Summary: We process health-related features primarily on-device. By default, no Apple Health/HealthKit data leaves your device. We collect minimal diagnostics to improve reliability. You can disable diagnostics. We do not sell data or use HealthKit data for advertising.
Who we are
Nexus Point Innovations LLC (“NPI”, “we”, “us”) builds SomataQuest, a personal health, recovery, and training app.
Location: United States (Illinois)
Contact: privacy@nexuspointinnovations.com
What this policy covers
- The SomataQuest iOS & Apple Watch app
- Our website: nexuspointinnovations.com
- Pre-release distributions via TestFlight
- Support communications (email or in-app)
This policy does not cover third-party services you connect independently; their policies apply.
Data we collect
1) Data you provide
- Account & profile (if enabled): name/alias, email.
- Support messages: content you send via email or in-app forms.
- Surveys/prompts: optional feedback you choose to provide.
2) Health & fitness data (Apple Health / HealthKit)
- What: With your explicit permission, the app may read/write categories such as heart rate, HRV, resting heart rate, sleep, workouts, mindful minutes, and similar.
- Where processed: By default on-device for features like readiness and recommendations.
- Server storage: By default, we do not receive HealthKit data. If a future cloud backup/sharing feature is offered, it will be opt-in, clearly explained, and revocable.
- No ads / no sale: We do not use HealthKit data for advertising and do not sell it.
3) App diagnostics & usage
- Crash logs & performance metrics: May be provided by Apple and shown to us in aggregate (device model, OS version, timestamps, stack traces).
- In-app analytics (if enabled): High-level, privacy-respecting events (e.g., feature usage counts) to improve UX. We avoid collecting personally identifying content or HealthKit values.
4) Website data
- Log data: IP address, user-agent, pages visited, timestamps.
- Cookies/local storage: Only what’s necessary for basic site functionality and optional analytics.
How we use data
- Provide core features (readiness scoring, training suggestions, widgets, notifications).
- Improve reliability, performance, and user experience.
- Communicate with you (support, updates, security notices).
- Comply with legal obligations and enforce terms.
We do not use HealthKit data for marketing or advertising.
Legal bases (EEA/UK)
- Performance of a contract (to deliver requested features).
- Legitimate interests (to maintain and improve services).
- Consent (for HealthKit access/processing and certain analytics). You can withdraw consent in iOS Settings > Health > Data Access & Devices and in-app settings where provided.
Data retention
- HealthKit data: Stored on your device; no server copy unless you explicitly opt into a future cloud feature (then you can request deletion).
- Diagnostics/analytics: Retained only as long as needed to troubleshoot and improve the app, then aggregated or deleted.
- Support emails: Retained as needed to respond and maintain records.
Your choices & rights
- Health permissions: Manage in Settings > Privacy & Security > Health (or Health app > Profile > Privacy).
- Notifications & sensors: Manage in Settings on your device.
- Access/deletion/correction: Email privacy@nexuspointinnovations.com. If we hold data about you, we’ll help you access or delete it unless an exception applies.
- Do Not Track: We do not respond to DNT signals; we aim to minimize tracking by design.
- EEA/UK: Rights to access, rectify, erase, restrict, object, portability, and complain to a supervisory authority.
- California (CCPA/CPRA): We do not “sell” or “share” personal information as defined by CPRA. You may request disclosure or deletion via privacy@nexuspointinnovations.com.
Children’s privacy
SomataQuest is not directed to children under 13, and we do not knowingly collect personal information from them. In regions with higher age thresholds, we honor those requirements. If you believe a child has provided personal information, contact us to delete it.
Security
We use administrative, technical, and organizational measures appropriate to the nature of the data we process. No method of transmission or storage is 100% secure. Please keep your device and OS up to date and use a passcode/biometrics.
International transfers
If we process data outside your home jurisdiction, we use appropriate safeguards (e.g., standard contractual clauses, data-processing agreements) where required.
Changes to this policy
We may update this policy as our services evolve. If changes are material, we will provide a prominent notice in the app or on the Site and update the “Effective date.”
Contact
Questions or requests: privacy@nexuspointinnovations.com
App Store Privacy “Nutrition Label” (summary)
- Data linked to you: Account/contact info (if you create one), support communications.
- Data not linked to you: Aggregated diagnostics/analytics.
- Health data (HealthKit): Processed on-device; not collected by us unless you explicitly opt in to a cloud feature. Not used for advertising; not sold.