Romy
Back to Romy

Privacy Policy

How Romy collects, uses, protects, and shares data for connected health and life features.

Last updated: July 6, 2026

Overview

Romy is a private personal operating system for health and life data. This policy explains what we collect, how we use it, and the choices you have.

Romy is not a medical provider, emergency service, or substitute for professional medical advice. Do not use Romy for emergencies.

Information we collect

  • Account information, including name, email, authentication records, settings, and invitation status.
  • Health and life content you add, including notes, goals, protocols, products, symptoms, subjective states, files, lab reports, biomarker readings, radiology reports, and chat messages.
  • Integration data you choose to connect, including wearable, recovery, sleep, activity, workout, body measurement, and provider connection status from services such as WHOOP and Oura.
  • Document and media data you upload or create, including PDFs, images, voice snippets sent for transcription, extracted text, summaries, and metadata.
  • Technical data needed to operate Romy, including device/browser information, IP-derived request metadata, logs, rate-limit records, security events, error reports, and approximate usage events.

How we use information

  • Provide, secure, troubleshoot, and improve Romy.
  • Authenticate users, enforce access controls, and prevent abuse.
  • Sync integrations at your direction and show connected-provider data in the product.
  • Extract, organize, search, summarize, and display health and life information you choose to provide.
  • Generate AI responses, daily briefs, document extraction, trend analysis, and product features you request.
  • Comply with applicable law, respond to valid legal process, and send required notices.

AI and service providers

Romy uses trusted service providers to run the product. That can include cloud hosting, storage, databases, authentication, email delivery, observability, transcription, AI model providers, and integration providers.

When you use AI or document features, the relevant prompts, files, excerpts, and context may be sent to AI infrastructure or model providers to produce the requested output. We limit this to what is needed to provide the feature.

Sharing

  • We do not sell your personal information.
  • We do not share your information for cross-context behavioral advertising.
  • We share information with service providers that process it for Romy.
  • We share information with integration providers when you connect, refresh, revoke, or use that provider.
  • We may disclose information if required by law, to protect Romy or users, or in a business transfer subject to appropriate safeguards.

Your controls

  • Disconnect wearable and provider integrations in the product or at the provider.
  • Export or delete account data where the product exposes those controls.
  • Request access, correction, deletion, portability, or restriction where applicable law gives you those rights.
  • Delete your account from settings. Some limited records may remain when needed for security, legal, backup, or fraud-prevention purposes.

Retention and security

We keep information for as long as needed to provide Romy, comply with obligations, resolve disputes, preserve security, and maintain backups.

We use technical and organizational safeguards such as access controls, encryption, authentication, and operational monitoring. No system can be guaranteed completely secure.

Health privacy laws

Consumer health apps can be subject to privacy and breach-notification rules even when they are not HIPAA-covered entities. Romy is designed to treat health data carefully and to provide notices required by applicable law.

Children and changes

Romy is not intended for children under 18.

We may update this policy as Romy changes. The updated date shows when the policy last changed.