Privacy Policy
Effective Date: February 6, 2026 Last Updated: February 6, 2026 Version: 1.1 Our Privacy Commitment. Your health data belongs to you — full stop. We do not sell your personal health information to anyone. We use your data only to power your personal Entropy Lifestyle experience and to improve the Service. We give you transparent control at every step
1. About This Policy
This Privacy Policy describes how KPMS3 LLC, operating as Entropy Lifestyle ("Entropy Lifestyle," "we," "our," or "us"), collects, uses, and protects your personal information when you use the Entropy Lifestyle mobile application, website, and related services (collectively, the "Service").
By creating an account or using the Service, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, please do not use the Service.
This policy applies to all users globally. Residents of California, Washington, Nevada, and Connecticut have additional rights described in Sections 11 and 12 below.
2. Information We Collect
We collect information in three ways: information you provide directly, information collected automatically, and information received from third-party integrations you authorize.
2.1 Information You Provide Directly
Category | Examples | Purpose |
|---|---|---|
Account Information | Email address, name, password (hashed) | Create and manage your account |
Profile Information | Profile photo, timezone, language preference, age range | Personalize your experience |
Onboarding Data | Wake/sleep times, work hours, wellness goals, training level, lifestyle commitments, energy patterns | Generate your initial personalized wellness protocol |
User Content | Social posts, photos, comments, reactions in the community feed | Enable community and social features |
Feedback & Check-ins | Task completion status, protocol ratings, daily check-in responses, journal entries | Improve AI recommendations over time |
Gamification Data | Points, coins, badges, streaks, levels, challenge participation | Track achievements and deliver rewards |
Support Communications | Messages sent to our support team | Resolve your inquiries |
2.2 Information Collected Automatically
Category | Examples | Purpose |
|---|---|---|
Device Information | Device model, OS version, app version, device identifiers (IDFV) | Technical support and compatibility |
Usage Analytics | Features used, screens viewed, session duration, tap events (anonymized) | Improve product experience |
Crash Reports | Error logs, diagnostic data | Identify and fix bugs |
Subscription Status | Plan tier, renewal dates, purchase receipts (via App Store/Play Store — we do not store payment card data) | Manage access to premium features |
We do not collect precise geolocation. We may infer a general timezone from your device settings solely to schedule personalized reminders and protocols. We do not use geofencing to collect health data.
3. Health & Wellness Data
When you authorize integrations with third-party health platforms or wearables, we receive health metrics from those sources. The specific data we access depends on your authorization and the capabilities of your connected device or platform.
3.1 Data Received from Wearables & Health Platforms
Data Type | Examples | Source |
|---|---|---|
Recovery Metrics | Heart rate variability (HRV), resting heart rate, respiratory rate | Apple Health / WHOOP / Oura |
Sleep Data | Sleep duration, sleep stages (REM, deep, light), sleep efficiency, wake events | Apple Health / WHOOP / Oura |
Activity & Strain | Steps, active calories, workouts, heart rate during exercise, VO2 max estimates | Apple Health / Google Health Connect / WHOOP / Oura |
Stress Indicators | Heart rate variability patterns, autonomic nervous system signals | Apple Health / WHOOP / Oura |
Body Metrics | Weight, body fat percentage (if provided by connected platform) | Apple Health / Google Health Connect |
3.2 Sensitive Health Information
Entropy Lifestyle treats all health metrics as sensitive personal data. We apply the following specific protections:
No advertising use. We never use your health data for advertising or marketing profiling of any kind, consistent with Apple HealthKit guidelines and applicable law.
No sale. We do not sell, rent, or trade your health data to any third party.
Purpose limitation. Health data is used exclusively to generate your personalized wellness protocol, power AI insights, and improve the algorithms that serve you.
Minimum necessary access. We request only the health data types necessary to deliver the features you use. You control which categories to share.
HealthKit restrictions honored. Data obtained via Apple HealthKit is handled in strict compliance with Apple's HealthKit data use restrictions and may not be used for any purposes not expressly permitted by those restrictions.
3.3 Data You Manually Enter
You may manually log additional wellness information, including nutritional intake, hydration, mood, energy levels, and notes. This data is stored in your account and subject to the same protections as wearable-sourced data.
