Privacy Policy

Your privacy is important to us. Learn how we protect your data and respect your rights.

Last Updated: February 12, 2026

Polyphonic (Pty) Ltd, doing business as “Hypo” (“we,” “our,” or “us”), takes your privacy seriously. This Privacy Policy describes how we collect, use, and safeguard personal information when you use our website, mobile applications, digital platforms, and associated products or services (together, the “Services”).

Our Services involve gathering “consumer health data.” For specific information about how we manage this type of data and your rights under applicable state privacy regulations, please see our Consumer Health Data Privacy Policy. When we refer to “Privacy Policy” in this document, we mean both this general policy and the Consumer Health Data Privacy Policy.

Personal Information We Collect

We collect personal information from various sources:

Information You Provide Directly

  • Contact information: Your name, email address, phone number, and mailing address
  • Account details: Username and password for your account
  • Health-related data: Lifestyle habits, medical background, health conditions, lab results, biomarkers, and other wellness metrics you choose to share (see our Consumer Health Data Privacy Policy)
  • Transaction history: Records of your purchases and subscriptions
  • Payment information: Billing name, address, and card details—processed securely by our third-party payment partners; we do not retain complete card numbers
  • Demographics: Age, birth date, and gender
  • Communications: Messages, support requests, and other correspondence you send us
  • Marketing preferences: Your choices regarding promotional communications and how you engage with our marketing

Information from Third Parties

  • Health platform integrations (such as Apple Health, Oura, Whoop, or similar services) when you grant permission
  • Third-party login services, based on that provider's privacy settings
  • Marketing and advertising partners sharing data about your interactions with our promotions
  • Publicly available information sources

Automatically Collected Information

  • Device details: Operating system, device type, browser, screen size, IP address, advertising identifiers, language preferences, carrier information, and general location (city or region)
  • Usage patterns: Pages visited, session duration, referral sources, navigation behavior, timestamps, and email engagement metrics

Technologies We Use

  • Cookies: Small data files that help recognize your browser, remember your preferences, enable functionality, and analyze usage patterns (including Google Analytics for anonymized insights)
  • Local storage: Technologies like HTML5 storage for app-related data
  • Tracking pixels: Web beacons to monitor access and engagement with our content and emails

How We Use Your Information

We process personal information to:

  • Provide our Services: Generate personalized health insights from your shared data, manage your account, process payments, and deliver customer support
  • Communicate with you: Respond to your questions, provide assistance, send service notifications, security alerts, and administrative updates
  • Improve and personalize: Analyze how you use our Services to better understand your needs, tailor your experience, and enhance our features
  • Research and develop: Improve our products through analysis, which may include creating aggregated or anonymized datasets for legitimate business purposes
  • Marketing: Send newsletters, event information, and promotional content where permitted—you can opt out anytime
  • Interest-based advertising: Partner with ad networks to display relevant advertisements based on online activity (we never share consumer health data for advertising)
  • Legal and safety obligations: Comply with laws, respond to legal requests, protect rights and safety, conduct audits, enforce our terms, and prevent fraud or security threats

Important: We never use your health data for advertising purposes, nor do we sell or share it with ad networks, data brokers, or resellers. Health data is used solely to deliver and customize the Services you request.

How We Share Your Information

We may share personal information with:

Service Providers

Third parties that help us operate, including:

  • AI providers (e.g., OpenAI, Anthropic, Google)
  • Cloud infrastructure hosts (e.g., Amazon Web Services)
  • Analytics services for usage insights
  • Payment processors and security partners

Advertising Partners

For interest-based advertising only—we never share consumer health data with advertisers

Legal and Regulatory Bodies

When required by law or reasonably necessary to comply with legal processes or protect legitimate interests

Business Transfers

In connection with mergers, acquisitions, asset sales, reorganizations, or similar transactions; we will make reasonable efforts to notify you

With Your Consent

When you explicitly direct or authorize us to share your information

Your Rights and Choices

Account Management

Log into your account to review and update your personal details

Marketing Opt-Out

Unsubscribe from promotional communications using the links provided in our emails (you'll still receive essential service-related messages)

Consumer Health Data Rights

Depending on your location, you may have the right to:

  • Confirm whether we collect, share, or sell your health data
  • Access your health data
  • Request deletion of your health data
  • Withdraw consent for health data collection or sharing

Some requests may be limited if they affect others' rights, our ability to provide services, or legal compliance. We'll inform you if we cannot fulfill a request and explain why. Identity verification may be required.

We will never retaliate or discriminate against you for exercising your privacy rights.

To submit a request: Email us at privacy@hypo.health

Security Measures

We employ technical, administrative, and physical safeguards to protect your personal information. These include employee training, role-based access controls, and encryption for data both in transit and at rest. However, no security system is completely foolproof, and we cannot guarantee absolute protection against all risks.

Data Retention

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, meet legal and regulatory requirements, or according to our retention policies. We consider factors such as data sensitivity, potential risks, business needs, and legal obligations when determining retention periods.

Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will promptly delete it. Please contact us at privacy@hypo.health if you believe a child under 18 has provided information to us.

In-App Purchases and Apple Consumption Data

By using our app and making in-app purchases, you consent to our sharing of data regarding your usage and consumption of purchased content with Apple, as part of our efforts to resolve refund requests. This information may include details about how you have accessed and interacted with the purchased content.

The purpose of sharing this data is to help Apple make an informed decision regarding refund requests. We ensure that such data sharing is done in compliance with Apple's policies and only as necessary to process your requests.

Changes to This Policy

We may update this Privacy Policy as our Services evolve. Any changes will be posted on this page with an updated effective date. Where required by law, we will provide additional notice (such as via email). Your continued use of our Services after changes are posted constitutes acceptance of the revised policy.

Contact Us

If you have questions about this Privacy Policy, our data practices, or your privacy rights, please contact us at:

privacy@hypo.health