Privacy Policy

Last updated: November 5, 2024

Introduction

M1 Insights Inc. o/a M1 Labs ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This privacy policy will inform you about how we handle your data when you use our synqology application ("the App") and tell you about your privacy rights.

Who We Are

M1 Insights Inc. o/a M1 Labs is the controller and responsible for your personal data collected through the synqology application.

If you have any questions about this privacy policy or our privacy practices, please contact us at:

Email: info@m1labs.io

Authentication and Account Information

When you subscribe to Pro or Pro Max plans and use AI insights features:

  • Email Address: We collect your email address solely for Firebase Authentication to secure your access to API services
  • No Additional Data Collection: We do not collect your name, phone number, or any other personal identifiers
  • Email Usage: Your email address is:
    • Used only for authentication purposes
    • Not shared with third parties (except Firebase for authentication)
    • Not used for marketing or promotional purposes
    • Not included in any data sent to AI services

Data Storage in Google Cloud Firestore

When you use synqology, we store the following data in Google Cloud Firestore (encrypted with AES-256) to enable personalized AI analysis and progress tracking:

Health & Tracking Data:

  • Supplements: Names, dosages, strengths, manufacturers, and tracking metadata
  • Practices: Activity names, quantities (e.g., "20 minutes"), and tracking information
  • Stacks: Combinations of your supplements and practices
  • Trials & Controls: Experiment metadata (names, selected metrics, start/end dates, status)
  • Dose Logs: Timestamps of when you took supplements/practices and trial references
  • Metric Logs: Your subjective assessment ratings (-2 to +2 scale) for each metric
  • Custom Metrics: User-defined metric names, types, units, and baseline values
  • Apple HealthKit Data: Heart rate, HRV, resting heart rate, sleep stages, steps, active energy, cardio fitness, respiratory rate - uploaded to enable AI analysis of correlations between supplements/practices and health outcomes
  • Firebase UID: Anonymous identifier (Free tier) or email-based identifier (Pro tier)

Data Security:

  • All data encrypted at rest (AES-256) and in transit (TLS 1.3)
  • Stored in HIPAA-compliant Google Cloud infrastructure
  • Access protected by Firebase Authentication
  • You can delete all your data anytime through the app or by contacting us

How We Use Your Data

For AI Chat & Scientific Analysis Features:

When you use synqAI chat or request AI-powered insights, we temporarily process your data to:

  • Generate personalized, scientifically-backed insights about your health metrics and tracked data
  • Perform statistical analysis including correlation analysis, effect size calculations, and trend detection
  • Analyze your supplement trials, doses, and metrics to optimize your health regimen
  • Search and provide relevant scientific citations from our database of 12,000+ peer-reviewed studies
  • Identify patterns and relationships in your data using AI-powered analysis
  • Provide evidence-based recommendations backed by scientific research
  • Answer your questions about supplements, health metrics, and experiment results

For All Other App Features:

We do not collect or process any data. All functionality operates entirely on your device.

Data Processing with Third Parties

As a subscriber to our Pro or Pro Max plans, when you use synqAI chat or AI insights features:

AI Service Providers

We use the following AI services to analyze your data and generate insights:

  • Google (Gemini): Primary AI service for conversational analysis and personalized health insights
  • Anthropic (Claude): Advanced AI service for deep scientific reasoning and complex data analysis
  • OpenAI (GPT-4): Additional AI service for natural language insights and research synthesis

Scientific Research Database

synqAI has access to a curated database of over 12,000 peer-reviewed scientific studies to provide evidence-based recommendations:

  • Citations are retrieved based on relevance to your supplements, practices, and health metrics
  • All recommendations are backed by published scientific research when available
  • Research database includes PubMed studies, clinical trials, and systematic reviews