4. How We Use Your Information
We use the information we collect for the following purposes:
Providing the Service. Creating your account, delivering personalized wellness protocols, powering AI health insights, scheduling reminders, and enabling community features.
Personalization. Adapting wellness recommendations to your unique health data, lifestyle inputs, goals, and feedback over time.
Service Improvement. Analyzing aggregated, de-identified usage patterns to enhance features, fix bugs, and develop new functionality.
AI Model Training. We may use de-identified and aggregated health and behavioral data to train and improve our AI and machine learning models. We will never train models on individually identifiable health data without your explicit consent.
Communications. Sending transactional messages (account confirmations, receipts), service updates, and, where you have opted in, wellness tips or product news. You may unsubscribe from marketing emails at any time.
Safety & Legal Compliance. Preventing fraud, enforcing our Terms of Service, and complying with applicable legal obligations.
Analytics. Understanding how the Service is used at an aggregate, de-identified level to make informed product decisions.
We do not use your personal data for any purpose materially different from those described above without your consent.
5. AI & Automated Processing
Entropy Lifestyle uses artificial intelligence and machine learning models to generate personalized wellness protocols, recovery scores, energy predictions, and behavioral recommendations. Here is how our AI works and how we protect you:
5.1 What Our AI Does
Synthesizes your wearable data, onboarding inputs, check-in feedback, and behavioral patterns to produce daily and weekly wellness recommendations.
Learns your unique energy patterns over time to refine protocol timing and intensity.
Flags anomalies in your data (e.g., unusually low HRV or poor sleep consistency) to prompt timely in-app guidance.
5.2 What Our AI Does Not Do
Our AI does not diagnose medical conditions, predict disease, or replace clinical judgment.
Our AI does not make decisions about you that produce significant legal effects.
Our AI outputs are wellness guidance, not medical prescriptions.
5.3 Human Oversight
Our AI recommendations are developed and reviewed by our team of wellness and engineering professionals. We continuously audit model outputs for accuracy, bias, and safety. You always have the ability to ignore, override, or modify any AI-generated recommendation.
5.4 Transparency
Where technically feasible, the App explains the primary factors contributing to a recommendation (e.g., "Your HRV dropped 18% last night, so we recommend a lighter workout today"). You have the right to request a plain-language explanation of any significant automated recommendation affecting you.
5.5 Third-Party AI Infrastructure
Portions of our AI processing may be performed by contracted third-party cloud infrastructure providers under strict data processing agreements that prohibit any secondary use of your data.
6. Information Sharing & Disclosure
We do not sell your personal information. We share information only in the limited circumstances described below:
6.1 Service Providers
We share data with trusted vendors who assist us in operating the Service — including cloud hosting, authentication, crash reporting, analytics, email delivery, and customer support. These providers are contractually prohibited from using your data for their own purposes and must process it only on our instructions.
6.2 Third-Party Health Platform Integrations
When you connect WHOOP, Oura, Apple Health, or Google Health Connect, data flows between those platforms and Entropy Lifestyle according to your authorization. See Section 7 for details on each integration.
6.3 Aggregated & De-identified Research
We may share aggregated, anonymized data — from which individual identity cannot reasonably be reconstructed — with research partners, academic institutions, or in public reports to advance health and wellness science. This data cannot be used to identify you.
6.4 Legal Requirements
We may disclose your information if required by law, subpoena, court order, or government authority, or when we believe in good faith that disclosure is necessary to protect our rights, prevent fraud, or protect the safety of a person.
6.5 Business Transfers
If Entropy Lifestyle is involved in a merger, acquisition, sale of assets, or restructuring, your information may be transferred to the successor entity. We will notify you via email and/or a prominent in-app notice prior to such a transfer, and you will have the option to delete your account and data.
6.6 With Your Consent
We may share your information for any other purpose with your explicit consent.
What we never do: We never sell your personal or health information to data brokers, advertisers, or any third party for commercial gain. We never share HealthKit data for advertising or any purpose prohibited by Apple's HealthKit guidelines.
7. Third-Party Integrations
Entropy Lifestyle integrates with the following third-party services. Your use of these integrations is governed by both this Privacy Policy and the third party's own terms and privacy policy. We are not responsible for the data practices of third-party platforms.
