Privacy Policy

Written By Kai Sidhant

Last Updated: October 19, 2025

Introduction

Grandus ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our application that integrates with Fitbit services.

Information We Collect

Information from Fitbit

With your explicit consent, we collect the following data from your Fitbit account:

  • Heart Rate Data: Real-time and historical heart rate measurements

  • Skin Temperature Data: Skin temperature variations recorded by your Fitbit device

  • Profile Information: Basic account information such as your name and Fitbit user ID

Information You Provide

We may also collect:

  • Account registration information (email address, name)

  • Communications with our support team

  • Feedback and survey responses

Automatically Collected Information

  • Device information (browser type, operating system)

  • Usage data (how you interact with our application)

  • IP address and general location data

How We Use Your Information

We use the collected information to:

  • Provide our monitoring and analysis services

  • Generate insights and reports based on your biometric data

  • Improve our application and develop new features

  • Communicate with you about your account and our services

  • Comply with legal obligations

Data Sharing and Disclosure

We do not sell your personal data. We may share your information only in the following circumstances:

  • With Your Consent: When you explicitly authorize us to share your data

  • Service Providers: With trusted third-party vendors who assist in operating our application (all vendors are bound by confidentiality agreements)

  • Legal Requirements: When required by law, court order, or governmental authority

  • Business Transfers: In connection with a merger, acquisition, or sale of assets (you will be notified)

  • Aggregated Data: We may share anonymized, aggregated data that cannot identify you personally

Data Security

We implement appropriate technical and organizational security measures to protect your information, including:

  • Encryption of data in transit and at rest

  • Regular security assessments

  • Access controls and authentication requirements

  • Secure data storage practices

However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

Data Retention

We retain your Fitbit data for as long as your account is active. You may request deletion of your data at any time by contacting us at aks@grandushealth.com.

Your Rights and Choices

You have the right to:

  • Access: Request a copy of the personal data we hold about you

  • Correction: Request correction of inaccurate or incomplete data

  • Deletion: Request deletion of your data

  • Revoke Consent: Disconnect your Fitbit account at any time

  • Data Portability: Request your data in a machine-readable format

  • Opt-Out: Unsubscribe from marketing communications

To exercise these rights, contact us at aks@grandushealth.com.

Third-Party Services

Our application integrates with Fitbit services. Your use of Fitbit devices and services is subject to Fitbit's own privacy policy, available at https://www.fitbit.com/global/us/legal/privacy-policy. We are not responsible for Fitbit's privacy practices.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable laws.

Children's Privacy

Our services are not intended for children under 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

California Privacy Rights

California residents have specific rights under the California Consumer Privacy Act (CCPA), including:

  • Right to know what personal information is collected

  • Right to delete personal information

  • Right to opt-out of the sale of personal information (we do not sell personal information)

  • Right to non-discrimination for exercising privacy rights

GDPR Compliance

If you are in the European Economic Area, you have additional rights under GDPR, including the right to lodge a complaint with a supervisory authority.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. Your continued use of our services after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions or concerns about this Privacy Policy, please contact us:

Grandus Health
Email: aks@grandushealth.com
Address: 149 New Montgomery St 4th Floor, San Francisco, CA, 94105
Phone: 4157187114

Kai Sidhant
Next

Terms of Service