Privacy Policy
Effective date: March 18, 2026
1. Who We Are
Omnio ("we", "us", "our") operates the health data platform at getomn.io. We provide a service that unifies health and fitness data from multiple wearable devices, sensors, and manual inputs into a single platform with AI-powered analytics.
This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website, application, and services (collectively, the "Service").
2. Data We Collect
2.1 Account Information
When you create an account, we collect:
- Email address — used for authentication, account recovery, and service communications.
- Password — stored as a cryptographically secure hash. We never store or have access to your plaintext password.
- Timezone preference — used for displaying data in your local time.
2.2 Health & Fitness Data
When you connect devices or import data, we process health metrics including but not limited to:
- Sleep data — sleep stages, duration, timing, and quality scores.
- Activity data — workouts, steps, calories burned, heart rate zones.
- Physiological data — heart rate variability (HRV), resting heart rate, SpO2, skin temperature.
- Body composition — weight, body fat percentage, muscle mass (from scales or DEXA scans).
- Nutrition data — macronutrient intake, calories, meal logs.
- Environment data — room temperature, humidity, CO2, and other sensor readings from connected home devices.
2.3 Device Credentials
To sync data from your wearable devices, we store encrypted API tokens or OAuth credentials for connected services (e.g., Oura, Garmin, Whoop). These credentials are encrypted at rest using AES-256 encryption and are only used to fetch your health data on your behalf.
2.4 Usage Data
We collect basic operational data to maintain and improve the Service:
- Request timestamps and response times (for performance monitoring).
- Error logs (to diagnose and fix issues).
- Feature usage patterns (aggregated, non-identifying).
2.5 Waitlist Information
If you sign up for our beta waitlist, we collect your email address solely for the purpose of notifying you when access is available.
3. How We Use Your Data
We use your data exclusively to:
- Provide the Service — syncing, storing, visualizing, and analyzing your health data.
- Generate insights — running statistical correlations and AI-powered analysis across your data sources.
- Maintain your account — authentication, authorization, and account management.
- Improve the Service — fixing bugs, improving performance, and developing new features based on aggregate usage patterns.
- Communicate with you — sending essential service notifications (e.g., security alerts, downtime notices).
We do not use your health data for advertising. We do not sell your data. Period.
4. Health & Wearable Data
Health data is sensitive. We treat it with the highest level of care:
- Your data is yours. You can export or delete it at any time.
- Isolation. Each user's health data is logically isolated. No user can access another user's data.
- Model improvement controls. We do not sell your health data. Some product-improvement workflows may use consented data (for example, meal photo training), and you can withdraw that consent.
- Device API access. We request API scopes to fetch your health data from connected devices. You can review and manage these permissions in your account settings or through the device manufacturer's app.
- Credential security. Device API tokens are encrypted at rest and transmitted only over TLS.
5. AI Features & Consent
Omnio includes AI-powered features that process your health data. Consent for these features is captured once during registration or onboarding. This single consent covers:
- Health data processing — syncing, scoring, and analyzing your wearable and manually entered health data.
- AI chat — an AI assistant that can answer questions about your health data. Your queries and relevant health context are sent to a third-party AI provider (OpenAI or Anthropic) to generate responses. Only data necessary to answer your question is included; we do not send your entire health history.
- Face age analysis — estimating biological age from face photos you upload. Photos are processed by our on-premise inference service and are not shared with third parties.
- Meal photo training — using meal photos you upload to improve our nutrition recognition models. Photos are processed on our infrastructure.
You can withdraw consent for individual features at any time from your Settings > Data Management page. Withdrawing consent for a specific feature stops that processing immediately but does not affect other features or your core account.
- Conversation history is stored on our servers so you can revisit past conversations. You can delete conversations at any time.
- AI provider processing terms apply to data sent for chat responses. Depending on provider terms and account configuration, prompts may be retained for security, abuse prevention, or service improvement.
- Consent controls. AI chat sharing requires consent, and you can withdraw consent in account settings to stop future sharing.
- Internal model improvement. Certain internal model-improvement workflows use data only when the relevant consent is active (for example, meal photo training).
- Meal photo analysis. If you use meal photo analysis, your photos may be sent to an AI provider (OpenAI or Anthropic) for nutritional analysis, and provider processing terms apply.