7.1 Apple Health (HealthKit)
With your explicit permission, Entropy Lifestyle reads health and fitness data from Apple Health on your device. All HealthKit data is processed in compliance with Apple's HealthKit guidelines. HealthKit data is never used for advertising or shared with third parties for advertising purposes. You can revoke Apple Health access at any time via Settings → Health → Data Access & Devices → Entropy Lifestyle.
7.2 Google Health Connect
With your explicit permission, Entropy Lifestyle reads health data from Google Health Connect on Android devices. Data use is limited to the purposes described in this policy. You can revoke access via Google Health Connect settings at any time.
7.3 WHOOP
If you connect your WHOOP device, Entropy Lifestyle receives recovery, strain, and sleep data from the WHOOP API. Your connection is governed by WHOOP's Privacy Policy. You can disconnect WHOOP at any time within the Entropy Lifestyle app settings.
7.4 Oura Ring
If you connect your Oura Ring, Entropy Lifestyle receives sleep, readiness, and activity data from the Oura API. Your connection is governed by Oura's Privacy Policy. You can disconnect Oura at any time within the app settings.
7.5 Google Calendar
If you connect Google Calendar to enable scheduling features, we access only the calendar data necessary to schedule wellness protocols and reminders. We do not read the content of your calendar events. Your use of Google Calendar is subject to Google's Terms of Service and Privacy Policy.
7.6 Analytics & Infrastructure Providers
We use industry-standard analytics and infrastructure tools (e.g., crash reporting, performance monitoring) that may collect anonymized usage data. These providers act as data processors under our instructions and do not sell your data.
8. Data Security
We implement administrative, technical, and physical safeguards designed to protect your information against unauthorized access, alteration, disclosure, or destruction. Key measures include:
Encryption in transit: All data transmitted between the App and our servers is encrypted using TLS 1.2 or higher.
Encryption at rest: Sensitive data stored on our servers is encrypted at rest using AES-256.
On-device processing: Where possible, health data processing occurs on your device and is not transmitted to our servers unnecessarily.
Access controls: Internal access to personal data is restricted to employees and contractors with a legitimate need to know, governed by role-based access controls.
Authentication: We support secure authentication methods. We encourage you to use a strong, unique password and enable biometric lock where available.
Vendor security reviews: Third-party service providers are evaluated for security practices before engagement and governed by data processing agreements.
Incident response: We maintain a data breach response plan and will notify affected users and applicable regulators in accordance with applicable law if a breach occurs.
No method of electronic transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. If you believe your account has been compromised, please contact us immediately at hello@entropylifestyle.com.
9. Data Retention
Data Type | Retention Period |
|---|---|
Account & profile information | Duration of active account + 30 days after deletion request |
Health & wellness data (wearable-sourced) | Duration of active account + 30 days after deletion request |
Manually logged data (journal, nutrition, mood) | Duration of active account + 30 days after deletion request |
Usage analytics (anonymized) | Up to 2 years for product improvement purposes |
Crash logs & diagnostics | 90 days |
Transaction & billing records | 7 years (legal and tax compliance) |
Support communications | 3 years after ticket resolution |
When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law (e.g., financial records) or for legitimate business purposes such as fraud prevention.
10. Your Rights & Choices
Regardless of where you live, you have meaningful control over your data:
10.1 Access
You may request a copy of the personal information we hold about you, including your health data, in a commonly used machine-readable format (data portability).
10.2 Correction
You may update or correct inaccurate information directly in the App settings or by contacting us.
10.3 Deletion
You may request deletion of your account and associated personal data at any time by navigating to Settings → Account → Delete Account, or by emailing hello@entropylifestyle.com. We will process your request within 30 days.
10.4 Withdraw Consent
You may withdraw consent for optional data processing (e.g., health platform integrations, marketing emails) at any time. Withdrawal of consent does not affect the lawfulness of processing that occurred before withdrawal.
10.5 Revoke Wearable Access
You may disconnect any wearable or health platform integration at any time via App Settings. Future data from disconnected sources will no longer be received; historical data already collected is subject to our standard retention schedule unless you request deletion.
10.6 Marketing Opt-Out
You may opt out of marketing communications by clicking "Unsubscribe" in any email or adjusting notification settings in the App.
