Privacy & Health Data Policy

Ziggy Tech Ventures LLC is a Nevada limited liability company (EIN 41-4738365) operating the Her Journey Suite of applications. Our primary contact for all privacy and legal matters is ziggytech@icloud.com.

The "Her Journey Suite" collectively refers to Her Journey: Phase (menstrual cycle tracking), Her Journey: Carry (pregnancy journey), and Her Journey: Wisdom (menopause navigation). All three apps share the privacy commitments described in this document.

Her Journey: Phase

• Menstrual cycle dates and patterns
• Ovulation predictions and tracking data
• Mood logs and emotional wellness entries
• Symptom logs (physical and emotional)
• Partner access preferences and relationship context data
• Account email, onboarding responses, app usage data

Her Journey: Carry

• Pregnancy dates and estimated due date
• Week-by-week milestone tracking and journal entries
• Mood and symptom logs specific to pregnancy
• Baby movement notes and kick counter data
• Support circle membership data
• Account email, onboarding responses, app usage data

Her Journey: Wisdom

• Menopause symptom logs
• Hormone protocol logs and HRT/supplement tracking
• Wisdom circle Q&A data and community contributions
• Account email, onboarding responses, app usage data

We use your health data exclusively for your benefit — to power the wellness features you chose. Here is our complete commitment:

What we do

• Power core wellness features of your chosen app
• Generate personalized insights and recommendations within the app
• Deliver notifications and reminders you've requested
• Support your account management and data portability

What we never do

• Sell your data to any third party — ever
• Share with data brokers or aggregators
• Use for advertising targeting
• Allow Meta, Google Ads, or any ad network access to your health data
• Share with employers, insurers, or healthcare systems without explicit written consent
• Use individual health entries to train external AI models

We do not sell your data. Ever. We do not share your health data with advertisers, data brokers, or any third party for commercial purposes.

Sub-Processors

Your data passes through two infrastructure providers, both acting strictly as data processors under our instruction:

No other third parties receive your health data. We do not integrate advertising SDKs, analytics that transmit health data externally, or any data broker APIs.

We take the security of your reproductive health data seriously. Here is how we protect it:

We comply fully with the Washington My Health My Data Act and apply it as a standard for all users, not just Washington state residents.

We comply with the FTC Health Breach Notification Rule (16 C.F.R. Part 318). In the event of a security breach involving your health information, we will notify all affected users without unreasonable delay — and within all legally required timeframes. Our notification will describe what happened, what data was involved, and steps you can take to protect yourself.

Apple HealthKit

We may request access to Apple HealthKit data (heart rate, HRV, cycle tracking, sleep, activity) to enhance your wellness insights. HealthKit data is used solely within the app — it is never shared with third parties, never used for advertising, and never uploaded to our servers without your explicit consent. Revoke HealthKit access at any time in iOS Settings › Privacy & Security › Health.

Google Fit / Wear OS

The same commitment applies for Android users. Health data from connected wearables is used only for in-app wellness features — never shared, never sold, never used for ads.

FDA Disclaimer

Wearable-based insights are not FDA-cleared medical devices. Do not use these insights to make medical decisions. Always consult a qualified healthcare provider.

Data Minimization

We request only the specific data types needed for currently active features. Additional permissions are requested only when you activate new features — with a clear explanation each time.

Using this app does not create a doctor-patient relationship. Always consult a qualified healthcare professional — your doctor, OB-GYN, or midwife — for menstrual irregularities, fertility concerns, or any health symptom that concerns you. When in doubt, call your doctor.

We retain your data for as long as your account is active. You can permanently delete your account and all associated health data at any time from Settings › Account › Delete Account, or by emailing ziggytech@icloud.com.

Deletion is permanent and irreversible. All health entries, logs, onboarding data, and account information will be removed within 30 days. Export your data from Settings before deleting.

Her Journey: Phase is intended for users aged 13 and older. We do not knowingly collect personal information from children under 13. If you believe a child has created an account, contact us immediately at ziggytech@icloud.com.

We do not proactively share your health data with law enforcement. We require a valid legal process (warrant, court order, or subpoena) before producing any user data, and we review all requests for legal sufficiency.

We notify you of law enforcement requests for your data unless legally prohibited. In jurisdictions where reproductive health data may be subject to subpoena, we apply strict data minimization — collecting only what is needed for app functionality, and retaining no location data tied to reproductive health events.

This data will never be shared with:

• Employers or potential employers
• Health insurers, life insurers, or disability insurers
• Law enforcement, government agencies, or courts — except by valid court order or warrant, which we will contest if legally permissible
• Data brokers, aggregators, or analytics platforms
• Any entity for the purpose of tracking reproductive choices or outcomes

We collect only the minimum data necessary for app functionality. We do not collect or store location data tied to reproductive health events. In jurisdictions where reproductive health data may be subject to legal compulsion, we apply data minimization as a first line of defense.

California residents (CCPA/CPRA): You have the right to know, access, correct, delete, and opt out of the sale of your personal and health information. We do not sell personal information. Submit requests to ziggytech@icloud.com with subject "CCPA Rights Request — Phase."

EU/EEA/UK residents (GDPR): You have rights of access, rectification, erasure ("right to be forgotten"), restriction, portability, and objection. Our lawful basis for processing health data is your explicit consent (Article 9(2)(a) GDPR). Withdraw consent at any time in Settings. To exercise GDPR rights, contact ziggytech@icloud.com with subject "GDPR Rights Request — Phase."

Ziggy Tech Ventures LLC
Las Vegas, Nevada
ziggytech@icloud.com

For privacy rights requests, use subject: "Privacy Rights Request — Phase"
For health data deletion: "Health Data Deletion — Phase"
We will respond within 45 days of a verified request.