised greetings)
• Activity level
• Wellness goals
• Injury history
• Training background

Account Information (if applicable):

• Email address (for account recovery or communication)
• Communication preferences

1.2 Apple Health Data (Optional, With Your Permission)

If you grant permission, the App reads the following data from Apple Health (read-only — we never write to Apple Health):

• Sleep analysis (hours slept)
• Step count
• Active energy burned (calories)
• Heart rate (average)
• Resting heart rate
• Heart rate variability (HRV)
• Blood oxygen saturation (SpO2)
• Respiratory rate
• Mindful minutes
• Walking asymmetry percentage
• Double support percentage (gait metric)
• Workout type and duration

1.3 Information Collected Automatically

The App may automatically collect:

Device Information:

• Device type and model
• Operating system version
• App version
• Unique device identifiers (for app functionality only)
• Time zone settings

Usage Information:

• App feature usage patterns
• Session duration and frequency
• Feature interactions
• Error logs and crash reports

1.4 Information We Do NOT Collect

We do not collect:

• Your name (unless you voluntarily provide a display name)
• Your exact location or GPS data
• Your contacts or address book
• Your photos, camera, or microphone data
• Your browsing history outside the App
• Financial information or payment details
• Government identifiers (Social Security, Medicare, Tax File Numbers, etc.)
• Biometric data (fingerprints, face scans, etc.)

1.5 Categories of Personal Information (CCPA Disclosure)

For California residents, we collect the following categories of personal information:

• Category A: Identifiers (device ID, email if provided)
• Category B: Personal information under California Civil Code Section 1798.80(e) (none collected)
• Category C: Protected classification characteristics (age range only)
• Category D: Commercial information (none collected)
• Category F: Internet or network activity (app usage patterns)
• Category K: Inferences drawn from the above (wellness patterns and insights)

2. Legal Basis for Processing (GDPR/UK GDPR)

We process your personal information based on the following legal grounds:

Purpose	Legal Basis
Providing core App functionality	Performance of contract (Article 6(1)(b))
Processing health/wellness data	Explicit consent (Article 9(2)(a))
Processing Apple Health data	Explicit consent (Article 9(2)(a))
Cross-modal health intelligence (on-device)	Explicit consent (Article 9(2)(a))
Improving App features	Legitimate interest (Article 6(1)(f))
Community insights (Consensus)	Explicit consent (Article 6(1)(a) and 9(2)(a))
Community health metric signals	Explicit consent (Article 6(1)(a) and 9(2)(a))
AI features (Google Gemini)	Explicit consent (Article 6(1)(a))
Local notifications	Consent / Legitimate interest (Article 6(1)(a)/(f))
Legal compliance	Legal obligation (Article 6(1)(c))
Security and fraud prevention	Legitimate interest (Article 6(1)(f))

Health Data: As wellness data and Apple Health data constitute "special category data" under GDPR, we rely on your explicit consent to process this information. You provide this consent when you accept this Privacy Policy and enable the relevant features in the App.

3. How We Use Your Information

3.1 Primary Purposes

We use your information to:

• Enable you to log, track, and view your wellness data
• Generate personal patterns, trends, and insights from your logged data
• Provide on-device analysis to identify correlations and patterns (e.g., contextual factors associated with elevated or reduced discomfort)
• Provide cross-modal health intelligence by correlating your Apple Health metrics with your logged body states to surface observational patterns found in your data (computed entirely on your device). These are presented as correlations in your logged data, not as prescriptive health advice.
• Calculate your Body Literacy Score (BLS), a personal awareness metric computed entirely on your device
• Track your logging journey through progressive milestones that reflect which App features become available as your data grows
• Detect noteworthy patterns that you may wish to discuss with a healthcare provider (see Section 3.3)
• Provide post-check-in intelligence: personalised, observational insights shown immediately after each log, based on patterns found in your data
• Present population-level wellness research (cited from published studies) for educational context, framed as research findings rather than personal recommendations
• Tailor movement suggestions based on your profile and logged regions
• Generate healthcare provider summaries for your personal use
• Display at-a-glance statistics on your home screen (days active, weekly summary, contexts, and trends)
• Understand how features are used to improve the App
• Respond to your enquiries and provide technical assistance

