Privacy Policy

Last updated: May 2026

Introduction

Welcome to Serenese. This Privacy Policy explains how we collect, use, and protect your information when you use our iOS application. Serenese is a personal health and readiness app that helps you understand your body's signals through data from Apple Health, connected wearables, and your own manual entries.

We take health data seriously. Please read this policy carefully — it explains exactly where your data goes and where it stays.

The short version

Almost all of your health data never leaves your device. The two exceptions are: (1) your nutrition diary entries, which may be sent to an AI service for analysis when you request it, and (2) standard advertising identifiers used by our ads provider. Your Apple Health data is never used for advertising, never shared with data brokers, and never sold.

Data We Access and How It Is Stored

Apple HealthKit Data

With your permission, Serenese reads the following categories of data from Apple Health:

Heart rate and HRV — Resting heart rate and heart rate variability, used to compute your daily readiness baseline
Sleep — Sleep duration and stages, used to assess recovery quality
Activity — Step count and active calories burned
Respiratory rate — Breaths per minute recorded during sleep
Blood oxygen (SpO₂) — Overnight oxygen saturation readings

This data is read from HealthKit and stored in a local database on your device. It is not transmitted to our servers. It is not used for advertising purposes. We do not share HealthKit data with any third party, including advertisers, data brokers, or analytics providers.

This is a requirement of Apple's HealthKit guidelines and our own commitment to your privacy.

Manually Entered Data

Serenese allows you to manually record:

Blood pressure readings — Systolic, diastolic, and pulse; stored locally on your device
Nutrition diary — Meals, calories, and macronutrients; stored locally on your device
Meal notes and descriptions — Text you enter to describe what you ate

Data from Connected Services

If you choose to connect a third-party service (such as Strava or Withings), Serenese will fetch data from that service using your authorisation and store it locally on your device. We do not re-transmit this data to any other party. OAuth tokens used to authenticate with these services are stored securely in your device's iOS Keychain.

Strava — Activity data including workout type, duration, and heart rate
Withings — Weight, body composition measurements, and blood pressure readings from Withings devices

Connecting a third-party service is entirely optional. Each service's own privacy policy governs how they handle your data on their platform.

When Data Leaves Your Device

AI Diet Analysis

Serenese includes an optional feature that uses artificial intelligence to analyse your nutrition diary. When you request a diet analysis, the meal entries you have logged (food names, quantities, and nutritional values) are sent to Anthropic, the AI provider that powers this feature.

This data is used solely to generate the analysis response and is subject to Anthropic's privacy policy. We do not send any Apple HealthKit data to Anthropic. Diet analysis is triggered only by your explicit action — it does not run automatically in the background.

If you prefer not to use this feature, you can ignore it and your nutrition data will remain entirely on-device.

Advertising

Serenese is supported by advertising provided by Google AdMob. Google may collect standard advertising identifiers and general usage information (such as app open events and ad interactions) in order to serve relevant advertisements. This data is governed by Google's privacy policy.

Your health data — including Apple Health data, blood pressure readings, body measurements, and nutrition diary — is never shared with Google or used to inform advertising. Ad targeting uses only the standard device-level signals that Google collects across all apps using AdMob.

You can opt out of personalised advertising at any time in your iPhone's Settings → Privacy & Security → Apple Advertising.

Data We Do Not Collect

We do not operate a backend server that stores your health data
We do not collect your name, email address, or any account credentials
We do not use analytics SDKs (such as Firebase or Mixpanel) that track your in-app behaviour
We do not sell any of your data to any party
We do not share your data with data brokers or marketing platforms

Local Data Storage and Security

All health data is stored in a local encrypted SQLite database on your device, protected by iOS's standard file system encryption. OAuth tokens for connected services are stored in the iOS Keychain, which is the most secure storage available on iOS. App preferences are stored using iOS SharedPreferences, which is protected by the device's standard security model.

Deleting the app removes all locally stored data permanently. There is no cloud backup of your Serenese data.

Apple HealthKit — Specific Commitments

In accordance with Apple's HealthKit guidelines and our own policy:

HealthKit data will not be shared with third parties for advertising or marketing purposes
HealthKit data will not be sold or transferred to data brokers
HealthKit data will not be used for any purpose other than providing features directly within Serenese
We will always request only the minimum HealthKit permissions required for the features you use

Your Rights and Controls

Health data access — You can review and revoke Serenese's access to Apple Health at any time in Settings → Health → Data Access & Devices
Connected services — You can disconnect Strava, Withings, or any other connected service at any time within the app; this revokes our stored token and removes locally synced data
Diet analysis — You can simply not use this feature; no data is sent automatically
Advertising — You can opt out of personalised ads through your device's iOS privacy settings
All data — Uninstalling Serenese removes all locally stored data from your device

Children's Privacy

Serenese is not designed for or directed at children under the age of 13. We do not knowingly collect any information from children under 13.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Privacy Policy or how your data is handled, please contact us:

Email: d@vidbeamish.co.uk