Anatomous Privacy Policy

Last Updated: 12/23/2025

Welcome to Anatomous ( "we", "our", or "us"). Your privacy is fundamental to our mission. This Privacy Policy explains how we collect, use, disclose, protect, and retain personal information and consumer health data when you use our website, applications, and AI-driven health tools (the “Service”).

1. Who We Are

Anatomous is a privacy-first digital health platform designed to help users manage wellness, lifestyle, and health-related information.

Anatomous is not a Covered Entity under the Health Insurance Portability and Accountability Act (HIPAA). However, we voluntarily align with HIPAA-inspired best practices, including:

  • Data minimization
  • User control and consent
  • Strong administrative, technical, and physical safeguards

This Privacy Policy also incorporates requirements under applicable consumer health data laws, including the Washington My Health My Data Act (WA MHMD), Nevada Consumer Health Data Law, the FTC Health Breach Notification Rule, CCPA/CPRA, and GDPR.

2. User Accounts

All users must create an account to access the Service.

Required information:

  • Email address
  • Name (you may use a pseudonym or alias)

Optional information (depending on features used):

  • Wellness, lifestyle, or health-related data
  • Uploaded files such as labs or reports (user-controlled)

Account creation enables us to:

  • Secure your information
  • Deliver personalized insights
  • Maintain your history
  • Provide feature access and continuity

We do not offer anonymous, no-account usage. However, we support pseudonymous use so long as it complies with our Terms of Service.

3. Information We Collect

We collect only what is necessary to operate the Service.

a. Personal Information

  • Name or alias
  • Email address
  • Date of birth
  • Gender
  • Height and weight
  • Residential region

b. Consumer Health Data

“Consumer Health Data” means personal information that identifies or could reasonably be linked to your past, present, or future health status, including:

  • Health conditions, symptoms, or diagnoses
  • Mental or physical health status
  • Medications, allergies, or treatments
  • Reproductive, fertility, or sexual health data
  • Biometric or physiological data
  • Sleep, nutrition, exercise, stress, or recovery data
  • Health-related inferences derived only from data you provide

You control what health data you enter or upload. We do not collect medical records from providers, insurers, or third-party databases.

c. Technical & Device Information

  • IP address
  • Browser type
  • Device type and operating system
  • Pages visited and usage interactions

We do not infer health status from unrelated browsing, purchases, or cross-site tracking.

4. How We Use Your Information

We use your information solely to:

  • Deliver personalized wellness and AI-generated insights
  • Generate summaries, reports, and trend analysis at your direction
  • Improve functionality and performance
  • Analyze aggregated, de-identified usage data
  • Respond to support requests
  • Comply with legal and regulatory obligations

We do not sell, rent, or monetize personal or consumer health data.

5. Consent & Lawful Basis

Where required by law:

  • We request affirmative consent before collecting consumer health data
  • We request separate consent before sharing consumer health data
  • You may withdraw consent at any time

If our data practices materially change, we will obtain new consent where legally required.

6. How We Share Information

We may share information only in the following circumstances:

With Your Consent

  • Secure, time-limited reports or links you choose to share with providers or trusted parties

With Service Providers

  • Infrastructure, hosting, analytics, and AI vendors acting on our behalf
  • Bound by strict contractual confidentiality and security obligations
  • No advertising or secondary use permitted

For Legal Reasons

  • Court orders, subpoenas, or lawful regulatory requests

Business Transactions

  • Merger, acquisition, or restructuring, only if legally permitted and with user notice

We never share personal or consumer health data for third-party advertising, marketing, or research, including academic, commercial, or product-development research.

7. AI Processing & De-Identification

When data is processed by AI services:

  • Personal identifiers are removed where feasible
  • Data is used only to generate outputs for you
  • Data is not retained, reused, or trained on for vendor commercial purposes

AI outputs remain under your control.

8. Data Security & Breach Notification

We maintain administrative, technical, and physical safeguards, including:

  • Encryption in transit and at rest
  • Role-based access controls
  • Secure infrastructure with HIPAA-aligned partners
  • Logging, monitoring, and routine security reviews

Health Breach Notification

If a breach involving consumer health data occurs, we will:

  • Investigate promptly
  • Notify affected users without unreasonable delay (no later than 60 days)
  • Notify regulators and media when legally required
  • Take corrective and preventative action

9. Data Retention

We retain information only as long as necessary to:

  • Provide the Service
  • Meet legal obligations
  • Honor deletion or consent-withdrawal requests

You may delete your account and associated personal and consumer health data at any time directly from your account dashboard within the Anatomous web application.

If you are unable to access your account or require assistance, you may also submit a deletion request by contacting us at privacy@anatomous.ai.

10. User Rights

Depending on your location, you may have the right to:

  • Access and correct your data
  • Request deletion
  • Withdraw consent
  • Receive a copy of your data
  • Opt-out of certain communications
  • Appeal decisions related to your request

California (CCPA/CPRA)

  • Right to know
  • Right to delete
  • Right to opt-out of sale (we do not sell data)

EU/UK (GDPR)

  • Access, rectification, erasure
  • Objection and restriction
  • Data portability
  • Lodge a complaint with a supervisory authority

To exercise rights: privacy@anatomous.ai

11. Cookies, Logs & Analytics

We use:

  • Cookies for preferences and session management
  • Log files for security and reliability
  • Analytics for service improvement

Analytics data is not linked to identifiable health data unless you are logged in.

12. Communications & Non-Secure Channels

By using the Service, you consent to receiving:

  • Transactional and service-related communications
  • Platform notices and updates

Email and SMS are not inherently secure. You may opt out or limit these communications.

13. Children’s Privacy

Anatomous does not permit independent accounts for individuals under 18.

Minors may be included under a Family Account managed by a parent or legal guardian.We do not knowingly collect data from children under 13 without verified consent.

14. Data Licensing

By submitting data, you grant Anatomous a limited license to use it only to operate and improve the Service.


This does not permit selling, advertising, or unauthorized disclosure.

15. Policy Updates

We may update this Policy periodically. Material changes will be reflected by a new “Last Updated” date and may be communicated directly.

16. Contact Information

Privacy Contact – Anatomous
privacy@anatomous.com

On this page
Company
About
Support
Contact
Legal
TermsPrivacy
© 2026 Anatomous. All rights reserved.