3.2 Secondary Purposes (With Your Consent)

With your explicit opt-in consent, we may:

• Anonymised Community Insights ("Consensus"): Aggregate your data with others to generate community-wide patterns. Your individual data is never identifiable. A minimum threshold of users (k-anonymity) is required before any aggregated data is displayed.
• Community Health Metric Signals: Aggregate categorical health pattern labels (e.g., "sleep correlates with how people feel") across consenting contributors to surface what the community's health metrics reveal collectively. Only categorical labels are shared, never raw health values. A stricter minimum contributor threshold applies to health-adjacent data.
• Communications: Send you updates, tips, or information about the App
• AI Chat and Intelligence (Google Gemini): Process summaries of your data through Google's AI services to power conversational features, daily briefings, weekly reports, pattern discovery, and personalised insights

3.3 Automated Pattern Detection and Decision-Making

The App includes on-device automated analysis that may identify patterns in your logged data, such as:

• Trends in noticeability over time
• Correlations between contexts and your logged sensations
• Correlations between Apple Health metrics and your logged body states (cross-modal body signals), presented with your specific data points (e.g., your average noticeability when a metric is above or below your personal baseline)
• Flare prediction based on day-of-week patterns, context accumulation, and intensity trends
• Seasonal and weather-related pattern detection
• Recovery trajectory comparisons based on published research
• Patterns that may warrant discussion with a healthcare provider ("Red Flag" alerts)

Your Rights Regarding Automated Processing (GDPR Article 22):

• These analyses are observational suggestions only
• No legally or similarly significant decisions are made automatically
• You can request human review of any automated insight by contacting us
• You can object to automated processing at any time

3.4 What We Do NOT Do

We do NOT:

• Sell your personal information to any third party (as defined under CCPA/CPRA)
• Share your personal information for cross-context behavioral advertising
• Share identifiable health data with advertisers
• Use your data for targeted advertising
• Share your data with insurance companies or employers
• Provide medical diagnoses, treatment recommendations, prescriptive health directives, or clinical advice
• Upload raw Apple Health values to any server or third party

4. Data Storage and Security

4.1 Local Storage by Default

4.2 Encryption and Security Measures

iOS Keychain Encryption:

Your wellness data is encrypted using iOS Keychain, Apple's secure storage system, providing:

• AES-256 encryption at rest
• Hardware-backed security on supported devices
• Data accessible only when your device is unlocked (kSecAttrAccessibleWhenUnlockedThisDeviceOnly)
• Data is non-transferable between devices via Keychain configuration

Additional Security Measures:

• Encryption of data in transit (TLS 1.3)
• Secure coding practices following OWASP guidelines
• Regular security assessments
• Access controls and authentication
• Incident response procedures

4.3 International Data Transfers

If you enable AI features or community sharing, your data may be transferred to and processed in countries outside your jurisdiction, including the United States and Australia.

For EU/UK Users: We ensure appropriate safeguards for international transfers through:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions where applicable
• Supplementary measures as required

For All Users: Our service providers maintain appropriate security standards and contractual obligations to protect your data.

4.4 Data Retention

Data Type	Retention Period
Local wellness data	Until you delete it or uninstall the App
Body Literacy Score history	Rolling 30-day window on device
Movement response history	Until you delete it or uninstall the App
Anonymised community data	Indefinitely (non-identifiable)
Anonymised health pattern flags	Indefinitely (non-identifiable categorical labels only)
Account data (if applicable)	While active + 2 years
Backup data (if applicable)	90 days
Support communications	3 years
Apple Health snapshots (raw values)	Stored locally within check-in entries; deleted with entries

4.5 Data Breach Notification

In the event of a data breach affecting your personal information, we will:

