Table of Contents
1) Introduction
Chronigo ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your information when you use our mobile application and services.
Business Identity
Legal Name: Chronigo
Business Location: United States
Mailing Address: Available upon request via privacy@chronigo.com
Privacy Contact: privacy@chronigo.com
General Support: support@chronigo.com
Security Issues: security@chronigo.com
Terms of Service: https://chronigo.com/terms
Our Role as Data Controller
Chronigo is the data controller for all personal information collected through the Chronigo mobile app and services. This means we determine how and why your data is processed. We work with trusted data processors (service providers) who process data on our behalf under written agreements with strict data protection requirements.
2) Information We Collect
Account Information
- Email address, password (encrypted), username, first and last name
- Profile picture (optional, stored in AWS S3 with unguessable URLs)
- Authentication and session tokens
Health Data
- Medications, dosages, and adherence tracking
- Health metrics: glucose, blood pressure, weight
- Logging history, streaks, and goals
Facebook Integration (OPTIONAL)
Important: Facebook is entirely optional. You do NOT need Facebook to use Chronigo. Facebook is NOT used for signing in—we use email or Apple Sign-In for authentication.
If you choose to connect Facebook, we collect:
- Facebook User ID: Stored in our database for account linking and friend matching
- Facebook Name (from public_profile): Stored to display in Connected Accounts settings
- Facebook Email (if provided): Optionally stored for account linking and recovery
- Facebook Friends List (user_friends permission): NEVER STORED. Used only in-memory to find friends who also use Chronigo, then immediately discarded.
What We DO NOT Do With Facebook Data:
- ❌ We do NOT store your Facebook friends list in our database
- ❌ We do NOT store Facebook access tokens (used in-memory only)
- ❌ We do NOT access or store your Facebook posts, photos, or other content
- ❌ We do NOT send your health data to Facebook/Meta
- ❌ We do NOT automatically post to Facebook on your behalf
- ❌ We do NOT share your Facebook data with third parties
- ❌ We do NOT use Facebook data for advertising
Facebook Sharing: When you share challenges to Facebook, we use the Facebook Share Dialog which requires your manual confirmation each time. We never auto-post.
Device & Usage Data
- App version, device model, OS version, timezone
- IP address, device identifiers, push notification tokens
- Usage analytics, log data for reliability and security
3) How We Use Information
- Core Features: Accounts, health tracking, reminders, insights, streak calculation
- Social Features: Friend discovery (including via Facebook), challenges, leaderboards
- Improvement: Product development, bug fixes, performance optimization
- Communications: Account verification, password resets, product updates (opt-out available)
- Security: Fraud prevention, abuse detection, legal compliance
4) Facebook Platform Data
Facebook is completely OPTIONAL and NOT required to use Chronigo.
When you link your Facebook account:
- We store your Facebook User ID, name, and optional email in our MongoDB database (US region)
- Your Facebook profile picture is displayed via Facebook's CDN (not stored by us)
- Friend discovery queries Facebook's Graph API in real-time
- The friends list is used only in-memory to search for matches, then immediately discarded
- We NEVER store your friends list, access tokens, or any other Facebook content
Data Retention & Deletion:
- While linked: Facebook ID, name, and email retained indefinitely
- After unlinking: Deleted within 24 hours
- After account deletion: All Facebook identifiers deleted within 24 hours
- Friends list: Never stored (discarded immediately after each use)
How to Disconnect Facebook:
- Open Chronigo app
- Go to Settings → Connected Accounts → Facebook
- Tap "Disconnect Facebook"
- Confirm action
- Your Facebook data will be deleted within 24 hours
Facebook Data Deletion Request: You can also request deletion through Facebook:
- Go to Facebook Settings → Apps and Websites
- Find Chronigo and request data deletion
- We will receive the request and delete your Facebook identifiers within 24 hours
- Check deletion status at: chronigo.com/privacy/deletion-status
No Health Data Sent to Meta: Your health data is NEVER sent to Facebook or Meta. We only share Facebook User ID when you use the Facebook Share Dialog (for manual challenge sharing).
5) Legal Basis (for EEA/UK users)
- Contract: Processing necessary to provide Chronigo services
- Consent: Facebook integration, specific notifications, optional features
- Legitimate Interests: Security, fraud prevention, product improvement
- Legal Obligation: Compliance with applicable laws
7) Data Security
Encryption
- In Transit: TLS 1.2 or higher for all connections (TLS 1.3 preferred). SSL 2.0 and SSL 3.0 are disabled.
