Privacy Policy

Last updated: June 11, 2025

Introduction

M1 Insights Inc. o/a M1 Labs ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This privacy policy will inform you about how we handle your data when you use our synq application ("the App") and tell you about your privacy rights.

Who We Are

M1 Insights Inc. o/a M1 Labs is the controller and responsible for your personal data collected through the synq application.

If you have any questions about this privacy policy or our privacy practices, please contact us at:

Email: info@m1labs.io

Authentication and Account Information

When you subscribe to Pro or Pro Plus plans and use AI insights features:

  • Email Address: We collect your email address solely for Firebase Authentication to secure your access to API services
  • No Additional Data Collection: We do not collect your name, phone number, or any other personal identifiers
  • Email Usage: Your email address is:
    • Used only for authentication purposes
    • Not shared with third parties (except Firebase for authentication)
    • Not used for marketing or promotional purposes
    • Not included in any data sent to AI services

The Data We Process

IMPORTANT: For all iOS app features except AI insights, we do not collect any data whatsoever. All data remains on your device.

When you use the AI insights feature (Pro/Pro Plus subscribers only), we temporarily process the following data that you voluntarily provide or authorize us to collect from HealthKit:

  • Standard metrics: Cognition, energy, focus, sleep, gut function, libido, mood, motivation, stress, exercise performance
  • Health metrics from Apple HealthKit: Heart rate, heart rate variability, resting heart rate, sleep data (including duration, efficiency, latency, interruptions, and stages), steps, active energy, cardio fitness, respiratory rate
  • Custom metrics: Any custom metrics that you create and track
  • Trial and control data: Information about your trials, controls, practices, nootropics, and stacks

The App is designed with privacy in mind. While we use Firebase Authentication to secure access to our API services, we do not collect or store any other personal information. Your email address is used solely for authentication purposes when accessing AI insights features.

How We Use Your Data

For AI Insights Feature Only:

When you request AI-powered insights, we temporarily process your data to:

  • Generate personalized insights about your health metrics and tracked data
  • Perform statistical analysis including correlation analysis and effect size calculations
  • Identify patterns and relationships in your data
  • Provide evidence-based recommendations

For All Other App Features:

We do not collect or process any data. All functionality operates entirely on your device.

Data Processing with Third Parties

As a subscriber to our Pro or Pro Plus plans, when you use the AI insights feature:

AI Service Providers

We may use the following AI services to analyze your data and generate insights:

  • OpenAI (GPT-4): Primary AI service for generating natural language insights
  • Anthropic (Claude): Alternative AI service for advanced analysis
  • Google (Gemini): Additional AI service for enhanced processing capabilities

How We Protect Your Privacy During AI Processing

  • Pre-processing and Anonymization: Before sending any data to AI services, we:
    • Remove all personal identifiers
    • Apply intelligent data sampling and aggregation
    • Normalize metrics to standard scales
    • Extract only statistical summaries and patterns
  • No Raw Data Transmission: We never send your raw health data to AI providers. Instead, we send pre-processed, anonymized statistical summaries
  • No User Identification: The data sent to AI services contains no information that could identify you as an individual - no names, IDs, or personal identifiers
  • Secure Transmission: All data is transmitted using industry-standard encryption (TLS/HTTPS)
  • Temporary Processing: Your health data is processed in memory and immediately discarded after generating insights. We do NOT permanently store your health data on our servers
  • Purpose Limitation: Data is only used for generating insights about your own health patterns

What We Actually Store

We only store anonymous metadata about AI insight requests for service monitoring and improvement:

  • Request timestamps and processing times
  • Counts of data points, metrics, and trials (not the actual data)
  • Error messages and status codes
  • Anonymous usage statistics

We do NOT store your actual health data, measurements, or personal information.

Advanced Privacy-Preserving Processing

Our API implements sophisticated privacy-preserving techniques:

  • Statistical Aggregation: Converting individual data points into statistical summaries
  • Intelligent Sampling: For large datasets, we sample representative data points rather than sending everything
  • Normalization: Converting different metric types to standard scales that don't reveal actual values
  • Pattern Extraction: Focusing on relationships and patterns rather than individual measurements

Data Security

We implement appropriate technical and organizational measures to protect the security of your data:

  • HTTPS/TLS encryption for all data transmissions
  • Firebase Authentication for secure anonymous user authentication
  • No permanent storage of health data on our servers
  • Automatic data anonymization before any external processing
  • Rate limiting to prevent abuse
  • Regular security assessments of our systems

However, please be aware that no method of transmission over the internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.

Your Choices and Rights

You have complete control over your data:

  • All your health data remains on your device unless you explicitly request AI insights
  • You can use the app without ever sending data to our servers by staying on the free tier
  • You can delete your data from the App at any time
  • You can opt out of AI insights features by cancelling your subscription
  • You control which HealthKit data types the App can access

Under certain circumstances, you have rights under data protection laws in relation to your personal data, including the right to:

  • Request access to your personal data
  • Request correction of your personal data
  • Request erasure of your personal data
  • Object to processing of your personal data
  • Request restriction of processing your personal data
  • Request transfer of your personal data
  • Right to withdraw consent

If you wish to exercise any of these rights, please contact us at info@m1labs.io.

API Call Limits

To ensure fair usage and service quality, we implement the following limits for AI insights:

  • Pro users: 5 AI analysis requests per month
  • Pro Plus users: 15 AI analysis requests per month

These limits reset at the beginning of each calendar month.

Third-Party AI Provider Policies

When you use AI insights, the anonymized data sent to AI providers is subject to their respective privacy policies:

  • OpenAI: May retain data for up to 30 days for safety monitoring
  • Anthropic: Processes data according to their privacy policy
  • Google: Processes data according to their privacy policy

Remember: These providers receive only anonymized, pre-processed statistical data with no personal identifiers.

Changes to the Privacy Policy

We may update our privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the "Last updated" date at the top of this policy.

We encourage you to review this privacy policy periodically for any changes. Changes to this privacy policy are effective when they are posted on this page.

Contact Us

If you have any questions about this privacy policy, please contact us:

Email: info@m1labs.io