Back to NURA
Last updated: 19 June 2026

Privacy Policy

This page is maintained by NURA to explain how the NURA app handles your information. It is written to align with the EU/UK General Data Protection Regulation (GDPR) and the UK GDPR. It is not a certification.

01

Who we are

NURA ("we", "us") is the data controller responsible for personal data processed through the NURA mobile and web application (the "App").

For any privacy question, request, or complaint, contact us at Nura.health@gmail.com. Where applicable, our data protection contact is Nura.health@gmail.com.

02

What this app is

NURA is a consumer wellness assistant focused on hydration, digestion, and daily health habits. It is not a medical device and does not provide diagnosis or treatment. Always consult a licensed professional for medical concerns.

03

Data we collect

We only collect what we need to run the App for you:

  • Account: email address and an authentication identifier when you sign up.
  • Profile: name, age, sex, height, weight, language preference, notification preferences, optional health notes (allergies/conditions), and optional favorite foods.
  • Scan results: the AI's text output about your scan (summary, possible causes, next steps, risk level, confidence, capture quality, any red-flag indicators). We do not store your scan photos. Photos are sent once to our AI provider for analysis and immediately discarded after a response is returned.
  • Plans & progress: plan items you accept, habit check-ins, hydration/meal counts, feel logs, milestones, and streaks.
  • Device & technical: push notification token (if enabled), app language, and minimal error/diagnostic logs to keep the App reliable.
04

What we do NOT collect

  • No precise location.
  • No access to your contacts, calendar, or photo library beyond a photo you actively pick or capture for a scan.
  • No advertising identifiers and no third-party advertising/tracking SDKs.
  • We do not sell your personal data, ever.
06

How we use your data

  • To analyze the photo or document you submit and return wellness guidance.
  • To build a personalized plan and progress dashboard, using your profile and favorite foods so meal suggestions feel familiar while respecting any allergies or conditions you list.
  • To send reminders you opted into (e.g., hydration, check-ins).
  • To improve safety (e.g., showing a red-flag banner when needed).

We do not use your data for advertising or for training third-party AI models.

07

Sub-processors

We use a small number of trusted providers to operate the App:

  • Supabase.com — hosting, authentication, database, and file storage for your account and plan data.
  • OpenRouter and the underlying AI model providers — receive your scan photo and prompt text to generate the analysis. The photo is processed transiently and discarded; only the resulting text is returned to NURA.
  • Apple App Store and Google Play — distribute the App and process in-app purchases / subscription receipts. We do not receive your payment card details.
08

International transfers

Some sub-processors above may process data outside the European Economic Area or the United Kingdom (for example, in the United States). Where this happens, transfers rely on appropriate safeguards such as the EU Standard Contractual Clauses and the providers' published transfer mechanisms.

09

How long we keep data

  • Account, profile, scans, plans, and habit history are kept while your account is active.
  • When you delete your account using Settings → Delete my account and data, your personal data is removed from our systems within 30 days.
  • We may retain non-identifying, aggregated metrics (e.g., total scans run) and records we're required to keep by law.
10

Your rights (EU/UK GDPR)

You have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data (you can edit profile fields directly in the App).
  • Erase your data — use Settings → Delete my account and data, or email us.
  • Restrict or object to certain processing.
  • Receive a copy of your data in a portable format.
  • Withdraw consent at any time, without affecting prior processing.
  • Lodge a complaint with your local data protection authority (in the EU, your national DPA; in the UK, the Information Commissioner's Office at ico.org.uk).

To exercise any of these rights, email Nura.health@gmail.com.

11

Children

NURA is not directed at children under 16. If you are under this age, please do not use the App without a parent or legal guardian's consent. If we become aware that we hold data from a child without proper consent, we will delete it.

12

Security

  • All traffic between the App and our backend is encrypted in transit (TLS).
  • Data at rest is encrypted by our hosting provider.
  • Row-Level Security (RLS) policies enforce that you can only read and write your own records.
  • Privileged service keys are kept server-side only and never shipped to the browser or mobile app.

No system is perfectly secure. If you believe you've found a vulnerability, please email Nura.health@gmail.com.

13

Cookies & local storage

We use only essential browser storage to keep you signed in and to remember UI preferences (e.g., language, last-opened tab). We do not set advertising or analytics cookies.

14

Changes to this policy

We may update this policy as the App evolves. The "Last updated" date at the top reflects the most recent change. Material changes will be surfaced in the App before they take effect.

15

Contact

Questions, requests, complaints, or formal data protection matters, contact Nura.health@gmail.com.

Questions? Email Nura.health@gmail.com · Return home