- No Plaintext Transmission: We NEVER transmit personal data, health data, or Platform Data in plaintext
- At Rest: AES-256 encryption for all stored data (health data, Facebook identifiers, profile images)
- Passwords: Bcrypt hashing with salt (never stored in plaintext)
- Database: MongoDB Atlas encryption at rest with AES-256
- Files: AWS S3 server-side encryption (SSE-S3) with AES-256
Access Controls
- Role-based access control for admin functions
- Multi-factor authentication for admin accounts
- IP allowlisting for database access
- Audit logging of all data access
- No Staff Device Storage: Platform Data (Facebook identifiers) is NOT stored on staff laptops, desktops, or mobile devices. All staff have signed data handling agreements.
- Production Access: Restricted to secure cloud infrastructure only (MongoDB Atlas, Render, AWS)
Infrastructure Security
- Cloud-hosted on secure platforms (MongoDB Atlas, Render, AWS)
- Automated security patches and updates
- Regular security audits and penetration testing
- Isolated environments and container security
Your Responsibilities
- Choose a strong, unique password
- Enable device security (passcode, biometrics)
- Don't share your credentials
- Report suspicious activity to security@chronigo.com
Security Vulnerabilities
We maintain a public Security Policy for responsible vulnerability disclosure. Report security issues to security@chronigo.comor view our policy at GitHub.
8) Your Privacy Rights
Access & Portability
- View your data in Settings → Account → My Data
- Request data export via privacy@chronigo.com (delivered within 30 days)
- Export format: JSON with all account, health, and social data
Correction & Update
- Edit profile in Settings → Profile
- Update health goals in Settings → Health Goals
- Modify medications in Medications screen
Data Deletion
Method 1: Unlink Facebook (Immediate)
- Open Chronigo app
- Go to Settings → Account → Connected Accounts
- Tap "Unlink Facebook"
- Your Facebook User ID is immediately deleted from our database
Method 2: Delete Account
- Settings → Account → Delete Account
- Confirm deletion and enter password
- All data deleted within 24 hours
- Confirmation email sent when complete
Method 3: Email Request
Email privacy@chronigo.com or support@chronigo.com with subject "Data Deletion Request"
- Response: Within 48 hours
- Deletion: Within 72 hours of identity verification
What Gets Deleted
- Account information and credentials
- All health data and medications
- Friend connections and challenge history
- Facebook User ID (if linked)
- Profile pictures from S3
- Push notification tokens
What We May Retain
- Aggregated, anonymized analytics (cannot identify you)
- Legal/financial records as required by law (typically 7 years)
- Backup data for up to 30 days (then permanently deleted)
Opt-Out Controls
- Email: Unsubscribe via link in promotional emails
- Push Notifications: Disable in Settings → Notifications
- Social Features: Control visibility in Settings → Privacy
- Facebook: Unlink anytime (immediate deletion)
California Privacy Rights (CCPA)
If you're a California resident, you have rights to:
- Know: What personal information we collect and how we use it
- Delete: Request deletion of your personal information
- Opt-Out: Opt out of sale (we don't sell, so this doesn't apply)
- Non-Discrimination: No discrimination for exercising your rights
To exercise rights, email privacy@chronigo.com with subject "CCPA Request"
European Privacy Rights (GDPR)
If you're in the EU/EEA, you have rights to:
- Access: Request copy of your personal data
- Rectification: Correct inaccurate data
- Erasure: Request deletion ("right to be forgotten")
- Restrict Processing: Limit how we use your data
- Data Portability: Receive data in machine-readable format
- Object: Object to processing for direct marketing
- Withdraw Consent: Withdraw consent at any time
- Lodge Complaint: File complaint with supervisory authority
To exercise rights, email privacy@chronigo.com with subject "GDPR Request"
9) Data Retention
- Active accounts: Data retained while account is active
- Health data: Retained until you delete it
- Facebook data (while linked): Facebook User ID, name, and email retained indefinitely while Facebook is connected
- Facebook data (after unlinking): Deleted within 24 hours of disconnecting Facebook
- Facebook data (after account deletion): All Facebook identifiers deleted within 24 hours
- Facebook friends list: NEVER stored (used in-memory only and immediately discarded)
- Logs & analytics: 90 days, then deleted or anonymized
- Backups: 7-day rolling retention (for disaster recovery, automatically purged)
- Inactive accounts: May be deleted after 3+ years of inactivity (with 60-day notice)
- Deleted accounts: All data deleted within 24 hours, backups purged within 7 days
- Aggregated metrics: Anonymized, de-identified analytics may be retained for business intelligence (cannot identify individual users)
10) International Data Transfers
- Primary storage: United States (MongoDB Atlas, Render, AWS S3)
- Backups: May be in EU regions (MongoDB Atlas)
- Safeguards: Standard Contractual Clauses (SCCs) for EU transfers
- Compliance: GDPR-compliant data protection measures
11) Cross-App Tracking & Advertising
Chronigo does NOT engage in cross-app tracking or use your data for advertising purposes.
