Privacy Policy
Last Updated: November 15, 2025
1. Introduction
This Privacy Policy explains how LowerBP ("we," "our," or "the App") collects, uses, and protects your personal information. We are committed to protecting your privacy and being transparent about our data practices.
2. Information We Collect
2.1 Account Information
- Name
- Email address
- Password (encrypted by Firebase Authentication)
2.2 Health Data You Provide
- Blood Pressure: Systolic/diastolic readings, pulse, notes, timestamps
- Weight: Weight measurements, dates, notes
- Habits: Habit names, completion dates, descriptions
- Diet: Meal names, types, nutritional information, timestamps
- Settings: Goal weight, theme preferences
2.3 Technical Data
- Browser type and version
- Device type
- IP address (via Firebase)
- Login timestamps
3. How We Use Your Information
We use your information to:
- Provide and maintain the App's functionality
- Store and display your health tracking data
- Authenticate your access to your account
- Calculate statistics and trends from your data
- Improve the App and fix technical issues
We do NOT use your data for:
- ❌ Marketing or advertising
- ❌ Selling to third parties
- ❌ Training AI models
- ❌ Sharing with other users
- ❌ Any purpose not explicitly stated here
4. Data Access and Visibility
4.1 Who Can See Your Data
- You: Full access to all your data
- Administrators: Can see user profiles (name, email, role, approval status) but NOT your health data (BP, weight, habits, meals)
- App Administrators: Can access your data for:
- Technical support and troubleshooting
- System maintenance
- Investigating security issues
- No one else has access to your data
4.2 Data Isolation
Your data is protected by Firebase security rules that ensure:
- Users can only access their own health data
- Data queries are filtered by user ID
- Unauthorized access attempts are blocked
5. Data Storage and Security
5.1 Where Your Data is Stored
- All data is stored in Google Cloud Firestore
- Data centers are located in the United States
- Google provides enterprise-grade security and encryption
5.2 Security Measures
- HTTPS encryption for all data transmission
- Firebase Authentication for secure login
- Firestore security rules to prevent unauthorized access
- Password encryption (handled by Firebase)
- Regular security updates via Firebase
5.3 Security Limitations
While we implement reasonable security measures, we cannot guarantee absolute security. You acknowledge that:
- No internet-based service is 100% secure
- Data breaches, while unlikely, are possible
- You use the App at your own risk
6. Data Sharing
We do NOT sell, rent, or trade your personal information. We only share data in these limited circumstances:
- Service Providers: Google Firebase (for hosting and storage)
- Legal Requirements: If required by law, court order, or government request
- Safety: To protect against fraud, abuse, or threats to safety
We do NOT share your data with:
- ❌ Advertisers or marketing companies
- ❌ Data brokers
- ❌ Social media platforms
- ❌ Insurance companies
- ❌ Healthcare providers (unless you explicitly share it yourself)
7. Your Rights
You have the right to:
- Access: View all your data at any time within the App
- Edit: Modify or delete individual health entries
- Export: Request a copy of your data
- Delete: Request complete account deletion
- Opt-out: Stop using the App at any time
8. Data Retention
- Your data is retained as long as your account is active
- If you delete your account, all data is permanently deleted
- We do not retain backups of deleted accounts
- Deletion is immediate and cannot be undone
9. Cookies and Local Storage
The App uses:
- Local Storage: To save your theme preference (dark/light mode)
- Firebase Session: To keep you logged in
We do NOT use:
- ❌ Tracking cookies
- ❌ Analytics cookies (optional - not currently implemented)
- ❌ Advertising cookies
10. Children's Privacy
The App is not intended for children under 13. We do not knowingly collect data from children under 13. If we become aware of such collection, we will delete it immediately.
11. Data Portability
While the App does not currently have an automated export feature, you can:
- Manually copy your data from the App interface
- Request a data export from the administrator
- Access your data directly via the Firebase Console if you have credentials
12. International Users
If you access the App from outside the United States:
- Your data will be transferred to and stored in the United States
- By using the App, you consent to this transfer
- U.S. privacy laws will apply to your data
13. Changes to Privacy Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. Continued use of the App after changes constitutes acceptance of the new policy.
14. Your Consent
By using LowerBP, you consent to:
- The collection and use of your information as described in this policy
- Storage of your data in Google Firebase
- The possibility that administrators may access your data for support purposes
✅ Our Privacy Commitment:
- We do NOT sell your data
- We do NOT use your data for advertising
- We do NOT share your data with third parties (except Firebase for hosting)
- Your health data is private and isolated to your account
- You own your data and can delete it at any time