• GDPR/UK: Notify the relevant supervisory authority within 72 hours and notify you without undue delay if high risk
• Australia: Notify the OAIC and affected individuals as required under the Notifiable Data Breaches scheme
• CCPA: Notify affected California residents as required by law

5. Disclosure of Information

5.1 When We May Disclose Information

Service Providers:

• Cloud hosting providers — Google Firebase / Firestore (for community data, if you opt in)
• AI service providers — Google Gemini via Firebase AI / Vertex AI (with your consent, see Section 8.4)
• Analytics services (anonymised data only)
• Customer support platforms

Legal Requirements:

• In response to valid legal process (court orders, subpoenas)
• To comply with requests from government agencies with lawful authority
• To protect our legal rights or the safety of users

Business Transfers:

In connection with a merger, acquisition, or sale of assets (with notice to you and opportunity to delete your data)

5.2 We Do NOT Disclose Your Information To:

• Advertisers or marketing companies
• Insurance companies
• Employers or recruitment agencies
• Data brokers
• Any third party for their own marketing purposes
• Law enforcement without valid legal process

5.3 Anonymised and Aggregated Data

We may share anonymised, non-identifiable data for:

• Research and statistical purposes
• Public health insights
• Academic research (with appropriate ethics approval)

This data cannot be used to identify you personally.

5.4 Anonymisation Process for Community Data

When you opt in to community data sharing, the following anonymisation is applied before any data leaves your device:

6. Your Privacy Rights

6.1 Rights for All Users

Regardless of your location, you have the right to:

• Access your personal information
• Correct inaccurate information
• Delete your personal information
• Export your data in a portable format
• Withdraw consent at any time
• Object to certain processing
• Lodge a complaint with a supervisory authority

6.2 Additional Rights for EU/UK Residents (GDPR)

• Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data
• Right to Restriction: Request we limit how we use your data
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time without affecting prior processing
• Right Not to be Subject to Automated Decisions: Request human review of automated processing

To exercise these rights: Contact our Data Protection contact at contact@joinsensus.com or use the in-app features.

Supervisory Authority: You may lodge a complaint with your local data protection authority. For a list of EU authorities, visit: edpb.europa.eu/about-edpb/about-edpb/members_en

6.3 Additional Rights for California Residents (CCPA/CPRA)

• Right to Know: Request disclosure of personal information collected, used, and disclosed
• Right to Delete: Request deletion of personal information
• Right to Correct: Request correction of inaccurate information
• Right to Opt-Out of Sale/Sharing: We do not sell or share your personal information
• Right to Limit Use of Sensitive Personal Information: Limit use of health data to what is necessary
• Right to Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights: Email contact@joinsensus.com or use in-app privacy controls. Response within 45 days (extendable by 45 days with notice).

6.4 Additional Rights for Canadian Residents (PIPEDA)

• Right to Access: Request access to your personal information
• Right to Challenge Compliance: Challenge our compliance with PIPEDA
• Right to Withdraw Consent: Withdraw consent subject to legal restrictions

To exercise these rights: Contact contact@joinsensus.com

Office of the Privacy Commissioner of Canada: www.priv.gc.ca

6.5 Additional Rights for Australian Residents (APPs)

• Right to Access (APP 12): Request access to personal information we hold
• Right to Correction (APP 13): Request correction of inaccurate information
• Right to Complain: Lodge a complaint about our handling of your information

To exercise these rights: Contact contact@joinsensus.com or use in-app features.

