Privacy Policy
Privacy by design.
Catina is built around a simple privacy principle: we cannot expose, sell, or mine health data that we do not have. Your account can stay anonymous, your health data stays encrypted on your device, and AI interactions are designed to remain private.
Anonymous
No real name needed
On-device only
Health data never leaves
E2E encrypted
Chats and data protected
Private AI
No external AI provider
Nothing to sell
We hold no personal health data
Your identity
You do not need to tell us who you are.
You can sign up with a made-up username. We never require your real name, location, or identifying details to use the platform. If you provide an email address, we use it only for account access and support.
Your health data
We never see it, touch it, or store it.
Health data is stored locally on your device and encrypted. You can export encrypted data to another device or delete it at any time.
What happens
- Stored locally, encrypted
- Exported encrypted to other devices when you choose
- Deleted instantly from your device controls
What never happens
- Uploaded to our servers
- Seen or accessed by us
- Shared with anyone for advertising or resale
AI and chat encryption
Your conversations with AI are private end-to-end.
Chats sent to the AI are end-to-end encrypted, meaning only your device can read them. The AI runs in a Trusted Execution Environment (TEE), a protected runtime designed to process requests privately without sending your chat or health data to an external AI provider or ordinary cloud service.
Conversation history is stored locally on your device. If you clear it, it is gone from that device. If you want to keep a copy, use the export tools before deleting it.
What we do collect
Only basic, anonymous usage signals needed to keep the app working well.
We may collect anonymous technical data such as crash reports, performance information, and which features are used. This helps us fix bugs and improve the platform. It is not linked to your health data and is not combined with identifying details.
Data sharing and selling
We hold no personal health data, so there is nothing to sell.
We do not sell, rent, or share personal information. The only exception is a legal obligation, such as a valid court order, in which case we can only provide the limited account information we actually hold, such as an email address if you gave us one.
Your rights
Most rights are already met by design.
Because we collect so little, many access, correction, and deletion rights are handled directly through your in-app controls. For anything else, contact us and we will respond within 48 hours.
Children and policy changes
Catina is for users 18 and over. If we make significant changes to this policy, we will notify you at least 14 days in advance and will not reduce your privacy protections without clear notice.