Privacy Policy

Bllod exists to help you understand your health, not to monetize your medical data. We will never sell your health information to advertisers, data brokers, or any third party. Your lab results, markers, and health records are yours — we simply help you organize and understand them.

We collect only what is necessary to provide the service: Account information — When you sign in with Google or Apple, we receive your name and email address. We do not receive or store your password. Health data — Lab results you upload (PDF files or photos), the markers and values our AI extracts from them, and any health metrics you manually enter. Waitlist and communications — If you join our waitlist, we store your email address and preferred language. Usage information — Basic analytics about how you use the app (screens visited, features used) to improve the product. This data is anonymized and never linked to your health records.

When you upload a lab report, our AI reads the document and extracts structured health markers. Each marker is mapped to LOINC codes (a universal medical coding system) and organized following FHIR standards (the same framework hospitals use). This means your data is not only readable by you — it is medically interoperable and ready to be shared with healthcare providers in a format they can actually use.

Your data is stored securely in the cloud using Supabase infrastructure. All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Your health records are protected by Row Level Security, which means only your authenticated account can access your data — not even Bllod employees can read your individual health records without your explicit authorization.

We never sell your data. Your health information is shared only in these cases: By your choice — When you choose to export or share your records with a doctor or healthcare provider. Service providers — We use trusted third parties to operate Bllod: Supabase (database and authentication), Google and Apple (sign-in only), and cloud infrastructure providers. These providers process data only on our behalf and under strict contractual obligations. Legal requirements — We may disclose data if required by law, court order, or to protect the safety of our users.

Bllod uses Google Sign-In and Apple Sign-In for authentication. We never handle or store your password. When you sign in, the identity provider shares your name and email address with us — nothing else. Apple Sign-In users can choose to hide their email address, and we respect that choice fully.

You have full control over your data. At any time, you can: Access — View all health data we store about you directly in the app. Export — Download a complete copy of your data in standard formats. Correct — Edit or update any health record or personal information. Delete — Request permanent deletion of your account and all associated data. Deletion is irreversible and propagated across all our systems within 30 days. If you are in Brazil, the LGPD grants you additional rights including data portability and the right to information about sharing. If you are in the European Union, the GDPR provides rights including the right to restriction of processing and the right to object. To exercise any of these rights, contact us at [email protected].

We keep your health data for as long as your account is active. If you delete your account, all personal data and health records are permanently removed from our systems within 30 days. Anonymized, aggregated data (which cannot identify you) may be retained for product improvement purposes. Backup copies are purged on the same 30-day schedule.

Bllod offers a free tier and premium plans. We do not collect different types of data based on your plan — free and premium users have the same privacy protections. Premium features unlock additional functionality, not additional data collection. Payment processing is handled entirely by Apple (App Store) or Google (Play Store). We never see or store your credit card number or payment details.

Bllod serves users in Brazil, the European Union, and other regions. Your data may be transferred to and processed in countries where our infrastructure providers operate. When data crosses borders, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) for EU transfers and compliance with LGPD requirements for Brazilian users.

Bllod is not designed for children under 13 years of age (or under 16 in jurisdictions where a higher age of consent applies). We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal data, we will delete it promptly.

We may update this policy to reflect changes in our practices or legal requirements. When we make significant changes, we will notify you through the app or via email at least 30 days before the changes take effect. The "Last updated" date at the top of this page indicates when the policy was last revised.

If you have questions about this policy, your data, or your privacy rights, reach out to us: Email — [email protected] Data Protection — For LGPD or GDPR-related requests, email [email protected] We aim to respond to all privacy-related inquiries within 15 business days.