Zoara Health - Pilot Wellness App Privacy Policy
Last Updated: May 14, 2026
Zoara Health Inc. ("Zoara," "Company," "we," "us," or "our") provides a wellness application that helps individuals understand, track, and improve their health and lifestyle using data from wearables, self‑reported information, and other digital sources (the “App”).
This Privacy Policy describes how we collect, use, and protect information about you when you participate in our limited pilot program as a consumer user (“you” or “user”). The pilot is for wellness and experimentation purposes only and is not a substitute for professional medical care or emergency services.
By installing, accessing, or using the App during the pilot, you agree to this Privacy Policy.
1. What this policy covers (and does not cover)
This policy covers information collected through the Zoara pilot wellness App and related pilot communications (for example, onboarding surveys, in‑app messages, email support, and text messages/SMS used to deliver secure links).
The pilot is not intended to provide diagnosis, treatment, or medical advice, and Zoara is not acting as your healthcare provider.
If your use of Zoara is later integrated with a clinic, health system, or insurer, additional privacy terms may apply and will be presented to you at that time.
Wellness Use Only – Not Medical Care or a Medical Device
The Zoara pilot App is intended only for general wellness, education, and self‑tracking. It is not a medical device, does not provide medical care, and is not designed or intended to diagnose, treat, cure, or prevent any disease or medical condition. The insights, scores, trends, and suggestions you see in the App are for informational and wellness purposes only and are not a substitute for professional medical advice, diagnosis, or treatment. Always seek the advice of a physician or other qualified health provider with any questions you may have regarding a medical condition, and never disregard professional medical advice or delay seeking it because of something you see in the App. If you think you may be experiencing a medical emergency, call your local emergency number immediately.
2. Information we collect in the pilot
2.1 Information you provide
When you use the pilot App, you may provide:
Account and contact information
Name, email address, password, and optional profile details (such as age range, gender, or time zone). You may also choose to provide a mobile number so we can send you text messages that contain secure links to access your account or pilot features.
Health and wellness information (self‑reported)
Goals (e.g., improve sleep, increase activity, manage stress).
Lifestyle data (e.g., exercise habits, sleep schedule, nutrition patterns, work schedule).
Self‑reported symptoms, mood, energy, or perceived stress levels.
Feedback and communications
Responses to in‑app surveys or questionnaires.
Feedback on features, user experience, and pilot participation.
Messages you send to Zoara for support or product improvement.
Providing certain information is optional, but some features may not be available without it.
2.2 Information from devices and integrations
With your permission, the pilot may collect data from:
Wearables and health apps
Heart rate, activity, steps, sleep duration/quality, HRV, and similar metrics.
Device‑level identifiers, such as an integration ID or token.
Mobile device and App usage
Device type, operating system, app version.
Basic usage data such as screens viewed, feature usage, and timestamps.
You control which integrations you connect and can disconnect them at any time through your device or platform settings (for example, Apple Health or Google Fit).
2.3 Information collected automatically
The App may automatically collect:
Log data (for example, IP address, date and time of use, performance and crash diagnostics).
In‑app events (for example, buttons clicked, notifications opened, and session length) to help understand engagement and improve the pilot experience.
We do not use this pilot App to track you across unrelated apps or websites for advertising.
3. How we use your information
During this pilot, Zoara uses your information for the following wellness and product‑development purposes:
Provide the pilot experience
Show you insights and visualizations based on your data.
Generate personalized wellness nudges, trends, and suggestions.
Maintain your account, sync connected devices, and ensure basic functionality.
Help you understand and improve your wellness
Combine and analyze your wearable, self‑reported, and lifestyle data to surface patterns related to sleep, activity, stress, or other wellness domains.
Run “what seems to work for you” experiments within the App (for example, how bedtime or activity affects your sleep or energy) and present those results back to you.
Improve and evaluate the product during the pilot
Understand which features are useful, confusing, or unused.
Improve algorithms, user flows, and overall experience.
Evaluate engagement and effectiveness across pilot users in aggregated or de‑identified form.
Communicate with you
Send onboarding instructions, pilot updates, and feature announcements.
Respond to your questions and support requests.
Invite you to surveys, interviews, or optional research sessions about your experience.
Send you text messages that contain secure links (for example, to help you sign in, verify your account, or access specific pilot features). We do not include detailed health information or other sensitive content directly in the body of SMS messages; instead, SMS is used solely as a delivery channel for secure web links.
We may de‑identify or aggregate your data (meaning it cannot reasonably be linked back to you) and use or share those de‑identified insights for research, analytics, or future product planning.
We do not use your pilot data to make decisions about insurance coverage, employment, housing, or credit.
4. How we share your information
During the pilot, Zoara shares your information only in limited situations:
Service providers
We use carefully selected vendors to host our systems, store data securely, send emails and SMS messages, analyze usage, and support error monitoring.
These service providers may access your information only to perform services for Zoara and must protect it under contractual obligations.
Pilot research and analytics (aggregated or de‑identified)
We may share aggregated or de‑identified analytics (for example, “average change in sleep score in the pilot cohort”) with advisors, partners, or internal stakeholders.
