Privacy Policy

Effective Date: October 02, 2025

This Privacy Policy ("Policy") for StressGuru ("Company," "we," "us," or "our") describes how and why we might process your Personal Information when you use our services ("Services"), such as when you:

  • Visit our website at www.stressguru.ai, or any website of ours that links to this Policy.
  • Download and use our mobile application (StressGuru), or any other application of ours that links to this Policy.
  • Use StressGuru. StressGuru is a proactive mental wellness companion that utilizes artificial intelligence and data from your Apple Watch to provide early detection of wellness shifts, personalized insights, and 24/7 AI-driven support directly from your mobile device.
  • Engage with us in other related ways, including any sales, marketing, or events.

This Policy is intended to inform you ("User," "you," "your") of our policies and practices regarding the collection, use, and disclosure of any information that can be used to identify you, hereinafter referred to as "Personal Information." Your use of the Services is contingent upon your acceptance of this Policy. Should you not agree with the terms set forth herein, you are hereby advised to refrain from using our Services.

For inquiries or concerns regarding this Policy, please contact our Data Protection Officer at [email protected].

SUMMARY OF KEY POINTS

This summary provides key points from our Privacy Policy. For a comprehensive understanding, we encourage you to review the full document.

  • What Personal Information do we process? Upon your visitation, use, or navigation of our Services, we may process Personal Information based on your interaction with us, the choices you make, and the features you utilize.
  • Do we process any Sensitive Personal Information? We may process sensitive personal information, when necessary, with your consent or as otherwise permitted by applicable law.
  • How do we process your information? We process your information for the provision, improvement, and administration of our Services; for communication with you; for security and fraud prevention; and for compliance with legal obligations.
  • With which parties do we share Personal Information? We do not sell your personal information. We may share information in specific, limited situations, such as a business transfer, or with affiliates as described below.
  • How is your information secured? We have instituted organizational and technical processes and procedures designed to protect your Personal Information.
  • What are your rights? Depending on your geographical location, applicable privacy law may confer upon you certain rights regarding your Personal Information.
  • How can you exercise your rights? The most direct method to exercise your rights is by submitting a request through our official channels or by contacting us.

TABLE OF CONTENTS

  1. Information We Collect
  2. How We Process Your Information
  3. Legal Bases for Processing Your Information
  4. When and With Whom We Share Your Personal Information
  5. Use of Cookies and Other Tracking Technologies
  6. Artificial Intelligence-Based Products
  7. Social Logins
  8. Data Retention
  9. Information Security
  10. Collection of Information from Minors
  11. Your Privacy Rights
  12. Controls for Do-Not-Track Features
  13. United States Residents' Specific Privacy Rights
  14. Amendments to This Policy
  15. Contact Information
  16. Reviewing, Updating, or Deleting Your Data

1. INFORMATION WE COLLECT

In Short: We collect Personal Information that you voluntarily provide to us.

We collect Personal Information that you provide to us upon registration for the Services, when expressing interest in our products, participating in activities on the Services, or otherwise contacting us. The Personal Information we collect may include:

  • Full Name
  • Email Address
  • Telephone Number
  • Username and Password
  • Date of Birth and Gender

Sensitive Information. Subject to your explicit consent and as permitted by applicable law, we process the following category of sensitive information:

  • Health Data: With your express permission, we access specific health-related data points from the Apple Health application ("HealthKit") on your device. This data is limited to metrics such as heart rate, sleep patterns, and physical activity levels ("HealthKit Data").

Application Data. Should you use our Application, we may collect the following information, provided you grant us access or permission:

  • Apple HealthKit Access: We will request your permission to read specific HealthKit Data. The Application is designed solely to interact with Apple's HealthKit framework; no other third-party health platforms or wearable devices are supported in this version.
  • Push Notifications: We may request your permission to send you push notifications regarding your account or Application features. You may revoke this permission at any time in your device's settings.

All Personal Information you provide must be true, complete, and accurate, and you must notify us of any changes thereto.

2. HOW WE PROCESS YOUR INFORMATION

In Short: We process your information to provide, improve, and administer our Services, to communicate with you, for security and fraud prevention, and to comply with law.

We process your Personal Information for various legitimate business purposes, including:

  • To facilitate account creation, authentication, and management.
  • To deliver Services to the User. This includes processing your HealthKit Data to provide you with wellness insights and to facilitate your interaction with our AI-driven mental wellness support features.
  • To evaluate and improve our Services, products, and your experience. We may process your information when we believe it is necessary to identify usage trends, determine the effectiveness of our campaigns, and to evaluate and improve our Services, products, and your experience.

3. LEGAL BASES FOR PROCESSING YOUR INFORMATION

In Short: We only process your personal information when we believe it is necessary and we have a valid legal reason (i.e., legal basis) to do so under applicable law, like with your consent, to comply with laws, to provide you with services to enter into or fulfill our contractual obligations, to protect your rights, or to fulfill our legitimate business interests.

If you are located in Canada, this section applies to you.

We may process your information if you have given us specific permission (i.e., express consent) to use your personal information for a specific purpose, or in situations where your permission can be inferred (i.e., implied consent). You can withdraw your consent at any time.