Office of the Australian Information Commissioner (OAIC):

• Website: www.oaic.gov.au
• Phone: 1300 363 992
• Email: enquiries@oaic.gov.au

6.6 Additional Rights for Brazilian Residents (LGPD)

• Right to Confirmation and Access: Confirm processing and access your data
• Right to Correction: Correct incomplete or inaccurate data
• Right to Anonymisation, Blocking, or Deletion: Request for unnecessary data
• Right to Data Portability: Transfer data to another service provider
• Right to Information: Know about third parties with whom we share data
• Right to Revoke Consent: Revoke consent at any time

To exercise these rights: Contact contact@joinsensus.com

ANPD (National Data Protection Authority): www.gov.br/anpd

7. How to Exercise Your Rights

7.1 In-App Controls

You can exercise many rights directly in the App:

• View/Export Data: Settings > Your Data > Export
• Delete Data: Settings > Your Data > Delete All My Data
• Manage Community Consent: Settings > Privacy > Community Sharing
• Manage AI Consent: Settings > Privacy > AI Features
• Manage Apple Health: Settings > Privacy > Apple Health Integration
• Manage Notifications: Settings > Notifications
• Correct Data: Edit entries directly in the App

7.2 Contact Us

For rights requests or questions:

• Email: contact@joinsensus.com
• Response Time: Within 30 days (or as required by applicable law)
• Verification: We may need to verify your identity before processing requests

7.3 Authorised Agents (CCPA)

California residents may designate an authorised agent to submit requests on their behalf. We may require:

• Written authorisation from you
• Verification of the agent's identity
• Direct confirmation from you

8. Third-Party Services

8.1 Third-Party Links

The App may contain links to third-party websites or services not covered by this Privacy Policy. We encourage you to review their privacy policies.

8.2 Analytics Services

We may use privacy-preserving analytics to understand App usage. This data:

• Does not personally identify you
• Is aggregated and anonymised
• Helps us improve the App experience

8.3 App Store

The App is available through the Apple App Store. Your download and use is also subject to Apple's privacy policy.

8.4 AI Services (Google Gemini via Firebase AI)

The App includes optional AI-powered features powered by Google Gemini through Firebase AI / Vertex AI.

AI-powered features include:

• Conversational AI chat ("Ask Sensus")
• Daily briefings and weekly reports
• Pattern discovery and flare prediction
• Post-check-in insights (when AI consent is granted)
• Movement correlation analysis

When enabled:

• Summaries of your logged data may be sent to Google's servers for processing
• Google processes this data according to their privacy policy and data processing terms
• Data is used only to generate responses and is not used by Google for advertising or model training
• AI conversations are stateless, no conversation history is retained on any server
• You can disable AI features at any time in Settings

If you do not enable AI features, no data is sent to Google.

Google Privacy Policy: policies.google.com/privacy

8.5 Firebase / Google Cloud (Community Features)

If you opt in to community data sharing, anonymised data is stored in Google Firebase Firestore.

• Only anonymised data (as described in Section 5.4) is uploaded
• Firebase is used solely for storing and retrieving aggregated community insights
• No identifiable personal information is stored in Firebase
• Categorical health pattern flags (metric type, direction, magnitude bucket) are stored alongside other anonymised community data when you have Apple Health connected and community sharing enabled
• These flags are aggregated across contributors to generate community health metric signals, subject to stricter minimum contributor thresholds

Google Cloud Privacy: cloud.google.com/terms/cloud-privacy-notice

8.6 Apple HealthKit

If you grant permission, the App reads health data via Apple's HealthKit framework.

• We request read-only access, the App never writes to or modifies your Apple Health data
• Raw health values are cached in memory for 15 minutes and stored locally within your check-in entries
• If you also opt in to community sharing, only categorical labels derived from your health data are uploaded (see Section 5.4). Raw values are never transmitted.
• You can revoke HealthKit access at any time via iOS Settings > Health > Sensus

Apple HealthKit Guidelines: developer.apple.com/health-fitness/

9. Notifications

The App may send local notifications with your permission:

Notification Type	Content	Frequency
Daily check-in reminder	Reminder to log how your body feels	Once daily at your chosen time
Daily briefing	AI-generated insight summary (if AI enabled)	Up to once per day
Weekly report	Weekly trend summary (if AI enabled)	Up to once per week
Pattern alerts	Notification of newly discovered patterns	Up to once per week
Flare prediction	Context-based prediction of elevated risk	As detected, with cooldown
Body Literacy Score milestone	Score tier progression notification	As achieved, with cooldown

10. Children's Privacy

10.1 Age Restrictions

The App is not intended for children under 13 years of age (or 16 in some EU jurisdictions). We do not knowingly collect personal information from children under these ages.