These summaries do not identify individual users.
With your consent
If you explicitly ask us to share your data (for example, to export or share with a coach, clinician, or another app), we will do so under your direction.
We will make the scope of that sharing clear at the time of your request.
Legal and safety
We may disclose information if we believe in good faith that it is reasonably necessary to comply with law, protect our rights or property, or protect the safety of you or others.
We do not sell your personal information or use it for targeted advertising in this pilot.
5. Data storage, security, and retention
5.1 Data storage and security
Data from the pilot is stored using reputable cloud infrastructure providers with access controls and security measures designed to protect against unauthorized access, loss, or misuse. Data within these environments is typically encrypted in transit and at rest.
Access to pilot data inside Zoara is limited to team members and contractors who need it to operate, support, or evaluate the pilot, and who are bound by confidentiality obligations.
No system can be guaranteed 100% secure, but Zoara takes reasonable technical and organizational steps to protect your information.
SMS and secure links
When we send you a secure link by SMS, the link is designed so that the underlying content is not visible in the body of the SMS message. Access to information through the link may require you to authenticate (for example, by logging into your Zoara account or completing another verification step), and links may expire after a limited time.
SMS itself is not an end‑to‑end encrypted channel and travels over networks operated by mobile carriers and other third parties that we do not control. While we protect data within our systems and in transit to and from our service providers, messages delivered to your device via SMS may not be encrypted. You are responsible for protecting access to your device and SMS messages (for example, by using a device passcode or other safeguards).
We do not send detailed health information, diagnostic information, or other sensitive content directly in the body of SMS messages. SMS is used only to deliver secure web links or high‑level security codes that enable you to access information within our secure App or web interfaces.
5.2 Data retention for pilot users
We retain your pilot data only as long as needed to:
Provide the pilot experience.
Evaluate and improve our product and pilot outcomes.
Meet legal, security, or contractual requirements.
At the end of the pilot, Zoara may:
De‑identify your data and keep it in an aggregated form to inform future product development.
Delete or archive personally identifiable data within a defined timeframe.
You can request deletion of your account and data at any time (see Section 7). In some cases, we may keep limited records (for example, logs or backups) where required by law, security, or technical constraints, but will restrict their use to those purposes.
6. Your choices and controls
You have several ways to control your information during the pilot:
Profile and settings
You can view and update certain profile information in the App.
Connected devices and integrations
You can connect or disconnect wearables and health apps through the App and/or your device settings. Disconnecting may stop future data flows from that integration.
Communications (email and SMS)
You can opt out of non‑essential emails (for example, newsletters or non‑critical announcements) by using the unsubscribe link in those messages.
If you have provided a mobile number, you may receive SMS messages that contain secure links or codes related to your use of the App. You can opt out of non‑essential SMS messages by following the instructions in the message (for example, replying “STOP”) or by updating your communication preferences, where available. If you need help with SMS messages, you can reply “HELP” or contact us using the information in Section 11.
Certain transactional or service‑related messages (for example, security alerts, verification codes, or essential service notices) may still be sent, even if you opt out of other types of communications, where permitted by law.
7. Your rights (pilot context)
Because this pilot is focused on wellness and product testing, your rights may depend on where you live and the specific laws that apply. At a minimum, you can:
Access
Request confirmation that we have an account for you and obtain a copy of key information we hold in a reasonable, common format.
Correction
Ask us to correct inaccurate personal information you cannot update yourself in the App.
Deletion
Ask us to delete your account and associated personally identifiable data from our active systems, subject to limited exceptions (for example, where retention is required by law or for security and backup).
To exercise these rights or ask questions, contact us using the information in Section 11. We may ask you to verify your identity (for example, via your account email) before responding.
If you live in a region with specific privacy laws (for example, California or certain U.S. states), you may have additional rights; we will try to honor those as applicable and will clarify them in future public releases of the App.
8. Children’s privacy
The pilot is not intended for children under 18.
We do not knowingly invite or allow individuals under 18 to participate in this pilot or create accounts.
If we learn that a pilot account has been created for someone under 18, we will delete that account and associated data.
If you believe a child under 18 has used the pilot App, please contact us so we can investigate and take appropriate action.
9. Third‑party services and links
The pilot App may contain links to third‑party websites or services, or allow optional connections to external platforms (for example, wearable providers).
This Privacy Policy applies only to Zoara’s pilot App and direct communications.
Third‑party services are governed by their own privacy policies and terms, which we encourage you to review.
10. Changes to this pilot privacy policy
Because this is a limited pilot, our practices and the App may evolve quickly.
We may update this Privacy Policy to reflect changes to the pilot or our data practices.
When we make material changes, we will update the “Last Updated” date above and may provide additional notice (for example, via email or in‑app message).
If you continue using the pilot App after a revised policy becomes effective, that use will be treated as acceptance of the updated Privacy Policy.
11. Contact us
If you have questions about this pilot Privacy Policy, our data practices, or your choices, please contact us at:
Zoara Health Inc.
Attn: Privacy Officer
Email: legal@zoara.ai