In some exceptional cases, we may be legally permitted under applicable law to process your information without your consent, including, for example:

  • If collection is clearly in the interests of an individual and consent cannot be obtained in a timely way
  • For investigations and fraud detection and prevention
  • For business transactions provided certain conditions are met
  • If it is contained in a witness statement and the collection is necessary to assess, process, or settle an insurance claim
  • For identifying injured, ill, or deceased persons and communicating with next of kin
  • If we have reasonable grounds to believe an individual has been, is, or may be victim of financial abuse
  • If it is reasonable to expect collection and use with consent would compromise the availability or the accuracy of the information and the collection is reasonable for purposes related to investigating a breach of an agreement or a contravention of the laws of Canada or a province
  • If disclosure is required to comply with a subpoena, warrant, court order, or rules of the court relating to the production of records

4. WHEN AND WITH WHOM WE SHARE YOUR PERSONAL INFORMATION

In Short: We may share information in specific situations described in this section and/or with the following third parties.

We may need to share your personal information in the following situations:

  • Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
  • Affiliates. We may share your information with our affiliates, in which case we will require those affiliates to honor this Privacy Policy. Affiliates include our parent company and any subsidiaries, joint venture partners, or other companies that we control or that are under common control with us.
  • Business Partners. We may share your information with our business partners to offer you certain products, services, or promotions.

5. USE OF COOKIES AND OTHER TRACKING TECHNOLOGIES

In Short: We may use cookies and other tracking technologies to collect and store your information.

We may use cookies and similar tracking technologies (like web beacons and pixels) to access or store information. Specific information about how we use such technologies and how you can refuse certain cookies is set out in our Cookie Notice.

6. ARTIFICIAL INTELLIGENCE-BASED PRODUCTS

Our Services utilize artificial intelligence ("AI") technologies, including large language models, to provide personalized mental wellness support. When you interact with our AI features:

  • Data Processing: Your inputs (text, voice) and relevant HealthKit Data are processed by our AI models to generate responses and insights.
  • No Human Review: While we monitor system performance, human personnel do not routinely review your specific conversations with the AI unless necessary for safety, legal compliance, or system improvement (with anonymization where possible).
  • Accuracy: AI-generated content may not always be accurate. You should not rely on our AI as a substitute for professional medical advice, diagnosis, or treatment.

7. SOCIAL LOGINS

In Short: If you choose to register or log in to our Services using a social media account, we may have access to certain information about you.

Our Services offer you the ability to register and log in using your third-party social media account details (like your Facebook or Google logins). Where you choose to do this, we will receive certain profile information about you from your social media provider. The profile information we receive may vary depending on the social media provider concerned, but will often include your name, email address, friends list, and profile picture, as well as other information you choose to make public on such a social media platform.

8. DATA RETENTION

In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy unless otherwise required by law.

We will only keep your Personal Information for as long as it is necessary for the purposes set out in this Privacy Policy, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). No purpose in this policy will require us keeping your personal information for longer than the period of time in which users have an account with us.

9. INFORMATION SECURITY

In Short: We aim to protect your Personal Information through a system of organizational and technical security measures.

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any Personal Information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information.

10. COLLECTION OF INFORMATION FROM MINORS

In Short: We do not knowingly collect data from or market to children under 18 years of age.

We do not knowingly solicit data from or market to children under 18 years of age. By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent's use of the Services. If we learn that Personal Information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records.

11. YOUR PRIVACY RIGHTS

In Short: In some regions, such as Canada, you have rights that allow you greater access to and control over your Personal Information. You may review, change, or terminate your account at any time.

In some regions (like Canada), you have certain rights under applicable data protection laws. These may include the right (i) to request access and obtain a copy of your Personal Information, (ii) to request rectification or erasure; (iii) to restrict the processing of your Personal Information; and (iv) if applicable, to data portability. In certain circumstances, you may also have the right to object to the processing of your Personal Information. You can make such a request by contacting us by using the contact details provided in the section "CONTACT INFORMATION" below.

We will consider and act upon any request in accordance with applicable data protection laws.

12. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online.

13. UNITED STATES RESIDENTS' SPECIFIC PRIVACY RIGHTS

In Short: If you are a resident of California, Colorado, Connecticut, Utah or Virginia, you are granted specific rights regarding access to your Personal Information.

California Residents: California Civil Code Section 1798.83, also known as the "Shine The Light" law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.

14. AMENDMENTS TO THIS POLICY

In Short: We will update this Policy as necessary to stay compliant with relevant laws.

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Revised" date and the updated version will be effective as soon as it is accessible. If we make material changes to this Privacy Policy, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information.

15. CONTACT INFORMATION

If you have questions or comments about this Policy, you may contact our Data Protection Officer (DPO) by email at [email protected].

16. REVIEWING, UPDATING, OR DELETING YOUR DATA

Based on the applicable laws of your country, you may have the right to request access to the Personal Information we collect from you, change that information, or delete it. To request to review, update, or delete your Personal Information, please submit a request to [email protected].