Note: this privacy policy applies to the Chronic Insights mobile app, not this website
Effective from 24th April 2023 for app version 4.2.4+
Hi, my name is James Allen, I'm the founder, CEO and Data Protection Officer at Chronic Insights Ltd. This privacy policy outlines what data the Chronic Insights app collects, why, and it is stored. I hope you find it clear and informative, but if you have any questions at all please don't hesitate to contact me:
Who we are
When this policy talks about "Chronic Insights", "us", "we" or "our", it means Chronic Insights Ltd, a private limited company registered in England, UK, and our registered office address is TusPark, Maybrook House, 27 Grainger Street, Newcastle upon Tyne, United Kingdom, NE1 5JE. Our company registration number is 11543455.
When this policy talks about the "App", it means the Chronic Insights mobile app available on the Google Play Store and Apple App Store.
Designed for privacy
I founded Chronic Insights Ltd after living with ankylosing spondylitis (AS) for over 20 years. AS is an invisible, painful and long-term health condition which I find difficult to describe, and difficult to figure out what helps and triggers it. I created the Chronic Insights app to help myself and others live better with chronic illness, and to give us the choice of using a truely private symptom diary app.
I have designed Chronic Insights to be as private as possible, while still allowing me to resolve errors and bugs in the app. This is why the app does NOT collect or sell any health data or personally identifying information (data which can be linked to you personally). For example, it does not collect email addresses, names, telephone numbers, IP addresses, location / GPS, and it doesn't use trackers of any kind. I believe we deserve to keep our private health data private, and out of the hands of data brokers and other 3rd parties who make money from personal data.
However, in order to rectify errors and bugs in the app, if an unexpected error or crash occurs, the app does collect information about your device, and what caused the error. This does NOT include any health data or personally identifying information.
Data we collect
Crash Data
All Crash Data is anonymous. Crash Data contains the following information which is collected if the app suffers a crash or error:
What time the App crashes or develops an error
Technical details of the crash or error
The version of the App
Information about your device which can help identify the cause of the error. This includes:
Make and model of the device
A randomly generated anonymous identifier
What accessibility settings are enabled on the device
What permissions you have granted to the app
The timezone and locale set on the device
The battery level on the device
The boot time of the device
Whether or not the device was charging at the time of error
The amount of storage space and memory available
The orientation of the device
The screen size
The battery temperature of the device
The internet connection type (wifi or cellular)
How we collect crash data
Crash data is encrypted in transit and sent from your device to Sentry Inc, a GDPR-compliant data processor who provide crash analytics services. Sentry Inc collect, categorise and store the data on our behalf. We use Sentry because they provide a way to efficiently catalogue, analyse, manage and resolve error reports from mobile devices.
How we use crash data
Crash Data collected by us will only be used to investigate, fix and patch software bugs and design flaws.
Sharing data
Crash Data
Crash Data are collected, stored and processed by a data processor called Sentry Inc (address: 132 Hawthorne St, San Francisco, CA 94107). Sentry is a GDPR-compliant data processor certified under the EU-US Privacy Shield Framework. You can request a copy of our data processing agreement between Chronic Insights Ltd and Sentry Inc by emailing our Data Protection Officer at:
Google Places API
The App offers the optional ability to search for a geographical location using an auto-complete text search query. This feature allows you to select a location to use when downloading weather data. The location auto-complete feature is implemented using the Google Places API (part of the Google Maps API), and involves sending the search query you enter to Google for auto-completion (for example, if you enter 'Trie', this text is sent to Google, so that it can match locations such as 'Trieste, Italy' or 'Trier, Germany'). Further details about this data transfer can be found in Google's Privacy Policies.
The location you select is NOT collected by Chronic Insights. It is only used to download the correct weather data.
Data we do NOT collect
For clarity, we also outline here what data we do NOT collect:
Backup Data
The App includes an optional feature to backup your data to a 3rd party GDPR-compliant Data Processor, Dropbox Inc, to ensure you can restore your data in the event of data loss (for example, if you lose or upgrade your device, or uninstall the app). This is referred to as your Backup Data.
We DO NOT collect this Backup Data and have no access to it.
Dropbox Inc. are a cloud storage service headquartered in 185 Berry St. Ste. 400 San Francisco, CA, 94107 and is certified under the EU-US Privacy Shield and Swiss-US Privacy Shield. You can request our Data Protection Agreement with Dropbox by contacting our Data Protection Officer at:
Use of the backup feature requires that you have a Dropbox account. The first time you use the backup feature within the App to backup your App data, you must login to your Dropbox account. An authentication token is stored securely within the App for subsequent use.
Your Backup Data is stored according to the terms and conditions you agreed to when you signed up for your Dropbox account. Your relationship with Dropbox is entirely separate to your relationship with Chronic Insights. Chronic Insights is in no way affiliated or partnered with Dropbox.
The App is only granted access to a specific subfolder, Apps/ChronicInsights, in your Dropbox account. The App uses this access to read and write your Backup Data for the purposes of backup and restore of your App data.
It is your responsibility to control access to your Dropbox account, and to take appropriate measures to protect access to it (for example, by using a strong password which you do not reveal to others). Anyone who you intentionally or accidentally provide access to the Apps/ChronicInsights folder in your Dropbox account will also have access to the data you have entered into the App.
Fitness Tracker Data
The App offers the optional ability to sync Fitness Tracker Data (such as steps taken, heart rate, activity level) into the symptom diary from various fitness vendors, for example Fitbit, Google Fit, Health Connect and Apple Health. This is to allow users to gain insight into whether activities correlate with their symptoms. All Fitness Tracker Data remains on your device. No Fitness Tracker Data is collected by Chronic Insights. No Fitness Tracker Data is shared with any 3rd parties. You can remove all Fitness Tracker Data from the App by clicking on the 'Sign Out' button in the Fitness Tracker integration settings page in the App.
Weather Location Data
The App offers the optional ability to download weather data for a location you enter into the app. This location is NOT collected by Chronic Insights. It remains on your device and is only used to download the correct weather data.
Retention periods
Crash data are only retained for as long as necessary to fulfil the purposes for which we process this data for. This includes rectifying the software error causing the crash, verify that the problem has been resolved, and determining if subsequent errors are new or regressions of previous bug fixes.
Children’s privacy protection
This App is not designed for, or intentionally targeted at, children and we do not knowingly collect data related to children.
Your rights
Because crash data is anonymous, by design we are physically unable to identify which crash data originated from you or your specific device. By agreeing to this Privacy Policy and EULA when installing the App, you agree that any crash data collected by us cannot be deleted on request.
For more information about your rights under the GDPR, you can contact the Information Commissioners Office (the data protection regulator in the UK) at: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, telephone: 0303 123 1113 (local rate).
Changes to this policy
We may update this policy from time to time and, if we make any material changes, we will notify you when we do so. By continuing to use our App after any changes are made and we have notified you of them, the way we use your data will be subject to the terms of the updated policy.
Contact us
For any questions or concerns, you can contact us by sending an email to: