PREPTIMIZE PRIVACY POLICY
Last updated: April 15, 2026
1. WHO WE ARE
Preptimize is operated by DUG Health (info@dughealth.org, +1 877 384 6337). This policy explains how we collect, use, and protect your personal data when you use the Preptimize mobile application.
2. DATA WE COLLECT
Personal information
Name, email address, phone number, and postal address collected when you create an account. Required for account management and app functionality.
Health and fitness data
Vitals including blood pressure, blood glucose, BMI, weight, SpO2, heart rate, body temperature, and respiratory rate. Collected when you enter data manually or when synced from a connected third-party platform. Health data is stored persistently in an encrypted database on your device and on our secure backend servers.
Fitness data
Steps, distance, and activity data synced from Google Fit, Fitbit, or Withings via their official cloud APIs. Optional — requires your explicit authorisation through each platform's own sign-in process. The app does not connect directly to any hardware device, health monitor, or fitness tracker. All integrations are cloud-to-cloud only.
Location data
Precise and approximate location used for automatic appointment check-in via geofencing when you arrive at a registered clinic or healthcare facility. This feature is opt-in and can be disabled at any time in app settings. Background location is only used when this feature is enabled by you.
Communications
Secure messages and emails exchanged with your healthcare providers through the platform. Processed ephemerally for delivery purposes.
Photos
Images you upload as part of your health record or consultation. Processed ephemerally for transmission.
Audio and video
Microphone and camera are accessed only during active, user-initiated telehealth consultations. Audio and video are not recorded or stored by Preptimize.
App activity and diagnostics
Device identifiers, app interaction data, crash logs, and performance diagnostics collected for analytics, fraud prevention, security, and app stability monitoring.
3. WHAT WE DO NOT COLLECT
Payment data: Payments are processed through a Paya-hosted, PCI-compliant payment page. Preptimize does not collect, process, or store any payment card data, bank account information, or financial credentials. No financial data transits through or is stored within the app or our backend systems.
Hardware data: Preptimize does not connect directly to, scan for, or pair with any external hardware device including health monitors, fitness trackers, glucometers, or other peripherals. Bluetooth is used solely to route audio through a paired headset during telehealth consultations.
4. HOW WE USE YOUR DATA
To provide telehealth consultation services and connect you with licensed healthcare providers.
To manage your health record and display historical wellness trends.
To enable appointment scheduling and geofence-based automatic check-in.
To sync health and fitness data from third-party platforms you authorise.
To monitor app performance and fix crashes via Firebase Crashlytics and Sentry.
To send push notifications for appointment reminders and provider messages.
To authenticate your identity using biometrics or username and password.
To facilitate secure payment redirection to our PCI-compliant payment provider.
5. THIRD-PARTY SERVICES
AmericanWell (AWSDK) — telehealth consultation platform
OpenTok (Vonage) — video and audio transmission
Firebase Analytics and Crashlytics (Google) — analytics and crash reporting
Sentry — error monitoring and session diagnostics. Sentry session replay is enabled and may capture screen content during active sessions. PII masking is applied.
Google Play Services — location, authentication, and advertising ID
Fitbit — health and fitness data via cloud API (user-authorised only)
Withings — health data via cloud API (user-authorised only)
Google Fit — fitness data via OAuth API (user-authorised only)
Paya — PCI-compliant payment processing via hosted payment page
6. DATA SECURITY
All data is encrypted in transit using TLS. All data stored on your device is encrypted at rest using AES-256 via SQLCipher. We do not sell your personal data to third parties. Payment data is never stored within the app or our systems.
7. YOUR RIGHTS
You may request access to, correction of, or deletion of your personal data at any time by visiting: https://www.healthfully.io/
8. CHILDREN
This app is intended for users aged 18 and over. We do not knowingly collect data from minors.
9. CONTACT
For privacy enquiries: info@dughealth.org
Phone: +1 877 384 6337
10. CHANGES TO THIS POLICY
We will notify you of material changes to this policy via the app or by email.