Back
OneVital Health · Privacy

Privacy Policy

We built OneVital Health to unify your wearable, lab, and nutrition data while keeping you in control. This policy explains exactly how we handle your information, how encryption protects it, and the rights you have at every step.

Effective date:
Company: OneVital Health · https://onevitalhealth.com

What Data We Collect

We collect only the data you choose to connect so we can give you meaningful, AI-assisted insights:

  • Wearable and biometric data from Whoop, Withings, Fitbit, Oura, and Garmin — including sleep, readiness, heart rate variability, strain, and activity metrics.
  • Nutrition and supplement data you log manually or sync from Cronometer and MyFitnessPal, plus supplement adherence tracking.
  • Lab test results you upload or connect, such as blood panels, hormone labs, and biomarker reports.
  • Account information required to sign in: for email/password auth, we store your email address and password hash (never your raw password). For Google Sign-In, we receive basic profile details tied to openid, email, and profile to authenticate your account.

We do not ingest advertising identifiers, device-level telemetry, or any third-party marketing data.

How Your Data Is Stored

We designed OneVital so that your health data stays encrypted even if someone accessed our infrastructure:

  • All health records are encrypted at rest in our database using AES-256-GCM.
  • Your encryption key is derived from your password via PBKDF2 with 600,000 iterations. The key is regenerated every time you log in and exists only in server memory during your active session. We never store the key to disk.
  • When your session ends, the key is discarded. Without it, the encrypted data in our database is unreadable.

Backups and replicas store only ciphertext. An attacker would still need your password to derive the key and decrypt your health information.

Third-Party Integrations & OAuth

OneVital only connects to partners you explicitly authorize. Data syncs through secure OAuth 2.0 flows with your consent. We currently integrate with:

  • Whoop
  • Withings
  • Fitbit
  • Oura
  • Garmin
  • Google Fit
  • Cronometer
  • MyFitnessPal

Revoking access from any of these services stops new data from syncing immediately.

Google Sign-In and Google Fit

OneVital supports Google Sign-In for account access and a separate Google Fit connection for health data sync. For Google Sign-In, we request only openid, email, and profile so we can authenticate your account and display basic profile identity.

Google Fit access is read-only and limited to these four scopes:

  • https://www.googleapis.com/auth/fitness.activity.read
  • https://www.googleapis.com/auth/fitness.body.read
  • https://www.googleapis.com/auth/fitness.sleep.read
  • https://www.googleapis.com/auth/fitness.heart_rate.read

We use this data to power your dashboard trends and AI-supported health insights (for example activity load, body metrics, sleep patterns, and heart rate context). We do not sell Google data, do not use it for advertising, and do not use it to train generalized machine learning models.

Google-linked data is encrypted in transit and at rest. You can disconnect Google Fit anytime from Settings, and you can request full account/data deletion. Our use and transfer of information received from Google APIs follows the Google API Services User Data Policy, including the Limited Use requirements.

AI Processing Transparency

During your active session, the server decrypts the necessary data in memory to generate AI insights (Claude and GPT-4) and discards the plaintext immediately afterward.

The decrypted data is never written to disk or logs, and we do not use it to train external models. This trade-off lets us deliver meaningful analysis while keeping plaintext exposure as short-lived as possible.

You can disable AI processing in settings. Doing so will limit some recommendations but your data remains encrypted and accessible to you.

Data Sharing & Commercial Use

We do not sell, share, rent, or monetize your health data. Ever. Your information exists solely to power your personal health insights.

Cookies & Local Storage

We use short-lived session cookies strictly for authentication. No advertising, analytics, or cross-site tracking cookies are used.

Data Retention & Deletion

Your encrypted data is retained while your account remains active. You can delete your account at any time from settings — doing so wipes your encrypted data from our production systems within 24 hours.

Backups are purged on a rolling 30-day schedule. Once the retention window passes, the data disappears from our infrastructure entirely.

GDPR & User Rights

OneVital is designed to respect global privacy regulations, including the GDPR. You retain full ownership and control of your health data. At any time, you may:

  • Request a complete export of your encrypted or decrypted data via settings.
  • Delete all data permanently — we honor requests without hesitation.
  • Rectify inaccurate information by editing or removing synced data sources.
  • Withdraw consent for integrations and AI processing.

Exercising these rights will never degrade the core service you receive from OneVital.

Contact

Questions about this policy or how we handle data? Email us at privacy@onevitalhealth.com and we will respond within two business days.

If you ever believe your privacy has been compromised, contact us immediately — we will investigate, remediate, and keep you updated at every step.