What This Means:
- No Advertising Tracking: We do not track you across apps and websites owned by other companies
- No Advertising Identifiers: We do not collect or use IDFA (Identifier for Advertisers) or similar advertising identifiers
- No Ad Networks: We do not integrate with advertising networks or ad exchanges
- No Behavioral Advertising: We do not use your data to serve targeted advertisements
- No Data Selling: We do not sell your data to advertisers or third parties
- ATT Not Required: Because we do not track users, Apple's App Tracking Transparency (ATT) prompt is not triggered in the Chronigo app
Facebook SDK Configuration:
While Chronigo optionally integrates with Facebook for social features, we explicitly disable all advertising and tracking functionality:
- advertiserIDCollectionEnabled: false (we do not collect advertising identifiers from Facebook)
- autoLogAppEventsEnabled: false (we do not automatically send app events to Facebook for analytics or advertising)
- Data Minimization: We only request the minimum Facebook permissions needed (public_profile, email, user_friends)
- Friends List: Never stored (used in-memory only for friend matching, immediately discarded)
Analytics We Do Collect (Not for Advertising):
We collect limited usage analytics to improve the app experience, but this data is:
- Used solely for app functionality, debugging, and feature improvement
- Sanitized to remove Protected Health Information (PHI)
- Never shared with advertising networks or used for behavioral profiling
- Never linked to advertising identifiers or used for cross-app tracking
Your Consent Is Not Required for Tracking:
Because Chronigo does not track users for advertising purposes, we do not request consent for tracking under Apple's ATT framework or similar privacy regulations. The data we collect is used exclusively to provide, improve, and secure the Chronigo service.
12) Children's Privacy
- Chronigo is not intended for children under 13 years of age (or 16 in the EU)
- We do not knowingly collect data from children under 13 (or 16 in the EU)
- Age verification via date of birth during onboarding
- If we discover data from a child under the age limit, we delete it immediately
- Parents or guardians: contact privacy@chronigo.com if you believe your child has provided us with personal information
13) Medical Disclaimer
14) Government Data Requests
We maintain a comprehensive Government Data Requests Policy that includes:
- Legality Review: We review all requests for legal validity
- Challenge Provisions: We challenge overly broad or unlawful requests
- Data Minimization: We disclose only the minimum data necessary
- Documentation: We log all requests and our responses
- User Notification: We notify users when legally permitted
National Security Requests:
- We have received ZERO national security letters, FISA orders, or similar government requests for Platform Data in the last 12 months (November 2024 - November 2025)
- If we receive such a request, we will challenge overly broad or unlawful demands
- We will notify affected users unless legally prohibited
- We will only provide the minimum data required by law
We have not received any government data requests to date (as of November 3, 2025). We will publish annual transparency reports when applicable.
15) Platform Data Policy
For data received from Meta (Facebook User IDs):
- Personnel are prohibited from storing Platform Data on local devices
- Platform Data is encrypted in transit (TLS 1.2+) and at rest
- Access is restricted to authorized cloud infrastructure only
- Service providers process Platform Data only on our behalf
- See our Platform Data Acceptable Use Policy for details
16) Changes to This Policy
- We may update this policy to reflect changes in practices, features, or legal requirements
- Material changes: Email notification + in-app notice
- Minor changes: Updated "Effective Date" above
- Continued use after changes = acceptance of new policy
17) Contact Us
General Privacy Questions:
- Email: privacy@chronigo.com
- Response time: Within 48 hours
Data Subject Requests (GDPR, CCPA, Data Deletion):
- Email: privacy@chronigo.com
- Subject: "Data Request - [Your Request Type]"
- Response time: Within 30 days (GDPR), 72 hours (deletion requests)
Security Concerns & Vulnerability Reports:
- Email: security@chronigo.com
- GitHub: View Security Policy
- Response time: Within 48 hours
General Support:
- Email: support@chronigo.com
Related Policies:
• Terms of Service
• Platform Data Acceptable Use Policy (internal)
• Government Data Requests Policy (internal)
• Data Processing Agreement with Service Providers (internal)
• Security Vulnerability Disclosure Policy (GitHub)
Version History & Changelog
| Version | Date | Changes |
|---|---|---|
| 2.0 | November 3, 2025 | • Added comprehensive business identity block with contact information • Added explicit cross-app tracking and advertising policy section • Clarified data controller vs. data processor roles • Enhanced Facebook data handling disclosures • Added detailed service provider information • Improved data retention clarity • Added version history and changelog |
| 1.0 | October 2025 | Initial privacy policy version |
Last Reviewed: November 3, 2025
Next Review: May 2026 (or as needed for legal/regulatory changes)