Tibera Health
Back to home

Privacy Policy

Last Updated: February 9, 2026

1. Introduction

Tibera LLC, operating as “Tibera Health” (“Company,” “we,” “us,” or “our”), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our health tracking platform at tiberahealth.com and any associated mobile or web applications (collectively, the “Service”).

By accessing or using the Service, you agree to this Privacy Policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

  • Account information: name, email address, password, and phone number.
  • Health tracking data: food and nutrition logs, hydration records, sleep data, supplement intake, symptom logs, and related notes you voluntarily enter.
  • Family and household data: family member names, household groupings, and shared health tracking data when you use our family features.
  • Shopping and meal-planning data: shopping lists, meal plans, and store preferences.
  • Communication preferences: SMS/MMS/voice consent choices, phone number verification status, and notification settings.
  • Support requests: any communications you send to us for customer support.

2.2 Information Collected Automatically

  • Device information: IP address, browser type, operating system, and device identifiers.
  • Usage data: pages visited, features used, session duration, and referral sources.
  • Cookies and similar technologies: we use cookies and local storage to maintain your session, remember preferences, and improve the Service.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service.
  • Deliver health tracking features including nutrition analysis, hydration reminders, sleep insights, and symptom correlations.
  • Send transactional communications such as account notifications, health alerts, and hydration reminders (with your consent).
  • Send marketing and promotional messages (only with your explicit opt-in consent).
  • Process and manage family sharing and household features.
  • Respond to your support requests and communications.
  • Analyze usage patterns to improve our Service.
  • Comply with legal obligations.

4. Legal Basis for Processing

We process your personal information based on:

  • Contract performance: to provide the Service you signed up for.
  • Consent: for SMS/MMS/voice communications, marketing messages, and optional health data sharing.
  • Legitimate interests: to improve our Service, prevent fraud, and ensure security.
  • Legal compliance: to meet applicable regulatory requirements.

5. How We Share Your Information

We do not sell your personal information. We may share your data with the following categories of recipients:

  • Service providers: cloud hosting (Vercel, Supabase), SMS/voice delivery (Twilio), email delivery, and analytics providers that help us operate the Service.
  • Mobile data restriction: mobile phone numbers, SMS/voice opt-in data, and consent records are not sold or shared with third parties or affiliates for their own marketing or promotional purposes.
  • Family members: if you use our family sharing features, health tracking data you choose to share will be visible to members of your household or extended family group.
  • Legal requirements: when required by law, subpoena, court order, or to protect our rights, safety, or property.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, your data may be transferred to the successor entity.

6. SMS, MMS, and Voice Communications

We collect separate, explicit consent before sending you any SMS, MMS, or automated voice communications. Consent is collected through our SMS Consent page, where you can individually opt in to:

  • Transactional messages: hydration reminders, health alerts, and account notifications.
  • Marketing messages: health tips, new features, and promotional offers (maximum 8 per month).
  • Voice calls: automated health reminders and account notifications.

All checkboxes are unchecked by default. Consent is not a condition of purchase or use of the Service. You may opt out at any time by replying STOP to any text message, pressing 9 during any automated call, or updating your preferences in account settings. Message and data rates may apply.

7. Your Privacy Rights

Depending on your jurisdiction, you may have the right to:

  • Access and receive a copy of your personal data.
  • Correct inaccurate personal data.
  • Request deletion of your personal data.
  • Opt out of marketing communications.
  • Withdraw consent at any time.
  • Request data portability.

7.1 California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including:

  • The right to know what personal information we collect, use, and disclose.
  • The right to request deletion of your personal information.
  • The right to opt out of the sale or sharing of personal information.
  • The right to non-discrimination for exercising your rights.

We do not sell or share personal information for cross-context behavioral advertising. We honor Global Privacy Control (GPC) signals.

7.2 Exercising Your Rights

To exercise any of these rights, contact us at support@tiberahealth.com. We will respond to verifiable requests within 45 days.

8. Data Security

We implement industry-standard security measures to protect your data, including:

  • Encryption in transit (TLS/SSL) and at rest.
  • Secure authentication with password hashing.
  • Access controls limiting data access to authorized personnel.
  • Regular security monitoring and auditing.

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

9. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. Health tracking data is retained until you delete it or request account deletion. SMS consent audit records are retained for 5 years after the last consent event to comply with TCPA record-keeping requirements. We may retain certain data longer when required by law.

10. Children’s Privacy

The Service is intended for users aged 13 and older. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us at support@tiberahealth.com and we will promptly delete such information.

For users between 13 and 17, parental or guardian consent is required. Parents and guardians are responsible for monitoring their minor’s use of the Service.

11. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before providing any personal information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy with a new “Last Updated” date. Your continued use of the Service after changes are posted constitutes your acceptance of the revised policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Tibera LLC
8 The Green #15995
Dover, DE 19901
Email: support@tiberahealth.com