Privacy Policy

Last Updated: August 8, 2025

Nouris is committed to protecting your privacy worldwide. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our app, which provides behavioral guidance and educational protocols based on wearable data integrations. We do not provide medical advice or store protected health information (PHI). By using Nouris, you agree to this policy. This policy complies with global standards such as GDPR, CCPA, and relevant health data regulations, including UAE ICT Health Law and DHA standards where applicable.

1. Information We Collect

  • User-Provided Data: Information you input, such as meal logs, ketone levels, or self-reported metrics (e.g., leptin/insulin resistance).
  • Integrated Data: With your consent, we pull anonymized data from sources like Oura, Google Fit, Flo, or Zero (e.g., activity, sleep, cycle data) for protocol generation.
  • Technical Data: Device info, IP addresses, and usage logs for app functionality.

We collect only what's necessary for personalized suggestions and adhere to the principle of data minimization.

2. How We Use Your Information

  • To generate and refine micro-protocols (e.g., fasting windows or activity nudges) based on your inputs and integrations.
  • For app improvements, analytics, and adherence tracking (anonymized only).
  • No data is used for marketing without explicit consent.

3. Data Sharing and Disclosure

  • We do not sell or share your data with third parties except as required by law or for app functionality (e.g., API providers like Oura with your authorization).
  • Anonymized insights may be used for B2B cohort analysis, but never in identifiable form. In regions like the UAE, sharing complies with ICT Health Law requirements.

4. Data Security

  • We use encryption (AES-256 at rest, TLS in transit), role-based access, and zero-trust models to protect data.
  • Data is stored securely with options for regional compliance (e.g., UAE-based servers per ICT Health Law for local users); retention follows legal requirements (e.g., 25+ years for audit logs in applicable jurisdictions), with deletion options for user data.

5. User Rights and Consent

  • You can access, update, or delete your data anytime via app settings, withdraw consent for integrations, or exercise rights like data portability under laws such as GDPR or CCPA.
  • For questions or requests, contact us at hello@nouris.ai.

6. Children's Privacy

  • Nouris is not intended for users under 18; we do not knowingly collect data from children.

7. Changes to This Policy

  • We may update this policy; changes will be posted here with the effective date and notified via app where required by law.

If you have concerns, email hello@nouris.ai. We strive for compliance with international standards, including UAE ICT Health Law and DHA guidelines.

© Nouris 2025. All rights reserved.