Privacy Policy

1. Data Controller

Hendrik Dittmer
Auf der Hude 30
32549 Bad Oeynhausen
Germany
Email: info@myhealthexport.com
Phone: +(49) 1575 1555447

2. Categories of Personal Data We Collect

Health Data (from your smartwatch or wearable device):

  • Heart Rate Variability (HRV)
  • Electrocardiogram (ECG) data
  • Blood Oxygen Level (SpO₂)
  • Heart rate and related biometric indicators
  • Device information (device ID, model, operating system)

Website Data:

  • IP address
  • Browser type and version
  • Pages visited and duration
  • Clicks and navigation patterns
  • Cookies and similar tracking technologies

3. Purpose of Processing

  • To provide health monitoring services via your smartwatch
  • To improve app/website performance and user experience
  • To deliver personalized health insights
  • To comply with legal obligations and ensure data security
  • To analyze website usage and performance via cookies

4. Legal Basis for Processing

  • Health Data: Article 6(1)(a) & Article 9(2)(a) GDPR – your explicit consent
  • Website & Cookie Data: Article 6(1)(a) GDPR – your consent, or Article 6(1)(f) GDPR – legitimate interest for analytics (where applicable)

You may withdraw your consent at any time; this will not affect the lawfulness of prior processing.

5. Cookies and Tracking

Our website uses cookies and similar technologies to improve your browsing experience, for analytics, and to deliver personalized content.

Types of cookies we use:

  • Necessary cookies: Required for website functionality
  • Preferences cookies: Remember user settings
  • Statistics/Analytics cookies: Track visitor behavior to improve services
  • Marketing/Advertising cookies: Serve relevant content or ads

You can manage cookie preferences via your browser or our cookie consent banner.

6. Data Recipients

We do not sell your personal data. Data may be shared with:

  • Service providers under strict agreements (e.g., cloud hosting, analytics)
  • Legal authorities if required by law

7. International Data Transfers

If data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) in accordance with GDPR Article 46.

8. Data Retention

We retain personal data only as long as necessary to provide services or as legally required. Health data and cookie/analytics data are deleted or anonymized once no longer needed.

9. Your GDPR Rights

  • Access your data (Art. 15 GDPR)
  • Rectify inaccuracies (Art. 16 GDPR)
  • Request deletion (Art. 17 GDPR)
  • Restrict processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Withdraw consent (Art. 7(3) GDPR)
  • Lodge a complaint with a supervisory authority (Art. 77 GDPR)

10. Security Measures

We implement technical and organizational measures, including encryption and secure storage, to protect your data.

11. Automated Decision-Making and Profiling

We do not use automated decision-making that produces legal or significant effects.

12. Contact

For questions about this privacy policy or your personal data, please contact us over email:
info@myhealthexport.com