Privacy notice

Your data stays yours.

This notice explains what personal information ChronicOS collects, how we use and protect it, and the choices you have. ChronicOS is operated by ChronicOS Pty Ltd (ABN 77 699 152 460), Sydney, Australia.

We handle personal information in line with the Australian Privacy Principles under the Privacy Act 1988 and, for health information, applicable health-records law.

This is our current beta privacy notice. We're refining it with our advisers ahead of public launch, and we'll let registered users know about any material changes.

Information we collect

If you join the waiting list: your name, email address, the condition you tell us you're managing (optional), your country, and your consent to be contacted.
If you use the ChronicOS app (beta): the email you sign in with; the health information you choose to log — such as symptoms, blood glucose, sleep, stress, medications and food; and limited, pseudonymous usage analytics that help us improve the app.

We don't ask for more than we need, and you choose what to log.

How we use it

Waitlist information is used only to contact you about beta access and launch.
App information is used to provide the app to you — to store your logs, show your history, and surface observational patterns in your own data. These pattern insights are descriptive, not medical advice, and aren't a substitute for your clinician.
Usage analytics help us see which features are useful and fix problems. They're keyed to a pseudonymous identifier, not your name or email.

Consent and research

We keep the app you use separate from any research use of data. Research use is opt-in and layered, and you control it in the app at any time:

Tier 1 — Anonymous aggregateDe-identified, grouped statistics. On by default; you can opt out.
Tier 2 — De-identified researchYour de-identified records contribute to research. Opt-in.
Tier 3 — Study contactWe may contact you about relevant studies. Per-request only.

We never use your data to try to re-identify you.

Where your data is stored

Your data is stored in Australia (Sydney region) with our database and hosting provider. A small number of supporting services may process limited data overseas — for example, transactional email delivery and pseudonymous analytics. Where data is handled outside Australia, we take reasonable steps to ensure it's protected consistently with this notice.

Who we share it with

We do not sell your personal information.
We use a small number of trusted service providers (database/hosting, email delivery, analytics) who process data on our behalf under contract.
Any research data shared beyond ChronicOS is de-identified and aggregated, and only where you've consented.

Security

We protect your data with access controls, encryption in transit, and database row-level security so each person can only reach their own records. No system is perfectly secure, but we take protection seriously and will notify you and the regulator of any eligible data breach as required by law.

Your choices and rights

You can ask us to access, correct, or delete your personal information, and you can withdraw consent at any time. App users can manage consent and request export or deletion of their data from within the app or by contacting us.

Children

ChronicOS is intended for adults (18+). We don't knowingly collect information from people under 18.

Contact

Questions, or to make a privacy request: letsgo@chronicoshealth.com. ChronicOS Pty Ltd, Sydney, Australia.