Privacy Policy

TRIGR, by Vieroots Wellness Pvt. Ltd. · Last updated: 21 June 2026

This Privacy Policy explains how Vieroots Wellness Private Limited ("Vieroots", "we", "us") collects, uses, shares and protects your information when you use the TRIGR app and related services (the "Service"). TRIGR provides preventive-health and wellness guidance; it is not a medical device and does not provide a medical diagnosis.

1. Information we collect

Account data: name, email, phone, age, gender, password (hashed), and authentication identifiers (including Google or Apple sign-in IDs).
Health & wellness data you provide: height, weight, goals, diet preferences, allergies, lifestyle answers, logged meals, water, steps, sleep and workouts.
Camera-derived data: face-scan vitals (heart rate, HRV, breathing, stress) and food-scan photos. Face-scan video is processed to derive vitals and is not stored as video or images; food photos are used to identify the dish and estimate nutrition.
Genetic & lab reports: EPLIMO genetic results, blood reports and gut-microbiome reports you choose to upload.
Device & usage data: device type, OS, app version, IP address, diagnostics and feature usage.
Payment data: handled by the relevant payment provider (Apple, Google or our web payment processor). We do not store full card details.

2. How we use your information

To provide and personalise the Service (your Health Score, recommendations, AI coaching, trends and reviews).
To process subscriptions, trials and billing, and to prevent fraud and automated/bot abuse.
To send reminders and notifications you have enabled.
To improve, secure and support the Service, and to meet legal obligations.

We do not sell your personal data.

3. Sensitive personal & genetic data

Health, biometric and genetic information are sensitive. We process them only to deliver the Service you request, with your consent, and apply additional safeguards. You can withdraw consent and delete this data at any time (see Section 7).

4. How we share information

We share data only with service providers who process it on our behalf under contract, including: cloud/database hosting (Supabase), AI processing for recommendations and food/vitals analysis (Anthropic, OpenAI), notifications (OneSignal), and payment providers (Apple, Google, Razorpay). We may disclose information where required by law. We do not share your data for third-party advertising.

5. Data retention

We keep your data while your account is active and as needed to provide the Service or meet legal requirements. When you delete your account, we delete or anonymise your personal data within a reasonable period, except where retention is legally required.

6. Security

We use encryption in transit and at rest, access controls and other measures to protect your data. No system is perfectly secure, but we work to safeguard your information.

7. Your rights & choices

Access, correct or export your data.
Delete your account and data from within the app (Profile → Delete account) or by emailing us.
Withdraw consent, and manage notification and camera permissions in your device settings.

We honour applicable rights under India's Digital Personal Data Protection Act, 2023 and the GDPR where relevant.

8. Children

TRIGR is intended for adults aged 18 and over and is not directed to children. We do not knowingly collect data from anyone under 18.

9. International transfers

Your data may be processed in countries other than yours by our providers, with appropriate safeguards in place.

10. Changes

We may update this policy and will post the new version with a revised date. Material changes will be notified in-app.

11. Contact

Vieroots Wellness Private Limited - privacy@vieroots.com. For grievances, contact our Grievance Officer at the same address.