by SYNTRIX NeuroSpatial Inc.
Join waitlist

Privacy Policy for Vita

Last Updated: November 16, 2025

Introduction

Welcome to Vita ("we," "our," or "us"). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and protect your personal information.

This Privacy Policy explains how Vita collects, uses, shares, and protects information when you use our mobile application (the "App"). By using Vita, you agree to the collection and use of information in accordance with this policy.

Information We Collect

1. Personal Information You Provide

Account Information:

  • Email address (for account creation and authentication)
  • Name (optional, for personalization)
  • Profile information (optional)

User-Generated Content:

  • Gratitude entries (text and voice recordings)
  • Food logs and meal descriptions
  • Emotion tracking data
  • Personal notes and reflections

Voice Recordings:

  • Voice recordings for gratitude entries (optional)
  • Voice recordings for food logging (optional)
  • Note: Voice recordings are processed by third-party AI services (OpenAI Whisper) for transcription

2. Automatically Collected Information

App Usage Data:

  • Apps you select to gate
  • App launch timestamps
  • Intervention completion status
  • Time spent in app
  • Feature usage patterns
  • Session duration

Device Information:

  • Device model and manufacturer
  • Operating system version
  • App version
  • Device identifiers (for analytics)
  • Language preference
  • Time zone

Health & Wellness Data:

  • Emotion states and intensity levels
  • Food consumption logs
  • Wellbeing metrics
  • Daily activity patterns
  • Screen time data

Technical Data:

  • Crash reports and error logs
  • Performance metrics
  • Network connection type

3. Information from Third-Party Services

Social Media (If Connected):

  • Basic profile information (if you connect social accounts)

Payment Information:

  • Processed through RevenueCat and App Store/Google Play
  • We do not store credit card details

How We Use Your Information

We use your information for the following purposes:

Core Functionality

  • Provide app gating and intervention services
  • Track gratitude practice and emotional wellbeing
  • Generate personalized gratitude prompts
  • Calculate time reclaimed metrics
  • Award badges and track achievements
  • Sync data across devices

AI-Powered Features

  • Analyze emotional eating patterns
  • Detect doomscrolling behaviors
  • Provide personalized insights and recommendations
  • Transcribe voice recordings
  • Parse food descriptions for nutrition data

Product Improvement

  • Analyze usage patterns to improve features
  • Identify and fix bugs
  • Conduct A/B testing
  • Develop new features
  • Optimize user experience

Communication

  • Send transactional emails (password resets, account updates)
  • Send optional notifications about your progress
  • Respond to support requests
  • Share important product updates

Legal & Safety

  • Comply with legal obligations
  • Enforce our Terms of Service
  • Protect against fraud and abuse
  • Ensure platform security

Third-Party Services We Use

Vita integrates with the following third-party services, each with their own privacy policies:

1. Supabase (Backend & Database)

Purpose: User authentication, data storage, and real-time sync

Data Shared: All user data (account info, gratitude entries, emotion logs, food logs)

Location: United States (AWS infrastructure)

Privacy Policy: https://supabase.com/privacy

Data Encryption: In transit (TLS) and at rest (AES-256)

2. OpenAI (AI Processing)

Purpose: Voice transcription (Whisper), food parsing (GPT-4), behavioral analysis (Claude API via Anthropic)

Data Shared: Voice recordings, food descriptions, gratitude entries, emotional context

Data Retention: OpenAI: 30 days (per their API policy)

Privacy Policy:

  • OpenAI: https://openai.com/privacy
  • Anthropic: https://www.anthropic.com/privacy

3. PostHog (Product Analytics)

Purpose: Track feature usage, user behavior, and product analytics

Data Shared: Device info, app usage patterns, feature interactions (anonymized where possible)

Data Retention: 90 days

Privacy Policy: https://posthog.com/privacy

Opt-Out: Available in Settings > Privacy

4. RevenueCat (Subscription Management)

Purpose: Manage in-app subscriptions and purchases

Data Shared: User ID, subscription status, purchase history, device info

Privacy Policy: https://www.revenuecat.com/privacy

Payment Processing: Handled by App Store/Google Play (we never see credit card details)

5. Superwall (Paywall Management)

Purpose: Display and manage subscription paywalls

Data Shared: User ID, subscription status, device info, in-app behavior

Privacy Policy: https://superwall.com/privacy

6. ElevenLabs (Text-to-Speech) - If Implemented

Purpose: Generate guided meditation audio

Data Shared: Text prompts only (no personal information)

Privacy Policy: https://elevenlabs.io/privacy

7. Twilio (SMS/Voice) - If Implemented

Purpose: Send SMS reminders or voice coaching

Data Shared: Phone number (if provided), message content

Privacy Policy: https://www.twilio.com/legal/privacy

Data Storage and Security

Where Your Data Is Stored

  • Primary Database: Supabase (hosted on AWS in United States)
  • Local Device: Encrypted cache for offline functionality (Hive)
  • Backups: Automated backups stored securely in AWS (same region)

Security Measures

  • Encryption in Transit: All data transmitted using TLS 1.3
  • Encryption at Rest: AES-256 encryption for all database data
  • Authentication: Secure JWT tokens with automatic expiration
  • Biometric Protection: Optional Face ID/Touch ID for app access
  • Row Level Security: Database-level access controls (Supabase RLS)
  • Regular Audits: Periodic security assessments

