Privacy Policy
Last Updated: November 18, 2025
1. Introduction
TheHyWing ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services.
2. Information We Collect
2.1 Personal Information
We collect information that you provide directly to us, including:
- Account Information: Email address, password (encrypted), and profile details
- Health Information: Occupation, work environment, heat exposure data, hydration records, vital signs
- Location Data: Geographic location for weather-based alerts (with your permission)
- Device Information: Device type, operating system, unique device identifiers
2.2 Automatically Collected Information
- App usage data and analytics
- Log data (IP address, timestamps, error logs)
- Weather API data for your location
3. How We Use Your Information
We use the collected information for:
- Service Delivery: Providing heat stress alerts, health monitoring, and medical consultations
- Personalization: Customizing alerts based on your work environment and health profile
- Safety: Sending critical heat stress warnings and emergency notifications
- Communication: Sending service updates, password resets, and consultation reminders
- Analytics: Improving app performance and user experience
- Legal Compliance: Meeting regulatory and security requirements
4. Health Information Protection
We take the protection of your health information seriously:
- All Protected Health Information (PHI) is encrypted at rest and in transit
- Access to health data is logged and monitored for compliance
- We implement HIPAA-aligned security practices
- Health data is only shared with licensed clinicians for consultations you authorize
5. Information Sharing and Disclosure
We do not sell your personal information. We may share your information only in these circumstances:
- Healthcare Providers: With clinicians during scheduled consultations (with your consent)
- Caregivers: With designated caregivers you explicitly authorize
- Service Providers: With trusted third parties who help us operate the service (e.g., email delivery, weather data)
- Legal Requirements: When required by law or to protect rights and safety
- Emergency Situations: To prevent serious harm to you or others
6. Data Security
We implement industry-standard security measures:
- SSL/TLS encryption for all data transmission
- Encrypted database storage
- Secure authentication with JWT tokens
- Regular security audits and monitoring
- Access controls and audit logging
7. Your Rights and Choices
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct your information
- Deletion: Request deletion of your account and data
- Consent Withdrawal: Revoke caregiver access at any time
- Location Services: Disable location tracking in device settings
- Notifications: Opt out of non-critical notifications
8. Data Retention
We retain your information for as long as your account is active or as needed to provide services. Health records may be retained for longer periods to comply with medical record-keeping requirements.
9. Children's Privacy
TheHyWing is not intended for users under 18 years of age. We do not knowingly collect information from children under 18.
10. Third-Party Services
Our app integrates with third-party services:
- Weather APIs: For real-time weather data and forecasts
- Email Service (Brevo): For transactional emails and notifications
- Analytics: For app performance monitoring
- Payments (Paystack): For secure processing of subscription and consultation payments
These services have their own privacy policies, which we encourage you to review.
11. International Data Transfers
Your information may be transferred to and processed in countries other than Nigeria. We ensure appropriate safeguards are in place for such transfers.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification. Continued use of the service after changes constitutes acceptance of the updated policy.
13. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act, including the right to know what personal information is collected and request deletion.
14. European Privacy Rights (GDPR)
If you are in the European Economic Area, you have rights under the General Data Protection Regulation, including data portability and the right to object to processing.
© 2025 TheHyWing. All rights reserved.