Published using Google Docs
Cardiolyse Privacy Policy.docx
Updated automatically every 5 minutes

Cardiolyse Privacy Policy

We made this policy to help you understand what information we collect, how we use it, how to access and update your information, and how to manage your privacy settings when using Cardiolyse Services. We welcome your questions and comments on this policy.

We give you several ways to control the privacy of your personal information and are continuously working to enhance the privacy options available to you.

We collect information in a few different ways:

1. When you permit us to obtain it or you give it to us
When you sign up for or use our products, you voluntarily give us information like your email, password.

Your email address is used as a login and unique identificator, so it is mandatory to provide us a valid e-mail address. It can be used by Cardiolyse for password recovery and important notifications.

You would be asked to provide us your sex, age, height, weight, contact details of the persons you choose to share your information with ( i.e. your physician or coach), or any information you would like to provide to us and we accept it.

If you’re using Cardiolyse on your mobile device, you can also choose to provide us the history of your activities (steps, calories) from Google Fit Platform or Apple Health.

The information we get from Google Fit and Apple Health depends on your settings or its privacy policies, so be sure to check what those are.

2. We also get technical information when you use our products

Usually, when you use a website, mobile application, or another internet service, there’s certain information that almost always gets created and recorded automatically. The same is true when you use our products. Here are some of the types of information we collect:

Log data. When you use Cardiolyse, our servers automatically record information (“log data”), including information that your browser sends whenever you visit a website or your mobile app sends when you’re using it. This log data may include your Internet Protocol address, the address of the web pages you visited that had Cardiolyse features, browser type and settings, the date and time of your request, how you used Cardiolyse, and cookie data.
Cookie data. Depending on how you’re accessing our products, we may use “cookies” (small text files sent by your computer each time you visit our website, unique to your Cardiolyse account or your browser) or similar technologies to record log data. When we use cookies, we may use “session” cookies (that last until you close your browser) or “persistent” cookies (that last until you or your browser delete them). For example, we may use cookies to store your language preferences or other Cardiolyse settings so you don‘t have to set them up every time you visit Cardiolyse. Some of the cookies we use are associated with your Cardiolyse account (including personal information about you, such as the email address you gave us), and other cookies are not. For more detailed information about how we use cookies, please review our Cookies Policy.
Device information. In addition to log data, we may also collect information about the device you’re using Cardiolyse on, including what type of device it is, what operating system you’re using, device settings, unique device identifiers, and crash data. Whether we collect some or all of this information often depends on what type of device you’re using and its settings. To learn more about what information your device makes available to us, please also check the policies of your device manufacturer or software provider.

3. When you record or upload your ECG/HRV/Temperature or other data to our products

You may use Cardiolyse product to connect to different portable, wearable, and fitness devices, or to upload its data directly to Cardiolyse Services.

By doing this you give us permissions to collect, process, and store that data. It can include ECG, HRV, temperature, respiratory rate, oxygen level, accelerometer data, and other provided physical data.


4. Third Parties

Cardiolyse may allow you to sign up and log in to the Services using accounts you create with third-party products and services, such as Facebook or Google (collectively, “Third-Party Accounts”) or link your Google Fit of Apple Health account. These Third-Party Accounts may ask your permission to share certain information from your Third-Party Account with Cardiolyse. We use this information to verify your identity as well as to provide you with features of our products and services. This information may include your email address, profile information, and preferences with the applicable Third-Party Account. This information is collected by the Third-Party Account provider and is provided to Cardiolyse under their privacy policies. You can generally control the information that we receive from these sources using the privacy settings in your Third-Party Account. You can deactivate your account at any time by visiting .

We use the information we collect to:

Help to adjust and personalize your lifestyle, workouts, monitor and alert you about your heart health, overall wellbeing, fatigue derived out of your personal baseline of ECG/HRV, breathing rate as well as activity and sleeping history.

We also use the information we collect to:

Send you updates (such as when certain activity happens on Cardiolyse), newsletters, marketing materials, Privacy Policy, User License Agreement updates, and other information that may be of interest to you.
Respond to your questions or comments.

Transferring your information

Cardiolyse is a worldwide service. By using our products or services, you authorize us to transfer and store your information for the purposes described in this policy. 

What security measures are implemented?

Cardiolyse protects personal privacy and information in the best possible way in compliance with applicable laws and regulations on personal data protection, including the new GDPR legislation.

Cardiolyse collaborates with Microsoft to store and manage data in the Azure environment. For over 20 years, Microsoft has provided healthcare organizations with enterprise-oriented secure solutions. Cardiolyse has thus chosen to collaborate with one of the global market leaders in the field to ensure secure and compliant storage and data management.

Microsoft's data centers and services are certified according to ISO 27001, ISO 27018, SOC 1 and 2 security and audit standards. Microsoft's cloud services are also designed to deliver reliability.

Where are the servers and data located?

All data centers used by Cardiolyse through a collaboration with Microsoft are located within the EU/EEA. For Cardiolyse, the data is stored in Amsterdam, the Netherlands.

What choices do you have about your information?
Our goal is to give you simple and meaningful choices over your information. If you have a Cardiolyse account, many of the choices you have on Cardiolyse are built directly into the product or your account settings. For example, you can:

Access and change information
on your profile page at any time,

Link or unlink your Cardiolyse account from an account on another service (e.g., Google Fit).
Share your data with
another Cardiolyse user (for example your physician, coach, etc), view users with whom you share data now, and stop sharing.
Delete any ECG/HRV recording, including raw data files, analysis results, and processing logs.

 Completely remove your account, including profile info, ECG/HRV/Temperature recordings, activities history, audit logs, and any other traces of your existence. We may retain archived copies of your information as required by law or for legitimate business purposes (including to help address fraud and spam).

In addition to the examples above, we offer other choices that you can learn more about in our Help Center.

You may have choices available to you through the device or software you use to access Cardiolyse. For example:

The browser you use may provide you with the ability to control cookies or other types of local data storage.
Your mobile device may provide you with choices around how and whether location or other data is shared with us.
To learn more about these choices, please see the information provided by the device or software provider.

How and when do we share information?
When we have your consent. This includes sharing information with other services (like Facebook or Twitter) when you’ve chosen to link to your Cardiolyse account to those services or publish your activity on Cardiolyse to them. For example, you can choose to publish your results
on Facebook or Twitter.

 You may share your data(including ECG/HRV/ recording, activities history, profile info) with another Cardiolyse user (for example, with your physician or coach).

Vise-versa, another Cardiolyse user (your physician or coach) can request access to view your data, and you can accept/decline this request via Control Panel.

Anyway, your data is never shared without your consent, and you can stop sharing data with other users at any time.
If we believe that disclosure is reasonably necessary to comply with a law, regulation or legal request; to protect the safety, rights, or property of the public, any person, or Cardiolyse; or to detect, prevent, or otherwise address fraud, security or technical issues. We may engage in a merger, acquisition, bankruptcy, dissolution, reorganization, or similar transaction or proceeding that involves the transfer of the information described in this Policy.

Our policy on children’s information
Cardiolyse is not directed to a person under 18. If you learn that your minor child has provided us with personal information without your consent, please contact us.

 How do we make changes to this policy?
We may change this policy from time to time, and if we do we’ll post any changes on this page. If you continue to use Cardiolyse after those changes are in effect, you agree to the revised policy. If the changes are significant, we may provide more prominent notice or get your consent as required by law.

How can you contact us?
The best way to contact us
 by email:

You can also contact Cardiolyse in the main office at GE HEALTH INNOVATION VILLAGE, 2 KUORTANEENKATU, HELSINKI, 00510, FINLAND


May 20, 2021