Privacy Policy

The controller of personal data is:

Záchyt s.r.o.
Registered office: Preslova 402/52, 602 00 Brno
Company ID: to be added after registration in the Commercial Register
E-mail: info@zachyt.cz

Záchyt is designed as an offline-first app. This means that most data works only on your device and is not sent anywhere without your separate decision.

Only if you voluntarily enable cloud synchronization or other optional online features will selected data be stored on the servers of the Operator or its processors so that it can work across devices or provide the given feature.

A. Profile data

These data may serve to customize the content of the App:

• Gender
• Date of birth or age
• Health insurer
• City or default area for searching providers

By default these data are stored only locally on your device.

B. Prevention and app usage data

If you fill them in or record them in the App, this may include for example:

• Information about completed screening examinations and their dates
• Planned examination dates
• Answers in the prevention profile
• Answers in the family history questionnaire
• Resulting navigational signals derived from the family or similar questionnaire

These data may reflect your preventive or family health context. We therefore handle them with care and by default store them only locally on your device.

C. Data during sign-in and cloud synchronization

If you voluntarily enable cloud synchronization or sign-in, we may process in particular:

• E-mail address
• Technical identifiers associated with sign-in, session and synchronization
• Data necessary for the functioning of a synchronized profile

Cloud synchronization in the App works at two levels:

1. Basic synchronization (after sign-in)

This may include in particular:

• Profile data (gender, date of birth or age, insurer, location)
• Records of completed examinations and planned dates
• Answers in the prevention profile
• User preferences and settings

2. Sensitive synchronization (separate optional consent)

This may include:

• Answers in the family history questionnaire (genetic questionnaire)
• Results of genetic or similar evaluation
• Derived navigational signals and related evaluations

Sensitive synchronization is off by default. It is only enabled if you separately enable it in the App. If you disable it, sensitive data will stop being synchronized and will be removed from cloud storage; local data on your device is not affected. Consent to sensitive synchronization is stored per account and applies across all your devices.

D. Technical and operational data

The App may process limited technical data necessary for its operation, security and stability, for example:

• Sign-in status
• Technical session identifiers
• Application error data
• Technical information about the device, operating system and app version in case of a crash or error

E. Pseudonymized analytics (optional)

If you grant consent to pseudonymized analytics, we send limited App usage data associated with a random pseudonymous identifier without a direct link to your identity.

These data may include for example:

• Screen names
• Interactions with features
• Screening program identifier (e.g. "breast", "crc")
• Other limited product and navigation data described in the app's analytics taxonomy

We intentionally do not send to analytics:

• Name, e-mail or other contact data
• Age, date of birth, gender or insurer
• Answers from the family or genetic questionnaire
• Profile content
• Completed examinations or their dates
• Precise location

Consent to pseudonymized analytics is voluntary and you may withdraw it at any time.

We intentionally do not send to our external analytics and technical tools in particular:

• First and last name
• National ID number
• Precise home address
• Medical records
• Laboratory results
• Photos, voice recordings or contacts
• Continuous location tracking
• Advertising identifiers for marketing
• Data for personalized advertising

The app does not display advertising and does not sell personal data.

A. Personalization of content on the device

Data you enter into the App may be used to display more relevant information on your device, for example:

• Screening programs that may be approximately relevant for you
• Overview by age, gender and other data
• Health insurer benefits
• Providers nearby

B. Calculation of dates and reminders

If you record a completed examination or date, the App may calculate the next approximate date, show a plan and send a local reminder.

C. Navigational evaluation of family history

If you fill in the family or similar questionnaire, the App may evaluate whether signals appear that may suggest earlier prevention or consultation with a doctor or geneticist.

This output is informational and navigational only. It is neither a diagnosis nor a medical recommendation.

D. Synchronization across devices

If you sign in and enable cloud synchronization, we use your sign-in and synchronization data so that you can use selected data on multiple devices.

Basic synchronization is used to transfer common profile, prevention and planning data between devices. More sensitive data, especially family history and related genetic evaluation, is synchronized only on the basis of a separate optional setting.

E. Technical stability and security

We use limited technical data to detect errors, fix crashes, secure sign-in and ensure safe operation of the app.

F. Pseudonymized analytics

With your consent we use limited pseudonymized analytical data to understand which features are used, how to improve usability of the App and how to evaluate its product performance.

A. On your device

By default, your profile and prevention data are stored directly on your device.

Sign-in credentials or tokens may be stored in the device's protected system storage (for example iOS Keychain or Android Keystore).

Without sign-in and cloud synchronization, your profile and prevention data remain only on your device.

B. In the cloud — only if you enable synchronization or another online feature

If you voluntarily enable cloud synchronization or another online feature, selected data will also be stored in the cloud infrastructure used by the Operator or its processors.