How We Protect Your Privacy During AI Processing

  • Pre-processing and Anonymization: Before sending any data to AI services, we:
    • Remove all personal identifiers
    • Apply intelligent data sampling and aggregation
    • Normalize metrics to standard scales
    • Extract only statistical summaries and patterns
  • No Raw Data Transmission: We never send your raw health data to AI providers. Instead, we send pre-processed, anonymized statistical summaries
  • No User Identification: The data sent to AI services contains no information that could identify you as an individual - no names, IDs, or personal identifiers
  • Secure Transmission: All data is transmitted using industry-standard encryption (TLS/HTTPS)
  • Secure Storage: Your health data (supplements, practices, trials, assessments) is securely stored in Google Cloud Firestore with bank-level encryption. When you chat with synqAI, this data is processed by AI services to generate insights, then the AI processing results are discarded. Your underlying data remains in Firestore until you delete it
  • Purpose Limitation: Data is only used for generating insights about your own health patterns

What We Store in Firestore (When Using synqAI Chat)

Your synqAI chat data is stored in Google Cloud Firestore with the following structure:

  • User Data: Supplements, practices, stacks, trials, controls, dose logs, metric assessments, and custom metrics (as detailed above)
  • Purpose: To enable synqAI to analyze your experiment results, provide personalized recommendations, and answer questions about your data
  • Retention: Data remains in Firestore as long as you use synqAI chat. You can delete it anytime through the app
  • Security: Protected by Firebase Authentication, encrypted in transit and at rest

What We Store About API Requests

For service monitoring and improvement, we log anonymous metadata about AI requests:

  • Request timestamps and processing times
  • Counts of data points, metrics, and trials (not the actual data values)
  • Error messages and status codes
  • Anonymous usage statistics

We do NOT store:

  • Names or other personal identifiers beyond Firebase UID and email
  • Location data
  • Photos or videos
  • Financial information

Advanced Privacy-Preserving Processing

Our API implements sophisticated privacy-preserving techniques:

  • Statistical Aggregation: Converting individual data points into statistical summaries
  • Intelligent Sampling: For large datasets, we sample representative data points rather than sending everything
  • Normalization: Converting different metric types to standard scales that don't reveal actual values
  • Pattern Extraction: Focusing on relationships and patterns rather than individual measurements

Data Security

We implement appropriate technical and organizational measures to protect the security of your data:

  • HTTPS/TLS 1.3 encryption for all data transmissions (bank-level security)
  • Firebase Authentication for secure user authentication
  • AES-256 encryption at rest for all data stored in Google Cloud Firestore
  • Automatic data anonymization before AI processing (no personal identifiers sent)
  • Rate limiting to prevent abuse (60 requests/hour, 500/day)
  • Input validation to block malicious code injection
  • Regular security assessments and quarterly audits

However, please be aware that no method of transmission over the internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.

Your Choices and Rights

You have complete control over your data:

  • All your health data remains on your device unless you explicitly request AI insights
  • You can use the app without ever sending data to our servers by staying on the free tier
  • You can delete your data from the App at any time
  • You can opt out of AI insights features by cancelling your subscription
  • You control which HealthKit data types the App can access

Under certain circumstances, you have rights under data protection laws in relation to your personal data, including the right to:

  • Request access to your personal data
  • Request correction of your personal data
  • Request erasure of your personal data
  • Object to processing of your personal data
  • Request restriction of processing your personal data
  • Request transfer of your personal data
  • Right to withdraw consent

If you wish to exercise any of these rights, please contact us at info@m1labs.io.

AI Chat Message Limits

To ensure fair usage and service quality, we implement the following limits for synqAI chat:

  • Free users: 5 AI chat messages per month
  • Pro users: 75 AI chat messages per month
  • Pro Max users: 1000 AI chat messages per month

These limits reset at the beginning of each calendar month.

Third-Party AI Provider Policies

When you use AI insights, the anonymized data sent to AI providers is subject to their respective privacy policies:

  • OpenAI: May retain data for up to 30 days for safety monitoring
  • Anthropic: Processes data according to their privacy policy
  • Google: Processes data according to their privacy policy

Remember: These providers receive only anonymized, pre-processed statistical data with no personal identifiers.

Changes to the Privacy Policy

We may update our privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the "Last updated" date at the top of this policy.

We encourage you to review this privacy policy periodically for any changes. Changes to this privacy policy are effective when they are posted on this page.

Contact Us

If you have any questions about this privacy policy, please contact us:

Email: info@m1labs.io