10.2 Parental Consent

Users between 13 and 18 years should review this Privacy Policy with a parent or guardian and obtain their consent before using the App.

10.3 COPPA Compliance (United States)

We comply with the Children's Online Privacy Protection Act (COPPA). If we learn we have collected information from a child under 13 without parental consent, we will delete it promptly.

10.4 Notification

If you believe we have collected information from a child under the applicable age, please contact us immediately at contact@joinsensus.com.

11. Changes to This Privacy Policy

11.1 Updates

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or other factors.

11.2 Notification of Material Changes

For material changes, we will:

• Provide in-app notification at least 30 days before changes take effect
• Update the "Last Updated" date
• For EU/UK users, obtain fresh consent if required for new processing activities

11.3 Continued Use

Your continued use of the App after changes take effect constitutes acceptance of the updated policy. If you do not agree, please stop using the App and delete your data.

12. Contact Information

13. Definitions

Term	Definition
Personal Information/Data	Information that identifies or can identify an individual
Sensitive Information	Health information, genetic data, biometric data, and other special categories
Processing	Any operation performed on personal data (collecting, storing, using, sharing, deleting)
Controller	Entity that determines purposes and means of processing (Sensus)
Processor	Entity that processes data on behalf of the controller
Consent	Freely given, specific, informed, and unambiguous agreement
Consensus	The App's community feature aggregating anonymised data
Body Literacy Score (BLS)	A personal awareness metric (0–100) computed entirely on your device based on logging consistency, trends, and engagement
Red Flag Alerts	Automated pattern detection identifying trends to discuss with healthcare providers
Apple Health Data	Health metrics read from Apple HealthKit, raw values stored locally only
Health Pattern Flags	Categorical labels derived from Apple Health data (e.g., metric type, direction, magnitude bucket) that may be shared with community consent. Never contain raw health values.
Cross-Modal Health Intelligence	On-device analysis correlating Apple Health metrics with logged body states to identify personal body signals. Findings are presented as observational correlations found in your data, not as prescriptive health advice.
Community Health Metric Signals	Aggregated insights from categorical health pattern flags across consenting community contributors
Post-Check-In Intelligence	Personalised, observational insights shown immediately after each log, based on patterns found in your data. Not prescriptive health advice.
Progressive Milestones	On-device tracking of unique logging days that reflects which App features become available as your data grows. Computed locally from your entries.
GDPR	General Data Protection Regulation (EU)
CCPA/CPRA	California Consumer Privacy Act / California Privacy Rights Act
APPs	Australian Privacy Principles
PIPEDA	Personal Information Protection and Electronic Documents Act (Canada)
LGPD	Lei Geral de Proteção de Dados (Brazil)

14. Summary of Key Points

What We Do	What We Don't Do
Store data locally on your device by default	Sell or share your personal information
Use iOS Keychain encryption (AES-256)	Share health data with advertisers
Give you full control over your data	Use data for targeted advertising
Allow export and deletion	Share with insurers or employers
Require opt-in for community features	Make automated decisions affecting you
Require opt-in for AI features	Collect data from children under 13
Require opt-in for Apple Health access	Upload raw Apple Health values to any server
Keep raw Apple Health values 100% on-device	Transfer data without safeguards
Share only categorical health labels (with dual consent)	Share actual health numbers or measurements
Present all insights as observations from your data	Provide prescriptive health advice or directives
Comply with global privacy laws	Retain data longer than necessary
Respond to rights requests within 30 days	Discriminate for exercising rights
Notify you of data breaches	Write to or modify your Apple Health data
Anonymise community data before upload	Share your notes or free-text entries