PRIVACY POLICY

1.Introduction

Dear user, Health Manager: Blood Pressure (hereinafter referred to as "the company", "our", "me" or "us") takes the protection of your personal data very seriously, and we serve you in accordance with the terms of these privacy policies.

This Privacy Statement describes what personal data the app collects about you, how it uses and shares this data, and your choices regarding the use of your personal data.

Please read the terms and conditions of the Privacy Policy carefully. By using the service, you acknowledge and agree to the entire content of the Privacy Policy. If you disagree with this Privacy Policy, you should not access, register or use any of the Services.

You can reach us by email: healthmanagementteam@outlook.com

2.Amendments and Constraints

Existing laws and requirements for processing personal data may change. These changes and revisions require occasional updates to these data privacy notices. Health Manager: Blood Pressure (hereinafter referred to as ‘Health Manager’) reserves the right to modify these policies at any time. We invite you to periodically review this section for possible updates and changes. Notifications of major changes may be sent to your account via email or system messages.

Services are not intended for anyone who cannot enter into a legally binding contract. Under no circumstances may you use any of the Services or submit information about yourself to us if you are children or if you cannot lawfully enter into a binding contract.

3. The Data We Collect

1) Camera Preview Information: Our heart rate measurement function collects finger preview data through the camera to analyze the user's heart rate.

2) Device information. When you use the Services, we collect device-specific information (such as a mobile phone, computer, or tablet) (identifiers associated with a specific device, browser, or app, such as IMEI identifiers, MAC addresses, Widevine device IDs, Firebase installations ID or Advertising Identifier.)

3) Apply interactive information. User behavior collected through app interactions. In order to provide an adaptive home screen experience and improve our products, we may collect information about the types of applications you open or use on your device through some of our services.

4) Application information and performance. Crash log data for your app, such as the number of app crashes, stack traces, or other information directly related to the crash.

5) User Behavior through App Interactions. In order to provide an adaptive home screen experience and improve our products, we or third-party service providers may collect data about your interactions through certain services, including app IDs and app types.

6) Health information. We collect health-related data including blood pressure, blood sugar, height, weight, age, and gender information recorded by the user, but only to the extent that such information is necessary for us to provide certain services to you and/or your Health Manager. This data is used for the core functions of the app to help users record relevant health information. Please note that we never share your health data to any third-party.

4.Purposes for which we will share your personal data

1) Advertising Service:

We may share the categories of personal data mentioned above for specific commercial purposes, particularly for advertising. This may involve sharing or "selling" information with advertising partners who display ads on our services. For more details regarding the advertising networks that may receive this information, please refer to "Appendix A - Advertising Networks and Their Partners" provided below.

2) Analysis Services:

We utilize personal data to enhance application performance and analyze user behavior for the purpose of improving the user experience. Our Health Manager application employs Google Analytics and Firebase Analytics (Google's analytics service) to collect, process, and utilize data.

Google Analytics: This service may collect information regarding your device type and version, operating system, visited websites, date and time of visits, screen resolution, and IP address.

Firebase-SDK (Software Development Kit): This tool may gather data such as application version, device type, operating system version, installation timestamps, as well as user demographic information like age, gender, and interest group. Additionally, it collects event-driven data such as application installation and launch, crashes, and active triggers like in-app purchases.

By utilizing our application, you implicitly consent to Google processing the collected data and using it for the aforementioned purposes.

5.Additional Data We May Access

In order to provide an enhanced user experience and improve our services, we may also access the following information. By using our product services and features, you will dynamically grant relevant permissions. You have the ability to control these permissions' activation or deactivation in the system settings, although your choices and settings may impact the normal functionality of certain product features. The information that may be accessed, collected, or shared will not be uploaded to our website or any third-party servers. However, certain user device and feature interaction information may be used for application analysis, advertising analysis, or other third-party SDK purposes.

● Monitoring user network status

● Status bar clicks

● Animation display

● Network data requests

● Android 13 notification functionality

● Synchronizing system configurations

● Allowing applications to start automatically

● Monitoring application screen brightness and unlocking

● Status bar display effects

● Vibration

● Background processes

● Modifying system settings

● Modifying system synchronization settings

● Foreground service permissions

● Network permissions

● Listening for device reboot permissions

● Listening for network change permissions

● Device screen wake-up permissions

● Device flashlight permissions

● Advertising permissions

● Vibration permissions

6.Data Storage, Safety and Deletion

We store personal information on servers or other devices equipped with security measures aimed at preventing loss, misuse, and alteration of the information under our control. Additionally, we uphold physical and procedural safeguards designed to safeguard personal information. However, despite these measures, we cannot guarantee that our security measures will entirely prevent unlawful access, theft, or alteration of personal information.

