Veridian Bloom

Veridian Bloom Privacy Policy

Your health data deserves the highest protection—discover how Veridian Bloom implements bank-level security and gives you complete control over your biometric information.

Veridian Bloom is committed to protecting your privacy and biometric data through comprehensive security measures, transparent data practices, and full compliance with UK and EU privacy regulations.

Our Commitment to Your Privacy

At Veridian Bloom, safeguarding your privacy and the security of your biometric and personal data is fundamental to our mission. We believe that empowering you with cutting-edge health insights must go hand-in-hand with absolute trust and control over your information.

Pillars of Our Data Protection Philosophy:

  • User Control: You maintain full authority over your data, from consent to deletion.
  • Transparency: We clearly explain what data we collect, why, and how it's used.
  • Security First: Implementing industry-leading security measures to protect your information.
  • Compliance: Adhering strictly to global and regional data protection laws, including GDPR.

Our comprehensive privacy policy outlines in detail our practices concerning the collection, processing, storage, and sharing of your data. We regularly audit our compliance with UK data protection regulations and GDPR, ensuring our practices evolve with the highest standards.

You have fundamental rights concerning your data, including the right to access, correct, delete, and port your information, as well as the ability to withdraw consent at any time. For any privacy-related inquiries or to exercise your data rights, please contact our Data Protection Officer.

Data Protection Officer (DPO)
Veridian Bloom
2847 Bishopsgate, Floor 12
London, EC2M 4NR, UK
Email: dpo@veridianbloom.co.uk
Abstract illustration of data protection and privacy, showing interconnected digital shields and locks with green and blue security motifs.
Visualizing our robust commitment to securing your personal and biometric data.

What Data We Collect and How We Use It

To provide you with accurate, personalized wellness insights and a seamless experience, Veridian Bloom collects different categories of data:

  • Biometric Data: This includes heart rate, heart rate variability, body temperature, sleep stages, and activity levels. Collected via your Veridian Bloom smart ring. Used for generating personalized health assessments, sleep scores, activity metrics, and stress indications.
  • Personal Information: Includes your name, email address, date of birth, gender, and general location (country/region). Necessary for account creation, communication, and tailoring insights.
  • Usage Data: Information about how you interact with our app and services, such as feature usage, session duration, and preferences. Utilized for service improvement, troubleshooting, and enhancing user experience.
  • Device Information: Details about your smart ring and mobile device (e.g., operating system, device model, firmware version). Essential for technical support and ensuring compatibility.

Our processing purposes are always transparent and legally justified:

  • Wellness Insights & Health Monitoring: This is the core function, using biometric data to provide actionable insights.
  • Service Improvement: Aggregated and anonymized data helps us refine algorithms and introduce new features.
  • Customer Support: Assisting you with queries and technical issues.
  • Research: With explicit consent, anonymized data may contribute to non-commercial scientific research to advance health understanding.

All data collection adheres to strict data minimization principles, meaning we only collect what is necessary for specified purposes. Whenever possible, we anonymize and aggregate data to protect individual privacy while still enabling valuable service enhancements and research.

Advanced Security for Your Health Data

Your health data is highly sensitive, and its security is our top priority. Veridian Bloom employs a multi-layered security architecture designed to meet and exceed industry standards:

  • End-to-End Encryption: All health data transmitted between your device, our servers, and back to your app is encrypted using advanced cryptographic protocols. Your data is stored in secure, encrypted databases.
  • Secure Storage: Our data centers are ISO 27001 certified and undergo regular SOC 2 audits, ensuring physical and environmental security alongside robust access controls.
  • Access Controls & Audit Trails: Access to sensitive data by Veridian Bloom personnel is strictly limited to need-to-know basis, role-based permissions, and is continuously monitored and audited.
  • Data Breach Prevention Protocols: We maintain vigilant monitoring systems, a comprehensive incident response plan, and adhere to strict notification processes in the unlikely event of a data breach.
  • Third-Party Security Assessments: We regularly engage independent security firms to conduct penetration testing and vulnerability assessments to proactively identify and mitigate potential risks.

Our commitment to security is not just about compliance; it's about building and maintaining your trust in Veridian Bloom as a secure guardian of your wellness journey data.

Illustration of a padlock symbol composed of network nodes and lines, representing secure data connections and encryption, with a subtle green glow.
Robust encryption and advanced security protocols safeguard your sensitive biometric information.

Your Rights and Control Over Your Data

Under GDPR and other applicable data protection laws, you possess clear rights regarding your personal and biometric data. Veridian Bloom is dedicated to enabling you to exercise these rights easily:

  • Right to Access: You can request a copy of the personal data we hold about you and information on how we process it.
  • Right to Rectification: You have the right to correct any inaccurate or incomplete personal data we hold. You can update much of your personal information directly within your Veridian Bloom app settings.
  • Right to Erasure (Right to Be Forgotten): You can request the deletion of your personal data when it is no longer necessary for the purpose for which it was collected, or if you withdraw consent and there is no other legal basis for processing.
  • Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format, and have the right to transmit that data to another controller without hindrance.
  • Right to Withdraw Consent: Where our processing is based on your consent, you have the right to withdraw that consent at any time. This includes granular controls over data sharing and specific preferences within the app.

We provide intuitive controls within the Veridian Bloom app and dedicated support channels to help you manage your privacy preferences and exercise your rights. Should you wish to make a formal request, please contact our Data Protection Officer at dpo@veridianbloom.co.uk.

Review Your Privacy Rights

How We Share Your Data and With Whom

Veridian Bloom commits to transparency regarding data sharing. Your data is primarily used to provide and improve our services to you. We do not sell your personal data. Data may be shared only under specific, clearly defined circumstances:

  • Service Providers: We use trusted third-party service providers (e.g., cloud hosting, analytics, customer support platforms) who assist us in operating our business. These providers are contractually bound to protect your data and process it only for specified purposes, under strict confidentiality agreements.
  • Healthcare Providers (with your explicit consent): If you choose to integrate our services with other healthcare platforms or share data directly with your healthcare provider, we will only do so with your explicit, opt-in consent.
  • Legal Requirements: We may disclose your data if required by law, court order, or governmental regulation, or if we believe such action is necessary to comply with legal obligations, protect our rights or property, or ensure the safety of our users or the public.
  • User-Directed Sharing: You have the option to share certain insights or data points with friends, family, or other applications, for example, through integration features. This is entirely at your discretion and subject to your explicit permission.

For international data transfers, particularly outside the UK/EU, we ensure that appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission, to guarantee your data receives an equivalent level of protection.

Staying Informed About Privacy Changes

The digital landscape and regulatory requirements are constantly evolving. Veridian Bloom may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal obligations.

  • Notification of Changes: We will notify you of any material changes to this policy through prominent notices within the Veridian Bloom app, via email, or on our website.
  • Material Changes: A material change is defined as one that significantly alters how your data is collected, used, or shared, or impacts your rights. For such changes, we will seek your explicit re-consent where required by law.
  • Policy Version History: A record of all previous versions of our Privacy Policy will be accessible on our website, allowing you to track changes over time.
  • Your Options: Upon notification of a policy update, you will have the option to review the changes, accept the new terms, modify your preferences, or, if you disagree with the updated terms, discontinue your use of our services.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of Veridian Bloom services after any policy revisions indicates your acceptance of the updated terms.