Data Retention

  • Active Accounts: Data retained while your account is active
  • Inactive Accounts: Data retained for 2 years after last activity, then deleted
  • Voice Recordings: Retained for 90 days, then automatically deleted (transcriptions kept)
  • Deleted Accounts: All data permanently deleted within 30 days of account deletion
  • Backups: Backup data purged after 90 days

Your Rights and Choices

Access and Portability

You have the right to:

  • Access all your personal data
  • Export your data in JSON format (Settings > Export Data)
  • Request a copy of your data via email

Correction and Deletion

You have the right to:

  • Edit or update your information in-app
  • Delete specific entries (gratitude, emotions, food logs)
  • Request full account deletion (Settings > Delete Account)

Privacy Controls

You can control:

  • Analytics Opt-Out: Disable PostHog tracking (Settings > Privacy)
  • Voice Recording: Disable voice input features
  • Notifications: Control push notifications
  • Data Sync: Enable/disable cloud sync (local-only mode)

Marketing Communications

You can:

  • Opt out of marketing emails (unsubscribe link in emails)
  • Control in-app promotional messages
  • Note: Transactional emails (password resets) cannot be disabled

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising privacy rights

To exercise these rights, contact us at your-email

European Privacy Rights (GDPR)

If you are in the European Economic Area, you have rights under GDPR:

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

To exercise these rights, contact us at your-email

Children's Privacy

Vita is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

Our Terms of Service require users to be at least 13 years old (or 16 in the EU).

Health Data

Types of Health Data Collected

  • Emotional state (mood tracking)
  • Food consumption logs
  • Wellbeing metrics
  • App usage patterns (screen time)

How We Use Health Data

  • Generate personalized insights
  • Track emotional patterns over time
  • Identify emotional eating behaviors
  • Provide wellness recommendations
  • Calculate time reclaimed from doomscrolling

Health Data Protections

  • Health data is NOT shared with advertisers
  • Health data is NOT sold to third parties
  • Health data is encrypted at rest and in transit
  • Access is restricted to essential services only
  • You can delete health data at any time

HIPAA Compliance

Vita is NOT a HIPAA-covered entity and does not provide medical services. Our app is designed for wellness tracking, not medical diagnosis or treatment. Always consult healthcare professionals for medical advice.

Data Sharing and Disclosure

We DO NOT:

  • Sell your personal information to third parties
  • Share your health data with advertisers
  • Use your gratitude entries for marketing
  • Share your voice recordings publicly
  • Sell or rent your email address

We MAY Share Data:

With Service Providers:

  • Cloud hosting (Supabase/AWS)
  • Analytics providers (PostHog)
  • AI processing (OpenAI, Anthropic)
  • Payment processing (RevenueCat)
  • Customer support tools

For Legal Reasons:

  • To comply with legal obligations
  • To respond to lawful requests from authorities
  • To protect our rights or property
  • To prevent fraud or abuse
  • In connection with legal proceedings

With Your Consent:

  • Community features (if you opt-in to share gratitude publicly)
  • Partner integrations (if you explicitly authorize)

Business Transfers:

  • In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity (you will be notified)

Cookies and Tracking Technologies

What We Use

  • Local Storage: To cache data for offline functionality
  • Session Tokens: To maintain logged-in state
  • Analytics SDKs: PostHog for usage tracking
  • Crash Reporting: To identify and fix bugs

Third-Party Tracking

  • PostHog may use cookies for analytics
  • RevenueCat may use identifiers for subscription tracking
  • You can opt-out of analytics tracking in Settings

Do Not Track

We do not respond to "Do Not Track" browser signals, but you can disable analytics in app settings.

International Data Transfers

Vita is based in the United States of America. Your data may be transferred to and processed in countries outside your residence, including the United States, where our servers (Supabase/AWS) are located.

We ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) for EU data transfers
  • Adequate data protection measures
  • Compliance with applicable data protection laws

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new Privacy Policy in the app
  • Sending an email notification (if you have an account)
  • Displaying a prominent notice in the app

Your continued use of Vita after changes become effective constitutes acceptance of the updated policy.

Version History:

  • v1.0 - November 16, 2025 - Initial Privacy Policy

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: privacy@joinvita.app

Mail:

Syntrix NeuroSpatial Inc. 2261 Market Street STE 85756 San Francisco, CA, 94114 US

Data Protection Officer (if applicable):

DPO Contact Information

Response Time: We aim to respond to all privacy requests within 30 days.

Data Protection Officer (EU/GDPR Only)

If you are in the European Economic Area and have concerns about our data practices, you have the right to lodge a complaint with your local supervisory authority.

Transparency Report

We are committed to transparency. Upon request, we can provide information about:

  • Number of law enforcement requests received
  • Types of data requested
  • Number of accounts affected

Summary (TL;DR)

What we collect:

  • Account info (email, name)
  • Gratitude entries, emotions, food logs
  • App usage and device data
  • Voice recordings (if you use voice features)

How we use it:

  • Provide app functionality
  • Generate personalized insights
  • Improve the product
  • Provide customer support

Who we share with:

  • Essential service providers only (Supabase, OpenAI, PostHog, RevenueCat)
  • We DO NOT sell your data
  • We DO NOT share health data with advertisers

Your rights:

  • Access, export, and delete your data anytime
  • Opt-out of analytics tracking
  • Control voice recording features
  • Delete your account completely

Security:

  • Encrypted in transit and at rest
  • Row-level security
  • Biometric app lock available

Questions?

Email us at your-privacy-email@joinvita.app

This Privacy Policy is effective as of November 16, 2025. By using Vita, you acknowledge that you have read and understood this Privacy Policy.