Legal

Privacy & Health Data Policy

Applies to: Her Journey: Phase | Her Journey: Carry | Her Journey: Wisdom
Operated by Ziggy Tech Ventures LLC, Las Vegas, NV

Last updated: March 17, 2026

Contents

  1. 1.Who We Are
  2. 2.Health Data We Collect
  3. 3.How We Use Your Data
  4. 4.Data Sharing & Processors
  5. 5.Storage & Security
  6. 6.Washington MHMDA Compliance
  7. 7.FTC Health Breach Notification
  8. 8.Wearable & Connected Devices
  9. 9.Not Medical Advice
  10. 10.Data Retention & Deletion
  11. 11.Children's Privacy (COPPA)
  12. 12.Law Enforcement Requests
  13. 13.Sensitive Health Data Protections
  14. 14.Your Rights (CCPA / GDPR)
  15. 15.Contact
§1

Who We Are

Ziggy Tech Ventures LLC is a Nevada limited liability company (EIN 41-4738365) operating the Her Journey Suite. Contact: ziggytech@icloud.com.

The Suite includes Her Journey: Phase, Her Journey: Carry, and Her Journey: Wisdom — all sharing the privacy commitments described here.

§2

Health Data We Collect

Her Journey: Phase

  • Menstrual cycle dates and patterns
  • Ovulation predictions
  • Mood and symptom logs
  • Partner access data
  • Account email and onboarding responses

Her Journey: Carry

  • Pregnancy dates and due date
  • Week-by-week milestones and journals
  • Mood/symptom logs, baby movement notes
  • Support circle data
  • Account email and onboarding responses

Her Journey: Wisdom

  • Menopause symptom logs (hot flashes, sleep, mood, cognitive, physical)
  • Hormone protocol and HRT/supplement tracking logs
  • Wisdom circle Q&A data and community contributions
  • Account email, onboarding responses, app usage data
§3

How We Use Your Data

We use your health data solely to power the wellness features you chose.

We do

  • Power core wellness features
  • Generate personalized in-app insights
  • Deliver requested notifications and reminders

We never do

  • Sell your data
  • Share with data brokers
  • Use for advertising
  • Give any ad network access to health data
  • Share with employers, insurers, or healthcare systems without explicit consent
  • Use individual health entries to train external AI models
§4

Data Sharing & Processors

We do not sell your data. Ever. We do not share your health data with advertisers, data brokers, or any third party for commercial purposes.

Sub-Processors

SupabaseDatabase & Authentication

Stores your health data and manages authentication. Encrypted in transit (TLS) and at rest (AES-256). Acts as a data processor under our instruction only.

VercelHosting & Edge Network

Serves the application globally. Vercel does not have access to your health data stored in our database.

No other third parties receive your health data. We do not integrate advertising SDKs or any data broker APIs.

§5

Storage & Security

Your wellness and menopause health data is protected by multiple layers of security:

Encryption at rest

All health data stored in Supabase is encrypted at rest using AES-256.

Encryption in transit

All data uses TLS 1.2 or higher in transit.

Row-level security

Supabase RLS ensures you see only your own health data.

No health data in logs

We do not log your specific health entries in server or analytics logs.

Breach notification

Affected users notified without unreasonable delay per FTC requirements.

§6

Washington My Health My Data Act (MHMDA)

We apply Washington MHMDA standards to all users, not just Washington state residents.

Affirmative Consent

Explicit consent logged with timestamp and version before any health data collection.

Right to Access

Request a data export anytime from Settings or at ziggytech@icloud.com.

Right to Correct

Edit health entries directly in-app at any time.

Right to Delete

Deletion requests processed within 30 days.

No Data Sale

We do not sell consumer health data. Period.

Law Enforcement

We notify users of requests unless legally prohibited.

§7

FTC Health Breach Notification

We comply with the FTC Health Breach Notification Rule (16 C.F.R. Part 318). In the event of a breach involving your health data, we notify all affected users without unreasonable delay and within all legally required timeframes.

§8

Wearable & Connected Health Devices

Apple HealthKit

We may request HealthKit data (heart rate, HRV, sleep, activity) to enhance your wellness insights. HealthKit data is used solely within the app — never shared, never used for ads, never uploaded without your explicit consent. Revoke in iOS Settings › Privacy & Security › Health.

Google Fit / Wear OS

Same commitment for Android: wearable data used only for in-app wellness features, never shared or sold.

FDA Disclaimer

Wearable insights are not FDA-cleared medical devices. Do not use them to make medical decisions.

Data Minimization

We request only the data types needed for active features. Additional permissions are requested only when you activate features that require them.

§9

Not Medical Advice

Her Journey: Wisdom is a wellness tool — not a medical device or healthcare provider. Nothing in this app constitutes medical advice, diagnosis, or treatment.

Using this app does not create a clinical relationship. Always consult your doctor or healthcare provider for menopause diagnosis, hormone therapy decisions, medication choices, or any health concern. When in doubt, call your doctor.

§10

Data Retention & Deletion

Delete your account and all health data at any time via Settings › Account › Delete Account or by emailing ziggytech@icloud.com. Deletion is permanent and processed within 30 days. Export your data first.

§11

Children's Privacy (COPPA)

Her Journey: Wisdom is intended for users 13 and older. We do not knowingly collect data from children under 13. Contact ziggytech@icloud.com if you believe a child has registered.

§12

Law Enforcement Requests

We do not proactively share health data with law enforcement and require valid legal process before producing any user data. We notify users of requests unless legally prohibited and apply strict data minimization for sensitive health data.

§13

Sensitive Health Data Protections

Menopause health data — including hormone logs, HRT tracking, and symptom records — receives our highest level of protection.

This data will never be shared with:

  • Employers or potential employers
  • Health insurers, life insurers, or disability insurers
  • Law enforcement, government agencies, or courts — except by valid court order or warrant, which we will contest if legally permissible
  • Data brokers, aggregators, or analytics platforms
  • Any entity for the purpose of profiling or discriminating based on health status

We collect only the minimum data necessary for app functionality and apply strict data minimization practices.

§14

Your Rights (CCPA / GDPR)

California residents (CCPA/CPRA): You have the right to know, access, correct, delete, and opt out of the sale of your personal and health information. We do not sell personal information. Submit requests to ziggytech@icloud.com with subject "CCPA Rights Request — Wisdom."

EU/EEA/UK residents (GDPR): You have rights of access, rectification, erasure, restriction, portability, and objection. Our lawful basis is your explicit consent (Article 9(2)(a) GDPR). Withdraw consent at any time in Settings. Contact ziggytech@icloud.com with subject "GDPR Rights Request — Wisdom."

Access

Know what data we hold

Settings › Export or email us

Correction

Fix inaccurate entries

Edit in-app or contact us

Deletion

Remove all data permanently

Settings › Delete Account or email us

Portability

Get your data in a readable format

Settings › Export My Data

Withdraw Consent

Stop health data collection

Email ziggytech@icloud.com

Opt-Out (CCPA)

Opt out of sale (we don't sell, but you can assert the right)

Email ziggytech@icloud.com

Complaint

Lodge a formal complaint

CA: CPPA (cppa.ca.gov) · EU: your local DPA

§15

Contact

Ziggy Tech Ventures LLC
Las Vegas, Nevada
ziggytech@icloud.com

Subject: "Privacy Rights Request — Wisdom" · We respond within 45 days.