Privacy Policy for Syana

Last Updated: 28 June 2025

1. Introduction & Our Commitment to Your Privacy

Welcome to Syana, an application provided by Loheden AI Solutions AB ("we," "us," or "our"). Your privacy is the foundation upon which this app is built. This Privacy Policy explains what information Syana collects, what it does not collect, and how that information is used.

Our core philosophy is simple: Your sensitive health data is yours alone. It is stored exclusively on your device and is never uploaded to our servers or shared with third parties.

By using the Syana mobile application (the "App"), you agree to the collection and use of information in accordance with this policy.

2. Definitions

For the purposes of this Privacy Policy:

  • App refers to the Syana mobile application.
  • Company (referred to as either "the Company", "We", "Us" or "Our" in this Agreement) refers to Loheden AI Solutions AB, Sweden.
  • Health Data refers to any information you log about your menstrual cycle, symptoms, moods, and personal notes, which is classified as "special category data" under GDPR.
  • Non-Personal Data refers to data that cannot be used to personally identify you, such as anonymous usage statistics and device information.
  • Device means any device that can access the App such as a cellphone or a digital tablet.
  • Service Providers are third-party companies we use to facilitate the App's functionality (e.g., payment processing, analytics).
  • You means the individual accessing or using the App.

3. The Cornerstone of Our Policy: Your Health Data

This is our most important promise to you.

What We Mean by "Health Data":

This includes any information you log about your menstrual cycle, such as period start and end dates, cycle length, flow intensity, symptoms, moods, and any personal notes you add. This is categorized as "special category data" under GDPR and receives the highest level of protection.

Where It Is Stored:

All of this Health Data is stored only on your device's local database. It is never transmitted to, stored on, or accessed by our servers. We have architected the App to ensure we, the developers, cannot see your personal logs.

Your Control:

You have full control over your Health Data. You can add, edit, or delete it at any time directly within the App. Using the "Delete All Data" feature in the App's settings will permanently erase all your data from your device. This action is irreversible.

4. Information We Do Collect (Non-Health Data)

To provide and improve the App, we collect a limited amount of Non-Personal Data.

Anonymous User Identifier:

The App uses Firebase Anonymous Authentication to create a random, anonymous identifier for your app instance. This ID is not linked to your personal identity, name, or email address. It helps us distinguish between different app installations for operational purposes like managing premium features.

Usage and Performance Analytics (Optional):

  • What We Collect: We use Google Analytics for Firebase to collect non-personally identifiable information about how you interact with the App. This includes data like which screens are visited most often, how long users spend on certain features, and crash reports. This data never includes your logged Health Data. User consent is asked to users who are in the EU.
  • Why We Collect It: This information is vital for us to identify and fix bugs, understand which features are most useful, and improve the overall user experience.

Purchase Information:

If you subscribe to premium features, our third-party payment processor, RevenueCat, manages your subscription status. RevenueCat creates its own anonymous user ID to track your purchase and entitlement status. We receive anonymized transaction data from RevenueCat (e.g., that a purchase was made and is active), but we do not receive or store your payment card information.

Refund-Related Data Sharing (Apple App Store Only):

When you purchase a subscription or other in-app content through the Apple App Store and subsequently request a refund, Apple may ask us to confirm how (and whether) you used that content. By using Syana and completing an in-app purchase, you consent to the following data-sharing practice:

  • Data shared: strictly limited "consumption data," such as purchase identifier, subscription tier, and time-stamped logs showing when premium features were accessed or content was opened.
  • Purpose: exclusively to help Apple verify refund eligibility and prevent misuse of the refund process.

Device and Notification Tokens:

To send you reminders (if you enable them), your device shares a push notification token with services like Firebase Cloud Messaging. This token is an anonymous identifier for your device.

5. How We Use Your Information

  • To Operate the App: Your on-device Health Data is used by the App's algorithms to calculate cycle predictions and display your calendar. This all happens on your device.
  • To Improve the App: Anonymized and aggregated analytics data helps us make informed decisions about future updates and improvements.
  • To Provide Premium Features: We use your anonymous user ID and purchase information from RevenueCat to unlock premium features you have paid for.
  • To Send Notifications: If you grant permission, we use your device's notification token to send you reminders about your cycle. You can manage these permissions in your device's settings.

6. Third-Party Service Providers

We use the following third-party services to operate the App:

  • Firebase (Google): Used for anonymous authentication, crash reporting (Firebase Crashlytics), and optional analytics (Google Analytics for Firebase). Their privacy policy can be found here.
  • RevenueCat: Used to manage in-app subscriptions. Their privacy policy can be found here.

These Service Providers only have access to the minimal, non-personal data required to perform their tasks and are obligated not to disclose or use it for any other purpose.

7. Data Retention

Your Health Data remains on your device for as long as you use the App and is deleted when you delete the app or use the in-app deletion feature.

The Non-Personal Data we collect (like anonymous user IDs and analytics data) is retained for a period necessary to fulfill the purposes outlined in this policy, such as for trend analysis and service improvement, after which it is aggregated or deleted.

8. Data Security

On-Device Security:

The security of your data on your device is a shared responsibility. We recommend using a strong passcode, Face ID, or Touch ID to protect your device from unauthorized access.

Encrypted Backups:

The App allows you to create an encrypted backup of your data. You are responsible for choosing a strong password and storing the backup file securely. We do not have access to your password and cannot recover your data if you lose it.

9. Your Rights Under GDPR

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Because we do not store your personal Health Data on our servers, these rights primarily apply to the data on your device, which you control.

  • The right to access, update or delete the information: You can do this at any time directly within the App.
  • The right of rectification: You can correct any information within the App.
  • The right to object and restrict processing: You can object to our processing of anonymized analytics data by not providing consent.
  • The right to data portability: You can use the App's export feature to create a portable copy of your data.
  • The right to withdraw consent: You can withdraw your consent for analytics at any time in the App's settings.

10. Children's Privacy

Our Service does not address anyone under the age of 18. We do not knowingly collect personally identifiable information from children under 18. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from a child under the age of 18 without verification of parental consent, we will take steps to remove that information.

11. Links to Other Websites

Our App may contain links to other websites that are not operated by us (such as the privacy policies of our Service Providers). If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

12. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

13. Contact Us

If you have any questions about this Privacy Policy, you can contact us by sending an email to [email protected]