- AI responses are not medical advice. All AI-generated content includes a disclaimer that it is for informational purposes only.
6. Data Storage & Security
We take security seriously and implement industry-standard protections:
- Encryption in transit — all connections use TLS 1.2+ (HTTPS).
- Encryption at rest — sensitive credentials are AES-256 encrypted. Database storage is on encrypted volumes.
- Infrastructure — our servers are hosted in the European Union (Hetzner, Germany) with physical security controls.
- Access control — strict role-based access. Health data is accessible only to the owning user via authenticated API requests.
- Security headers — Content Security Policy (CSP), HSTS, and other HTTP security headers are enforced.
- Token security — authentication uses short-lived JWTs with secure, HttpOnly cookie storage. API tokens are hashed before storage.
7. Data Sharing & Third Parties
We share your personal data only in the following limited circumstances:
| Recipient | Purpose | Data Shared |
|---|---|---|
| Wearable APIs (Oura, Garmin, Whoop) | Data sync on your behalf | Your OAuth/API tokens (to fetch your data) |
| AI Providers (OpenAI, Anthropic) | AI chat feature | Your chat queries + relevant health context |
| Infrastructure (Hetzner) | Server hosting | Encrypted data at rest |
| PostHog | Product analytics and feature flags | Anonymized usage events, feature flag evaluations |
| Sentry | Error monitoring | Error context with sensitive data (tokens, emails, passwords) automatically redacted |
| Stripe | Payment processing | Billing information; card details are handled directly by Stripe and never touch our servers |
| RevenueCat | Subscription management | Subscription status and purchase tokens |
We do not sell, rent, or trade your data with any third party. We do not share data with data brokers, advertisers, or social networks.
8. Cookies & Analytics
We use a minimal set of cookies necessary for the Service to function:
- Authentication cookies — secure, HttpOnly cookies for session management. These are essential for logging in and cannot be disabled.
- Product analytics. We use PostHog for product analytics and feature flags. PostHog is hosted in the United States. Usage data is anonymized and used to improve the Service.
- Error monitoring. We use Sentry for error tracking. Sentry receives error context with sensitive data (tokens, emails, passwords) automatically redacted.
- No advertising trackers. We do not use advertising trackers, social media pixels, or any platform that serves ads based on your data.
9. Data Retention
- Health data — retained for as long as your account is active. You can delete specific data or your entire account at any time.
- Chat conversations — retained for 30 days by default, then automatically deleted. You can manually delete conversations at any time.
- Account data — retained until you delete your account. Upon account deletion, all associated data is permanently removed within 30 days.
- Waitlist emails — retained until the beta period ends or you request removal.
- Server logs — retained for up to 30 days for operational purposes, then automatically purged.
10. Your Rights
Regardless of where you are located, we provide you with the following rights over your data:
- Access — you can view all data we hold about you via the dashboard and API.
- Export — Pro plan subscribers can export their health data at any time. Free-tier users can request a copy of their data by emailing [email protected].
- Correction — you can update your account information at any time.
- Deletion — you can delete specific data, conversations, or your entire account.
- Portability — your data is available in standard formats (JSON, CSV).
- Objection — you can disconnect any data source at any time, stopping further data collection from that source.
- Consent withdrawal — you can withdraw optional consents (such as chat AI sharing and meal-photo training) to stop future processing for those purposes.
To exercise any of these rights, use the in-app settings or contact us.
11. Children's Privacy
The Service is not intended for individuals under 16 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 16, we will delete it promptly.
12. International Data Transfers
Our servers are located in the European Union (Germany). If you access the Service from outside the EU, your data will be transferred to and processed in the EU. By using the Service, you consent to this transfer. EU data protection standards apply to all stored data.
When your data is sent to AI providers (OpenAI, Anthropic) for the chat feature, it may be processed in the United States. These providers operate under contractual data processing agreements.
13. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or a prominent notice on the Service at least 14 days before the changes take effect.
The "Effective date" at the top of this page indicates when the policy was last revised.
14. Contact Us
If you have questions about this Privacy Policy or our data practices, please reach out:
- Contact form: getomn.io/contact
- Email: [email protected]