Theme Health Privacy policy.

Effective date: December 21, 2025
Last updated: December 21, 2025

Theme Health (“Theme Health,” “we,” “us,” or “our”) provides a platform designed to help people managing chronic conditions reduce trial and error between doctor visits by turning personal inputs and optional connected signals into practical guidance.

This Privacy Policy explains what we collect, how we use it, and the choices you have.

1) Scope

This Privacy Policy applies to:

  • our website at [yourdomain.com]

  • our early access / waitlist forms

  • Theme Health mobile applications and related services (the “Service”)

This policy does not apply to third-party sites or services you may access through links or integrations.

2) What we collect

A) Information you provide

Depending on how you use the Service, we may collect:

  • Contact details: name (optional), email address

  • Early access details: condition selection, wearable usage (optional), “biggest challenge” free text (optional)

  • Account information: login credentials or authentication tokens if you create an account

  • Support communications: messages you send us and related metadata

B) Health-related information you choose to share

If you use Theme Health beyond the website, you may choose to share:

  • symptom, energy, stress, and function ratings

  • context tags you select (for example: sleep poor, stress high, travel, heat exposure)

  • responses to prompts or follow-ups (for example: “did it help?”)

You control what you share. You can reduce or stop sharing at any time, though some product features may not work as well.

C) Connected devices and signal sources (optional)

If you choose to connect data sources (for example: Apple Health, Health Connect, Oura, Garmin, Whoop), we may collect certain signal data such as sleep metrics, activity proxies, and recovery proxies where available.

We only collect signal data when you explicitly authorize the connection. You can disconnect a source at any time.

D) Community contributions (optional)

If you respond to community prompts (for example: “Is this true for you?” or “What helped?”), we collect your responses. We may use responses to generate aggregated insights.

E) Automatically collected information (website and app usage)

We may automatically collect:

  • Device and browser information: device type, operating system, app version, browser type

  • Usage data: pages/screens viewed, clicks, features used, session duration, referring URLs

  • Log data: IP address, timestamps, crash logs, performance data

  • Cookies and similar technologies: to operate the site and understand usage (see Section 8)

3) How we use information

We use information to:

  • Provide the Service: operate the app and deliver features you request

  • Personalize your experience: tailor prompts, plans, and summaries based on the information you share

  • Run the closed-loop learning system: understand whether suggested next steps helped and improve future guidance

  • Communicate with you: send early access invitations, product updates, and support responses

  • Improve safety and reliability: monitor performance, debug issues, prevent fraud and abuse

  • Analytics: understand how the Service is used and improve usability

We do not use your information to provide emergency services. If you believe you are experiencing an emergency, contact local emergency services or your clinician.

4) How we share information

We share information only as described below.

A) Service providers

We may share information with vendors that help us operate our Service (for example: hosting, analytics, email delivery, customer support tools). These providers are permitted to process information only to perform services for us and must protect it.

Examples of providers may include: website hosting (for example Squarespace), analytics tools, and email providers.
[List vendors here if you want: Squarespace, PostHog, etc.]

B) Connected integrations

If you connect a third-party integration (for example a wearable provider), data sharing occurs as part of that connection and your authorization. You can disconnect at any time.

C) Legal and safety

We may disclose information if required to comply with law, regulation, or legal process, or to protect the rights, safety, and security of Theme Health, our users, or others.

D) Business transfers

If we are involved in a merger, acquisition, financing, reorganization, or sale of assets, information may be transferred as part of that transaction. We will continue to protect your information as described in this policy.

E) Aggregated and de-identified information

We may share aggregated or de-identified information that cannot reasonably be used to identify you, for example to publish insights or understand trends. We take steps to reduce re-identification risk.

5) Our trust commitments

We do not sell identifiable data

We do not sell information that identifies you.

You control what you share

You can disable integrations, adjust preferences, and limit inputs. We will explain how turning something off may affect the experience.

If we ever want to expand use materially, we will ask

If we plan to use your information in a materially new way that would require additional permissions, we will provide notice and, where appropriate, obtain your consent.

6) Your choices and rights

Depending on where you live and how you use the Service, you may have the right to:

  • Access: request a copy of certain information

  • Correct: request corrections

  • Delete: request deletion of your account and certain information

  • Withdraw consent: disconnect signal sources and stop future collection from them

  • Opt out of marketing: unsubscribe from non-essential emails

To request access, correction, or deletion, contact us at: [privacy@themehealth.com].

7) Data retention

We keep information as long as needed to:

  • provide the Service

  • comply with legal obligations

  • resolve disputes

  • enforce agreements

  • improve product safety and integrity

Retention periods may vary depending on the type of data. When we no longer need information, we delete or de-identify it.

8) Cookies and tracking technologies

We may use cookies and similar technologies for:

  • site functionality

  • analytics and performance

  • remembering preferences

You can control cookies through your browser settings. If you disable cookies, some features may not function properly.

9) Security

We use reasonable administrative, technical, and physical safeguards designed to protect information. No method of transmission or storage is 100% secure, but we work to protect information against unauthorized access, loss, misuse, and alteration.

10) International users

If you access the Service from outside the United States, information may be processed in the United States or other locations where our service providers operate. We take steps to protect information consistent with this policy.

11) Children’s privacy

Theme Health is not intended for children under 13 (or the age required by local law). We do not knowingly collect personal information from children. If you believe a child has provided information, contact us so we can delete it.

12) Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the “Last updated” date and provide additional notice when appropriate.

13) Contact us

If you have questions or requests, contact:
Theme Health
Email: [privacy@mythemehealth.com]