Without sign-in, your profile and prevention data is not stored in the cloud. After sign-in, data included in basic synchronization may be stored in the cloud. More sensitive data, especially family history and related genetic evaluation, is stored in the cloud only if you separately enable sensitive synchronization.

If we use the Supabase service for synchronization, data is stored on servers in the EU.

C. Analytics and technical tools

If you grant consent to pseudonymized analytics, analytical data is processed on servers in the EU (Frankfurt, Germany).

Technical error records may be processed by the processors listed below to the extent necessary for the stability and security of the App.

We do not sell your personal data and do not pass it on to advertising networks.

We may share data only with a limited group of processors that help us operate the App.

A. Supabase

We may use the Supabase service for e-mail sign-in and optional cloud synchronization.

If you do not use synchronization, data intended only for cloud synchronization is not stored in Supabase. If you use basic synchronization, only data included in that level is stored in Supabase. More sensitive data, especially family history and related genetic evaluation, is stored in Supabase only if you separately enable sensitive synchronization.

B. Sentry

We may use the Sentry service for technical error reporting of the App. We intentionally do not send to Sentry:

• Name or e-mail
• Profile content
• Family history
• Genetic or similar sensitive answers
• Completed examinations
• Precise location

Sentry is used only to detect and fix technical problems.

C. PostHog

If you grant consent to pseudonymized analytics, we may use the PostHog service to measure usage of app features.

PostHog receives only the limited pseudonymized analytical data described in this policy. We do not send to PostHog the health content of the profile, contact details or precise location.

If you allow the App access to location, it will use it only to display suitable providers near you or to help find a place.

Your location:

• Is not continuously tracked
• Is not stored as movement history
• Is not sent to advertising networks
• Is not sent to pseudonymized analytics

Use of location is voluntary. The App can be used without GPS permission.

A. Local data

Data stored only on your device remains stored until you delete it in the App, uninstall the App or wipe its data in the device's system.

B. Cloud data

If you use cloud synchronization, we keep cloud data until you delete your profile or account, request its deletion, or until it is removed according to operational rules.

If you disable sensitive synchronization, we remove sensitive cloud data of that level from cloud storage; its local copy on your device is not automatically affected.

C. Technical logs and analytics

Technical error records (Sentry) are kept approximately 90 days. Pseudonymized analytical data (PostHog) is kept approximately 12 months. Specific retention periods may change depending on the settings of the services used.

In the App you can, depending on available features, in particular:

• Edit profile data
• Change or remove answers in questionnaires
• Delete records of completed examinations
• Turn off reminders
• Enable or disable cloud synchronization
• Enable or disable sensitive synchronization of family history
• Delete your entire profile or account

If you use the profile or account deletion feature, local data within the scope of that feature will be removed. If you used cloud synchronization, synchronized cloud data within the scope of the feature or after processing your request will also be removed.

If you need help deleting cloud data, please write to us at info@zachyt.cz.

Under applicable law, in particular GDPR, you may have the right to:

• Know what data we process about you
• Request access to your data
• Request correction of inaccurate data
• Request erasure of data
• Request restriction of processing in cases provided by law
• Object to processing
• Receive your data in a portable format
• Withdraw consent where processing is based on consent

You also have the right to lodge a complaint with the Office for Personal Data Protection.

If you wish to exercise any of these rights, contact us at info@zachyt.cz.

The legal basis may differ depending on the specific feature of the App and the way it is used:

A. Providing basic app functions

Data you enter and use only locally on your device serves primarily to run the App for you and to provide chosen features.

B. Cloud synchronization and online features

If you voluntarily enable cloud synchronization, sign-in, GPS, notifications or another optional online feature, we process related data based on your decision and to the extent necessary to provide that feature.

C. Pseudonymized analytics

We process pseudonymized analytics only based on your consent, which you may withdraw at any time.

D. Technical stability and security

We may process limited technical logs and security records based on our legitimate interest in ensuring the stability, security and protection of the App.

We try to protect your data with appropriate technical and organizational measures, in particular:

• Storing most sensitive data locally on your device
• Using protected system storage for sign-in tokens
• Sharing data only with necessary processors
• Minimizing data sent to analytics and technical tools

Still, no system can guarantee complete security. We therefore also recommend protecting the device itself, for example with a screen lock, system updates and secure access to e-mail.

The App is not intended for small children. If the App is used by a minor, we recommend that it is done with the participation or help of a parent or other legal representative.

We may update this policy from time to time if the App's features, data processing or legal requirements change.

The current version will always be available in the App or on the related website. In case of a material change we will try to notify you in an appropriate way.

If you have a question about personal data protection or want to exercise your rights, write to us:

info@zachyt.cz