Privacy Policy

In accordance with Sections 32 and 35 of the Act, we obtain your explicit consent before collecting or processing any health data. This consent is obtained as follows:

• At Registration: Users who register with an email and password are required to provide explicit consent by selecting a dedicated health data consent checkbox before account creation.
• Third-Party Sign-In: Users who create an account through Google, GitHub, Microsoft, or magic link authentication are presented with a separate consent screen before accessing any health data features.
• Record-Keeping: We record the date and time of consent and the version of this Privacy Policy in effect at the time consent was given.

Withdrawal of Consent

You may withdraw your consent at any time by deleting your account through the Account Settings page. Deletion of your account permanently removes all personal information and health data associated with your account, as described in Section 12 below. Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal.

We do not sell, rent, or trade your personal data. We share data with third-party service providers solely to operate and deliver the Service. Each provider processes data only for the specific purpose described below.

User-Initiated Sharing

You may choose to share your health data with specific individuals (such as caregivers or healthcare providers) through the Service's data sharing features. Such sharing is initiated and controlled entirely by you, and you may revoke access at any time. You may also enable a public profile, which makes your glucose statistics accessible by your username.

Nightscout Integration

If you enable the Nightscout-compatible integration, your glucose data may be transmitted to and from external Nightscout servers that you configure. This integration is entirely user-initiated, and we are not responsible for the privacy practices of third-party Nightscout instances.

Disclosure Required by Law

We may disclose your personal data if required to do so by law, court order, or lawful request by a government authority, including to comply with the requirements of the Act or directions from the ODPC.

Your data is stored and processed in the following jurisdictions:

• Germany: Primary data storage, including the database and file storage. This is the primary jurisdiction for all user data and health data.
• United States: Frontend hosting, email delivery, AI processing, and usage analytics, as described in Section 7.

These transfers are carried out in accordance with Section 48 of the Act. Germany is a member of the European Union and provides an adequate level of data protection under the EU General Data Protection Regulation. For transfers to the United States, we ensure that service providers are contractually bound to protect your data and we limit the data transferred to what is necessary for each specific purpose.

We retain your data as follows:

• Account and Health Data: Retained for as long as your account is active. Historical health data is retained indefinitely during active use, as long-term glucose records are valuable for diabetes management.
• Food Photographs (AI Analysis): Photographs sent to the AI service for carbohydrate estimation are processed in real-time and are not permanently stored by the AI provider after analysis. Uploaded meal photographs are stored in our file storage for your reference.
• Audit Logs: Security and compliance audit logs are retained for the lifetime of the account.
• Inactive Accounts: We reserve the right to delete accounts that have been inactive for more than two (2) years, after providing reasonable notice to the email address on file.

Upon account deletion, all personal information and health data is permanently deleted, as described in Section 12.

We use cookies solely to provide essential functionality of the Service. All cookies used are strictly necessary first-party cookies for authentication and security purposes, including session management, multi-factor authentication, trusted device recognition, and protection against cross-site request forgery during sign-in. We do not use advertising cookies, tracking cookies, or third-party cookies.

All cookies are set with HttpOnly, Secure, and SameSite attributes. You may delete cookies at any time through your browser settings; doing so will require you to sign in again.

Under the Act, you have the following rights regarding your personal data:

• Right of Access (Section 26(a)): You may request confirmation of whether we process your personal data and obtain a copy of such data.
• Right to Rectification (Section 26(c)): You may update or correct your personal information at any time through your profile settings.
• Right to Deletion (Section 26(d)): You may delete your account and all associated data through the Account Settings page.
• Right to Data Portability (Section 26(g)): You may request a copy of your personal data in a structured, machine-readable format. Glucose reports can be exported directly from the Service. For a complete data export, please contact us at info@mysukari.com.
• Right to Withdraw Consent: You may withdraw your consent to health data processing at any time by deleting your account, as described in Section 6.
• Right to Lodge a Complaint: You have the right to lodge a complaint with the Office of the Data Protection Commissioner (ODPC) of Kenya.

To exercise any of these rights, please contact us at info@mysukari.com. We will respond to your request within thirty (30) days.

You may permanently delete your account at any time through the Account Settings page. Account deletion results in the irreversible removal of:

• Your personal information and profile data
• All glucose readings and health data
• All meals, food photographs, and medication records
• All reports and pattern analyses
• All shared access links and caregiver permissions
• All sessions, authentication credentials, and audit logs

Account deletion constitutes withdrawal of your consent for health data processing. This action cannot be undone.

The Service is not directed at children under the age of thirteen (13). We do not knowingly collect personal data from children under 13. If you are under 13, you may not use the Service.

Users between the ages of 13 and 18 may use the Service with the consent of a parent or legal guardian, in accordance with Section 33 of the Act. By allowing a minor to use the Service, the parent or guardian accepts responsibility for the minor's use and agrees to this Privacy Policy on the minor's behalf.

If we become aware that we have collected personal data from a child under 13, we will take steps to delete such data promptly. If you believe a child under 13 has provided us with personal data, please contact us at info@mysukari.com.

We implement appropriate technical and organizational measures to protect your personal data in accordance with the Act. These measures include encryption of data in transit and at rest, secure password storage, multi-factor authentication options, access controls, audit logging, and regular security reviews.

While we strive to protect your personal data, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security.

We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, or applicable law. When we make material changes, we will:

• Update the "Effective Date" at the top of this page
• Notify you via email or a prominent notice within the Service

If changes materially affect how we process your health data, we may request renewed consent. Your continued use of the Service after the effective date of a revised Privacy Policy constitutes acceptance of the updated terms.

For questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please contact us at info@mysukari.com.