Privacy Policy

Last updated: January 26, 2025

1. Introduction

Kori Recovery ("Kori," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services (collectively, the "Service").

Please read this Privacy Policy carefully. By using the Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, name, and password when you create an account
  • Profile Information: Optional profile details you choose to provide
  • Session Data: Recovery session information including activity type, duration, temperature settings, and completion times
  • Journal Entries: Mood ratings, energy levels, notes, and reflections you record
  • Goals: Personal recovery goals and targets you set

2.2 Health Data (Apple HealthKit)

With your explicit permission, Kori may access and store health data from Apple HealthKit, including:

  • Heart rate data during recovery sessions
  • Workout and activity data

Important: Health data from HealthKit is stored locally on your device and in your private, encrypted cloud account. We do not sell, share, or use your health data for advertising purposes. You can revoke HealthKit access at any time through your device settings.

2.3 Automatically Collected Information

  • Device Information: Device type, operating system version, and unique device identifiers
  • Usage Data: App features used, session frequency, and interaction patterns
  • Log Data: Error logs and performance data to improve the Service

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Track your recovery sessions and display progress
  • Calculate streaks, achievements, and statistics
  • Send push notifications and reminders (with your permission)
  • Personalize your experience and provide insights
  • Respond to your requests and provide customer support
  • Analyze usage patterns to improve our features
  • Ensure the security and integrity of the Service

4. Data Storage and Security

Your data is stored securely using Google Firebase, which employs industry-standard encryption and security measures. We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

  • Data is encrypted in transit using TLS/SSL
  • Data is encrypted at rest in our databases
  • Access to user data is strictly limited and logged
  • We regularly review and update our security practices

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

  • Service Providers: With third-party vendors who assist in providing the Service (e.g., cloud hosting, analytics)
  • Legal Requirements: When required by law or to respond to legal process
  • Safety: To protect the rights, property, or safety of Kori, our users, or others
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly authorize us to share your information

6. Your Rights and Choices

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and associated data
  • Export: Export your data in a portable format
  • Opt-out: Disable push notifications or revoke HealthKit access

To exercise these rights, please contact us at privacy@korirecovery.com.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with the Service. If you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal or legitimate business purposes.

8. Children's Privacy

The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. These countries may have different data protection laws. By using the Service, you consent to the transfer of your information to the United States and other countries where we operate.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Kori Recovery

Email: privacy@korirecovery.com

Website: korirecovery.com