BloodSight

Privacy Policy

Effective: April 15, 2026

1. Introduction

BloodSight ("we", "us", "our") operates a web-based blood test analysis service (the "Service"). This Privacy Policy explains how we collect, use, and protect your information when you use our Service. For questions, contact support@bloodsight.com.

2. Information We Collect

Account Data

Name, email address, and authentication method (email/password or Google sign-in).

Profile Data

Name, date of birth, biological sex, height, and weight — provided optionally to improve analysis accuracy.

Health Data

Blood test biomarker names, values, units, reference ranges, and AI-generated interpretations. We treat this as sensitive health information.

Usage Data

IP address, browser type, device information, and timestamps collected automatically through server logs.

Billing Data

Subscription status and transaction identifiers. Payment details (credit card numbers, billing addresses) are handled entirely by Paddle and are never stored on our servers.

3. How We Use Your Information

  • Providing the blood test analysis service
  • Storing your biomarker history for health trend tracking
  • Sending your biomarker data to third-party AI service providers for analysis
  • Sending transactional emails (analysis completion, billing notifications)
  • Maintaining security and preventing abuse of the Service

4. AI Processing

To provide analysis, we send biomarker data (names, values, units, and reference ranges) along with basic profile information (age, sex) to third-party AI service providers. These providers process your data under contract and do not use it to train their AI models. AI-generated outputs may contain errors and are provided for informational purposes only.

5. Third-Party Service Providers

  • AI service providers — process biomarker data to generate analysis
  • Paddle — our Merchant of Record, handles payment processing and billing. See Paddle's privacy policy for details.
  • Google — provides optional sign-in authentication
  • Infrastructure providers — hosting and data storage

We do not sell your health data.

6. Data Retention and Deletion

  • Uploaded files — deleted together with analysis results when you delete an analysis or your account
  • Biomarker data and AI interpretations — retained until you delete the specific analysis or your account
  • Account data — retained while your account is active. Permanently deleted when you delete your account
  • Billing records — retained as required by applicable tax and accounting laws

When you delete an analysis, all associated data — the uploaded file, extracted results, and AI interpretations — is permanently removed. When you delete your account, all your data is permanently deleted.

7. Data Security

We protect your data using encryption in transit (HTTPS/TLS), hashed passwords, and access controls. While we implement industry-standard security measures, no method of electronic storage is 100% secure. We cannot guarantee absolute security.

8. Shared Links

You may create shareable links to your analysis results. Anyone with the link URL can view the shared results. You can deactivate shared links at any time. Shared links have expiration dates.

9. Children's Privacy

Our Service is not intended for users under 18 years of age. We do not knowingly collect personal information from individuals under 18. If we become aware that we have collected data from a minor, we will promptly delete it. If you believe a minor has provided us with personal information, please contact support@bloodsight.com.

10. Your Rights

You have the right to:

  • Access your data — your biomarker history and profile information are visible in your dashboard
  • Delete your data — delete individual analyses or your entire account from settings
  • Export your data — contact support@bloodsight.com to request a data export
  • Withdraw from AI processing — you may cancel your subscription and delete your data at any time

11. Cookies

We use minimal cookies for essential functionality only:

  • Session cookie — maintains your login session (functional, required)
  • Sidebar preference — remembers your sidebar state (functional, optional)

We do not use tracking cookies, advertising cookies, or third-party analytics.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email. The "Effective" date at the top of this page indicates the latest revision.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at support@bloodsight.com.