10.7 How to Exercise Your Rights
To exercise any of the above rights, contact us at hello@entropylifestyle.com. We will respond within 30 days. We may need to verify your identity before processing certain requests.
11. State-Specific Privacy Rights
11.1 California Residents — CCPA / CPRA
If you are a California resident, you have the following additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
Right to Know. Request disclosure of the categories and specific pieces of personal information we have collected about you, the purposes for collection, and the categories of third parties with whom it is shared.
Right to Delete. Request deletion of your personal information, subject to certain exceptions.
Right to Correct. Request correction of inaccurate personal information.
Right to Opt Out of Sale/Sharing. We do not sell or share personal information for cross-context behavioral advertising. You do not need to opt out because we do not engage in these practices.
Right to Limit Use of Sensitive Personal Information. We do not use sensitive personal information (including health data) beyond what is necessary to provide the Service.
Non-Discrimination. We will not discriminate against you for exercising your privacy rights.
To submit a California privacy request, email hello@entropylifestyle.com with the subject line "California Privacy Request." We will respond within 45 days.
11.2 Other US State Residents
Residents of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Texas (TDPSA), and other states with comprehensive privacy laws have rights similar to those described in Sections 10 and 11.1, including access, correction, deletion, portability, and opt-out rights. Contact us at hello@entropylifestyle.com to exercise these rights.
12. Consumer Health Data — Washington, Nevada & Connecticut
If you reside in Washington, Nevada, or Connecticut, additional state health data privacy laws apply to how we handle your health information.
12.1 What Is Consumer Health Data
Under applicable state laws, "consumer health data" broadly includes personal information linked or reasonably linkable to you that identifies your past, present, or future physical or mental health status. This includes data such as health conditions, wellness metrics, wearable-derived physiological signals, fitness activity, and health-related behavioral patterns collected through our Service.
12.2 Authorization
We only collect consumer health data after you explicitly authorize the connection (e.g., granting HealthKit permission, connecting a wearable). We do not collect consumer health data from you without your prior affirmative consent.
12.3 Your Health Data Rights (WA, NV, CT)
Right to confirm whether we collect or share your consumer health data
Right to access and receive a copy of your consumer health data
Right to withdraw consent for collection and sharing
Right to request deletion of your consumer health data
Right to appeal a denial of your request
12.4 No Geofencing for Health Data Collection
We do not use geofencing technology to collect consumer health data or to identify individuals based on their location for health data collection purposes.
12.5 How to Exercise Your Health Data Rights
Submit a request to hello@entropylifestyle.com with the subject line "Consumer Health Data Request." We will acknowledge receipt within 10 days and fulfill your request within 45 days (extendable to 90 days with notice for complex requests).
13. International Data Transfers
Entropy Lifestyle is based in the United States. If you access the Service from outside the United States, your information may be transferred to and processed in the United States and other countries where our service providers operate. Data protection laws in these countries may differ from those in your country of residence.
For users in the European Economic Area (EEA), United Kingdom, or Switzerland, where we transfer your personal data outside these regions, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, or other mechanisms recognized by applicable data protection authorities.
If you have questions about international transfers of your data, please contact us at hello@entropylifestyle.com.
14. Children's Privacy
The Service is intended for users who are 18 years of age or older. We do not knowingly collect, use, or disclose personal information from anyone under the age of 18. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at hello@entropylifestyle.com and we will take steps to delete such information promptly.
We do not knowingly use or disclose personal information from children under 13 consistent with the Children's Online Privacy Protection Act (COPPA).
15. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other legitimate business reasons. When we make material changes, we will:
Update the "Last Updated" date at the top of this page
Send you an email notification (for significant changes) to the email address on your account
Display a prominent notice within the App for at least 30 days
Your continued use of the Service after the effective date of any changes constitutes acceptance of the updated Privacy Policy. If you disagree with a material change, you may delete your account prior to the effective date.
We encourage you to review this Privacy Policy periodically.
16. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out:
Entropy Lifestyle — Privacy Team
KPMS3 LLC, operating as Entropy Lifestyle
We aim to respond to all privacy-related inquiries within 30 days. For urgent security concerns or suspected data breaches, please mark your message as "URGENT."