Herra.← Back to Home

Privacy Policy

WE DO NOT SELL, TRADE, OR RENT your personal information to anyone, under any circumstances.

Our use of your information is solely for the purpose of providing and improving our services to you (see Section 6 below for more). You may choose to share your personal information with third parties, and you remain the owner of your data and may delete it at any time.

PLEASE NOTE that we do not provide medical advice. For more details, see our EULA.

1. Introduction

Herra ("Company," "we," "us," or "our") respects your privacy and is committed to protecting it through compliance with this policy.

This policy explains:

  • The types of information we may collect or that you may provide when you download, install, access, or use the Herra mobile application (the "App").
  • Our practices for collecting, using, maintaining, protecting, and disclosing that information.

This policy applies only to information collected through the App or electronic communications sent through or in connection with the App. It does not apply to:

  • Information collected outside of the App.
  • Information provided to or collected by any third party not integrated into the App.

By downloading, installing, or using the App, you agree to this Privacy Policy. If you do not agree, do not use the App. We may update this policy from time to time. Your continued use after updates means you accept the changes.

2. No Sale of Data

We do not sell, trade, or rent your personal information. Any data you share is used only to operate, improve, and personalize the App. For questions, contact support@herra.co.

3. No Children Under 13

The App is not intended for children under 13 years of age, and we do not knowingly collect information from them. If we learn we have collected personal information from a child under 13 without parental consent, we will delete it immediately.

4. Information We Collect and How We Collect It

We collect information:

  • Directly from you, when you enter it in the App
  • Automatically, when you use the App.

A. Information You Provide

When using Herra, you may provide:

  • Account Information: name or nickname, email address, login credentials.
  • Health Data: symptom logs, menstrual cycle details, and lifestyle factors.
  • Feedback & Communication: messages, bug reports, survey responses, or support requests.
  • Transaction Data (if applicable): billing information processed securely by the App Store.

You provide this information when creating an account, logging data, or communicating with us.

B. Information Collected Automatically

When you download, install, or use the App, we may automatically collect:

  • Usage Details: app actions, feature use, error logs, and session times.
  • Device Information: device model, OS version, network type, IP address.
  • Cookies and Analytics: small identifiers to store preferences and track basic usage.

If you do not want us to collect this information, do not download or use the App, or adjust your device settings.

C. Google User Data

Data Accessed: When you sign in with your Google Account, we access your Google email address and public profile information (name and profile picture).

Data Usage: We use this data solely to create your account, authenticate your login, and personalize your user profile within the App. We do not use this data for any other purpose.

Limited Use Disclosure: Herra's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

D. Apple User Data

Data Accessed: When you use Sign in with Apple, we receive a unique, stable user identifier and, optionally, your email address. You may choose to hide your email address using Apple's Private Email Relay service, in which case Apple provides us with a unique, anonymized email address that forwards to your personal email.

Data Usage: We use this data solely to create your account, authenticate your login, and communicate with you regarding your account and the App. We do not use this data for any other purpose.

Privacy Controls: Apple's Sign in with Apple gives you control over the information you share. You can choose to share or hide your real email address, and you can stop using Sign in with Apple at any time by managing your account in your Apple ID settings.

5. Third-Party Service Providers

We use third-party service providers to help us operate the App. These include Supabase (for secure database storage and authentication) and PostHog (for internal product analytics). These providers access your data only to perform tasks on our behalf and are obligated not to disclose or use it for any other purpose.

6. How We Use Your Information

We use information to:

  • Operate and improve the App;
  • Personalize insights, trends, and recommendations;
  • Debug issues and measure performance during beta testing;
  • Communicate updates, respond to inquiries, or send notices; and
  • Comply with legal requirements or protect user safety.

We may use aggregated or de-identified data for analytics or product research, but not for advertising or sale.

We do not use or disclose Health Data to third parties for advertising, marketing, or other use-based data mining purposes.

7. Disclosure and Sharing of Information

We do not sell your personal information. We only share data with third parties in the following limited circumstances:

Service Providers: We share data with Supabase to securely store your account and profile information, and PostHog to analyze app performance and user engagement.

Analytics Disclosure: PostHog is used for internal analytics only. We do not use PostHog to track your activity across other companies' apps or websites, nor do we sell this data to any third party.

No Advertising: We do not use or transfer Google user data for serving advertisements, including retargeting, personalized, or interest-based advertising. We do not share Google user data with any third-party ad networks.

Other Limited Disclosures:

  • To comply with legal requests or enforce our Terms;
  • To protect our rights, property, or safety, or that of others;
  • As part of a merger or asset transfer; or
  • With your explicit consent.

We may share aggregated or anonymized data that cannot identify you.

8. Your Choices and Controls

You can:

  • Edit or delete your data in the App;
  • Opt out of promotional emails by following "unsubscribe" links;
  • Disable cookies or adjust privacy settings on your device (note: some features may not work).
  • To request access, correction, or deletion of your information, contact support@herra.co

9. Data Security and Protection

We implement robust technical and administrative measures to protect your data:

Encryption: All user data, including data obtained via Google, is encrypted in transit using TLS 1.2+ and encrypted at rest using AES-256.

Access Control: Access to our database is strictly limited to authorized personnel and is gated by multi-factor authentication.

Hosting: Our infrastructure is hosted on Supabase/AWS, which maintains industry-standard security certifications (SOC2, ISO 27001).

However, no system is completely secure. You are responsible for maintaining your account credentials and device security.

10. Data Retention and Deletion

Retention: We retain your account information for as long as your account is active. If your account is inactive for more than 24 months, we may anonymize or delete your data.

Deletion Process: You may request the deletion of your account and all associated data at any time by:

  • Navigating to Settings > Delete Account within the Herra app.
  • Emailing us at support@herra.co with the subject line "Data Deletion Request."

Timeline: Once a request is received, we will delete your personal data from our active databases within 30 days. All associated data, including data stored via Supabase, is permanently purged upon account deletion.

We may retain certain data as required by law or for legitimate business purposes (e.g., resolving disputes or enforcing agreements).

11. U.S.-Only Service

Herra is based in the United States and is intended for U.S. users. If you access the App from outside the U.S., your data may be transferred to and processed under U.S. laws, which may differ from those in your country.

12. Changes to This Policy

We may update this Privacy Policy periodically. If changes are material, we will notify you by email or in-App notice. The latest version will always be available in the App.

13. Contact Us

If you have any questions or privacy concerns, please contact: support@herra.co