سياسة الخصوصية
Effective Date: August 2025
Last Updated: August 2025
1. Our Commitment to Privacy
At NAVA Smart Rings Ltd. (“Company”, “we”, “our”), we are committed to protecting your privacy. This Privacy Policy outlines how we collect, process, use, and safeguard your personal information when you use our website (https://navaring.com), mobile application (“App”), and associated services (“Services”).
2. Information We Collect
We collect information in several categories. Below is a detailed table:
| Category | Type of Data |
|---|---|
| Contact Information | Full name, email address, phone number, shipping and billing address |
| Account & Identity Data | User ID, gender, height, weight, date of birth, occupation, marital status |
| Technical Data | IP address, browser type, OS, time zone, device identifiers, crash logs |
| Usage Data | Pages visited, button clicks, screen views, session duration, search terms |
| Health & Biometric Data | Heart rate, HRV, SpO2, body temperature, respiration, movement, sleep stages |
| Calculated Metrics | Readiness score, sleep score, BMI, activity trends, sleep efficiency |
| Contextual Data | Tags, reactions, user notes, meals, calendar events |
| Location Data | Approximate or precise location (with consent only) |
| Third-Party Data | Data from Apple Health, Google Fit, or other apps (if linked by user) |
| AI Processing Context | Data used to generate insights via OpenAI (non-identifiable unless consented) |
3. How We Use Your Information
We use your information for the following specific purposes: - To operate core functionalities of the NAVA App and Smart Ring - To personalize your health insights and analytics - To process purchases and manage order fulfillment - To provide technical support and answer inquiries - To improve algorithms, accuracy of health metrics, and service usability - To send optional newsletters or marketing emails (only if opted-in) - To enable calendar integration, tag tracking, or health report sharing (if authorized) - To comply with applicable laws, legal proceedings, and enforce our Terms of Use
4. Legal Basis for Processing (Under GDPR)
We rely on the following legal grounds: - Contractual obligation: for account setup, shipping, and app usage - Consent: for health data, AI integration, GPS/location, and marketing - Legitimate interests: for customer service, analytics, app improvement - Legal obligation: where laws require us to retain or process specific records
5. Use of AI Technology
We integrate OpenAI’s GPT technology to provide advanced insights. When you opt in: - We may send non-identifiable biometric and contextual data to OpenAI - We avoid sending name, email, or other direct identifiers unless essential and consented - Processing is governed under SCCs and OpenAI’s Privacy Policy: https://openai.com/policies/privacy-policy
6. Sharing of Personal Data
| Third Party | Purpose of Data Use | Legal Safeguards |
|---|---|---|
| Shopify | E-commerce, payment processing | DPA, GDPR-compliant, Privacy Shield |
| AWS | Secure cloud storage of all data | Stored in Israel, encrypted |
| OpenAI | Health-based AI insights (with consent) | SCCs in place |
| Google Analytics | Site analytics, app usage trends (with consent) | Anonymized, opt-out available |
| Meta Ads | Ad performance tracking (with consent) | Pseudonymous only |
| Apple Health / Google Fit | User-enabled health integrations | Requires explicit user opt-in |
| Law Enforcement | Only under legal compulsion or subpoena | Compliant with local jurisdiction |
We require all vendors to maintain appropriate security controls and prohibit them from using your data for unauthorized purposes.
7. International Data Transfers
· All personal data is primarily stored in AWS (Israel).
· Transfers to OpenAI (US) are made under Standard Contractual Clauses (SCCs).
· If future processing occurs outside current regions, we will notify you and update this policy.
8. SDK & Third-Party Services Transparency
We use map SDKs for location-based features. Only activated upon user permission.
Google Maps SDK:
· Data: metadata (OS, IP, model), stack traces, usage analytics, anonymized identifiers
· Purpose: map interactions, distance calculation, location tracking
· Policy: https://mapsplatform.google.com/
Amap SDK (China):
· Used for users with region-specific needs
· Policy: https://lbs.amap.com/
9. Community and Sharing Features
Users may opt to: - Join health communities - Share readiness/sleep/activity scores with chosen users - Post comments or interact within group activities
All sharing is opt-in, revocable, and controlled within the App settings.
10. Data Retention Policy
Note: User health, biometric, and contextual data is stored both on our secure cloud servers (AWS – Israel) and locally on the user’s mobile device. Local storage enables fast access and offline functionality, while cloud storage ensures backup, synchronization across devices, and regulatory compliance.