This section outlines our approach to storing personal information and the security measures we have in place to protect it. While we take precautions to safeguard your data, it's important to acknowledge that absolute security cannot be guaranteed.

Health Manager will only retain your personal information for as long as it is needed for the purposes for which it was collected (or any other purpose you have consented to) or for so long as we are required by law to retain it. If your account or access is terminated, we will delete your personal information.

1) Personal data shall be processed and stored as required for the purpose of collection.

a. Personal data collected for the performance of our contract with you will be retained until such contract has been fully fulfilled.

b. Personal data collected for the realization of the legitimate interests of the company shall be retained for as long as is necessary to achieve that purpose. Users can find specific information on the legitimate interests pursued by the Company in the relevant sections of this document or by contacting the Company.

2) With the user's consent, the company may retain personal data for a longer period, provided such consent is not withdrawn. Additionally, companies may be obligated to retain personal data for longer periods when required to comply with legal obligations or as ordered by authorities.

3) Once the retention period expires, the personal data will be deleted. Therefore, the rights of access, deletion, rectification and data portability cannot be enforced after the expiration of the retention period.

4) Log data

User behavior analysis data. The integrated analytics service will use the transmitted information on our behalf to evaluate your use of our applications, to compile reports on activities and to provide further services related to the use. Information may also be transferred to third parties if required by law or processed on behalf of third parties.

7.Third-party service providers

We use various third-party services to help provide our services, such as hosting services Google Cloud Platform, analytics services, Google Analytics and Google Firebase, as well as ad networks and other partners.

1) Advertiser Cookies and Web Beacons. Publishers who advertise on the Internet may use their own cookies, web beacons and other technologies to collect information about you. We do not control publishers' use of such technologies. We may place cookies on your computer or device from publishers or advertisers with whom we contract. This Privacy Policy does not apply to the practices of publishers or other companies that we do not own or control, nor does it apply to people we do not employ or manage.

2) Links. Publisher's website may contain hypertext links to third-party websites. We are not responsible for the privacy practices or content of such other sites.

3) Non-publisher affiliates. We may disclose or transfer personal information to entities wholly owned or controlled by us in our sole discretion.

8.Children's Policy

Our services are not directed at children. If a parent or guardian becomes aware that his or her child has provided us with information without their consent, he or she should contact us immediately and we will take reasonable steps to ensure that such information is deleted from our files.

9.For individuals in the European Economic Area

This section only applies to individuals accessing or using our Services who are located in the European Economic Area at the time the data was collected. When you use certain services, we may ask you to identify your country, or we may rely on your IP address to determine your country.

We act as data controllers for any personal information collected from individuals accessing or using its services. A "data controller" is the entity that determines the purpose and means of processing any personal information. Any third party acting as our service provider or otherwise acting on our behalf is a "data processor" that processes your personal information in accordance with our instructions.

Your personal rights. When you use our services, we provide you with the rights described below. If you would like to exercise your rights under applicable law, please contact us at healthmanagementteam@outlook.com. Please note that when we receive your personal rights request, we may seek to verify your identity to ensure the security of your personal information.

1) The right to be informed; This means anyone processing your personal data must make clear what they are processing, why, and who else the data may be passed to.

2) The right of access; this is your right to see what data is held about you by a Data Controller.

3) The right to rectification; the right to have your data corrected or amended if what is held is incorrect in some way.

4) The right to erasure; under certain circumstances you can ask for your personal data to be deleted. This is also called 'the Right to be Forgotten'. This would apply if the personal data is no longer required for the purposes it was collected for, or your consent for the processing of that data has been withdrawn, or the personal data has been unlawfully processed.

5) The right to restrict processing; this gives the Data Subject the right to ask for a temporary halt to processing of personal data, such as in the case where a dispute or legal case has to be concluded, or the data is being corrected.

6) The right to data portability; a Data Subject has the right to ask for any data supplied directly to the Data Controller by him or her, to be provided in a structured, commonly used, and machine-readable format.

7) The right to object; the Data Subject has the right to object to further processing of their data which is inconsistent with the primary purpose for which it was collected, including profiling, automation, and direct marketing.

8) Rights in relation to automated decision making and profiling; Data Subjects have the right not to be subject to a decision based solely on automated processing.

10.Your California Privacy Rights

The following rights (which may be subject to certain exemptions or derogations) shall apply to individuals covered by the California Consumer Privacy Act (“CCPA”):

1) You have the right to know what personal data is being collected about you and how it is used and shared.

2) You have the right to request the deletion of your personal data. Please note that such deletion may result in us no longer being able to provide you with our Services.

3) You have the right to opt out of the sale of your personal data.

4) You have the right not to be discriminated against for exercising any of these rights or other rights under the CCPA.

5) You have the right to withdraw your consent on which processing is based at any time.