Privacy Policy

Last updated: 8 January 2026

1. Introduction

BioTrack ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our health tracking service.

We understand that health data is highly sensitive. We take our responsibility to protect your data seriously and have implemented appropriate security measures.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, name, password (hashed)
  • Profile Information: Biological sex, date of birth, height
  • Health Data: Biomarker values, test dates, notes
  • Fasting Data: Session times, duration, notes
  • Genetic Data: Genetic marker information, genotypes, risk levels

2.2 Automatically Collected Information

  • Device information (browser type, operating system)
  • Log data (IP address, access times, pages viewed)
  • Usage patterns (features used, session duration)

3. How We Use Your Information

We use your information to:

  • Provide and maintain the BioTrack service
  • Display your health data and trends
  • Calculate personalized reference ranges based on your profile
  • Send you important service updates and security alerts
  • Process your subscription payments
  • Respond to your support requests
  • Improve and optimize our service

4. Data Security

Our Security Measures

  • All data is encrypted in transit using TLS/SSL
  • Passwords are hashed using bcrypt with salt
  • Database access is restricted and monitored
  • Regular security updates and patches

While we implement robust security measures, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

5. Data Sharing and Disclosure

We do NOT sell your data

Your health data is never sold to third parties, advertisers, or data brokers.

We may share your information only in the following circumstances:

  • With your consent: When you explicitly authorize us to share
  • Service providers: With trusted third parties who assist in operating our service (e.g., payment processors, email services), under strict confidentiality agreements
  • Legal requirements: If required by law or in response to valid legal process
  • Safety: To protect the rights, property, or safety of BioTrack, our users, or others

6. Your Rights and Choices

You have the following rights regarding your data:

  • Access: View all your personal data stored in BioTrack
  • Export: Download your data in CSV format (Pro subscription)
  • Correction: Update or correct your personal information
  • Deletion: Delete your account and all associated data
  • Portability: Receive your data in a structured, machine-readable format

To exercise these rights, visit your account settings or contact us at hello@dcannai.com.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide you services. If you delete your account:

  • Your personal data will be deleted within 30 days
  • Backup copies may persist for up to 90 days
  • Anonymized, aggregated data may be retained for analytics

8. Cookies and Tracking

BioTrack uses essential cookies for:

  • Authentication and session management
  • Security and fraud prevention
  • Remembering your preferences

We do not use advertising cookies or sell data to advertisers.

9. Children's Privacy

BioTrack is not intended for use by children under the age of 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us.

10. International Data Transfers

Your data may be processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers, including compliance with applicable data protection laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending an email notification for significant changes

12. Australian Privacy Principles

We comply with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth). Australian residents have specific rights under this legislation, including the right to:

  • Access their personal information
  • Request correction of their personal information
  • Complain about breaches of the APPs

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: hello@dcannai.com

For privacy-related complaints, you may also contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.