HealthBridge ("the app") is a personal health-data bridge: it imports the metrics recorded by your connected provider (such as your Fitbit data made available through Google Health) and writes them into Apple Health on your device. This policy explains exactly what the app does and does not do with your data. In short: your health data stays on your device and is never sent to us.
Health data — never leaves your device. The app reads your health metrics from your connected provider using a read-only authorization and writes them to Apple Health on your iPhone. This data is processed entirely on your device. We do not receive, store, sell, or transmit your health data to our own servers or to any third party for data mining or advertising.
Anonymous diagnostics — optional, no personal data. To keep the app reliable, it can send anonymized operational diagnostics using Apple MetricKit and TelemetryDeck. These signals describe app mechanics only — for example whether a sync succeeded, how long it took (in coarse time ranges), and crash or hang counts. They never include your health values, the dates or times of your health samples, exact record counts, your name, email, or any identifier that can be linked back to you. You can turn diagnostics off at any time in Settings → Privacy → Share Anonymous Diagnostics.
Connecting a provider uses that provider's standard OAuth sign-in. The app requests read-only access to your health data and stores the resulting access token securely on your device only. We never see your provider password, and you can disconnect at any time from within the app, which removes the stored authorization.
HealthBridge's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Data obtained through Google APIs is used solely to provide the app's user-facing feature — writing your health data into Apple Health on your device — and is never transferred to third parties, used for advertising, used to train AI or machine-learning models, or read by humans.
Your health data is processed entirely on your device and is never sent to our servers, so there is no central store of your data for anyone to breach. The OAuth access token used to read from your provider is stored in the iOS Keychain on your device only, and all communication with the provider's APIs happens over encrypted HTTPS/TLS connections. We never see your provider password, and the optional anonymous diagnostics are transmitted without any information that could identify you.
Because your health data stays on your device, we do not retain it — there is nothing for us to delete on our side. The OAuth access token is kept on your device for as long as the app stays connected to your provider; it is removed immediately when you disconnect the provider within the app or delete the app from your device. The optional anonymous diagnostics are not linked to your identity and therefore cannot be associated with, or deleted for, an individual user; you can stop sending them at any time in Settings → Privacy → Share Anonymous Diagnostics.
HealthBridge Pro is a one-time purchase processed by Apple through the App Store. Apple handles the transaction; we do not receive or store your payment details. Purchase data is not linked to your identity by us.
We do not sell your data. We do not share your health data with anyone. The only data that ever leaves your device is the optional, anonymous diagnostics described above.
HealthBridge is not directed to children under 13 and does not knowingly collect personal information from them.
If this policy changes, the updated version will be posted on this page with a new "last updated" date.
Questions about this policy? Email artomal@gmail.com.