Privacy Policy

Effective Date: 01/05/2026

SomnoTrak is a product of GRAFX Group, Inc. We respect your privacy and are committed to protecting your personal information.

This Privacy Policy describes how we collect, use, disclose, and safeguard information when you use SomnoTrak, including our mobile applications, websites, APIs, and related services.

Information We Collect

Information You Provide

  • Name
  • Email address
  • Account credentials
  • Demographic details you choose to share
  • Communications with support

Health and Wellness Data

  • Sleep metrics
  • Heart rate and heart rate variability
  • Oxygen saturation
  • Temperature trends
  • Device-generated physiological data you choose to sync

Automatically Collected Information

  • Device type, operating system, and app version
  • App interaction and usage data
  • IP address and approximate location
  • Diagnostic and performance logs

Legal Basis for Processing

Where required by applicable law, including the General Data Protection Regulation (GDPR), we process personal data under the following legal bases:

  • Contract performance: to create and manage your account and provide SomnoTrak features and services.
  • Explicit consent: to process health and wellness data that you choose to sync or provide.
  • Legitimate interests: to improve app performance, reliability, security, fraud prevention, and user experience.
  • Legal obligations: to comply with applicable laws, regulations, or valid legal requests.

By using SomnoTrak and syncing device data, you explicitly consent to the processing of health-related data for wellness insights and app functionality.

How We Use Information

  • Provide SomnoTrak features and services
  • Generate sleep and wellness insights
  • Improve performance, reliability, and usability
  • Maintain account security and prevent misuse
  • Communicate service updates and support responses
  • Meet legal and regulatory obligations

We do not sell personal data.

Health and Wellness Data

SomnoTrak handles health-related data with heightened care and safeguards.

  • Health and wellness data is processed only to deliver requested functionality
  • Access is limited to authorized systems and personnel
  • Data is encrypted in transit and at rest where feasible
  • Health and wellness data is not shared without user consent except where legally required

SomnoTrak is not a medical device and does not provide medical advice, diagnosis, or treatment. Data is for informational and wellness purposes only.

Data Sharing and Disclosure

We may share information with:

  • Infrastructure and hosting providers
  • Analytics providers using aggregated or de-identified data
  • Security, monitoring, and error-reporting services
  • Legal or regulatory authorities when required

All service providers are required to protect data and use it only for authorized purposes.

International Data Transfers

SomnoTrak is operated from the United States. If you access SomnoTrak from the European Union, European Economic Area, United Kingdom, or another region, your data may be transferred to and processed in the United States or other jurisdictions.

Where required, we use appropriate safeguards, including standard contractual clauses or equivalent protections, to protect personal data transferred internationally.

Data Security

We use reasonable safeguards, including:

  • Encrypted data transmission
  • Secure storage environments
  • Role-based access controls
  • Ongoing monitoring and logging

No system can guarantee absolute security, but we continuously improve our protections.

Data Retention

  • Data is retained while your account is active
  • Data may be retained for a limited period after account closure for legal, compliance, security, or operational purposes
  • Users may request deletion of their account and associated data
  • Some information may be retained where required by law or necessary to resolve disputes

Your Rights and Choices

You may:

  • Access or update account information
  • Request deletion of your data
  • Request a copy or export of your data where supported
  • Opt out of non-essential communications
  • Withdraw consent where processing is based on consent

Requests can be made through the app or by contacting us.

GDPR Rights

If you are located in the EU or EEA, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion
  • Restrict or object to processing
  • Request data portability
  • Withdraw consent at any time
  • Lodge a complaint with a data protection authority in your country

To exercise GDPR rights, contact us using the details below.

CCPA and California Privacy Rights

If you are a California resident, you have the right to:

  • Know what personal data we collect and why
  • Request deletion of personal data
  • Opt out of the sale or sharing of personal data
  • Not be discriminated against for exercising privacy rights

We do not sell personal data. Requests may be submitted via the contact details below.

Children’s Privacy

SomnoTrak is not intended for children under 13. We do not knowingly collect personal information from children. If we become aware of such data, it will be deleted.

App Store and Platform Compliance

SomnoTrak complies with Apple App Store and Google Play policies, including:

  • Transparent data collection disclosures
  • User consent for data processing
  • Limited use of data for core functionality
  • No sale of personal or health data
  • Clear account deletion and data removal options

Changes to This Policy

We may update this Privacy Policy periodically. Updates will be posted on this page. Continued use of SomnoTrak after updates means you accept the updated policy.

Contact Information

For questions or requests related to privacy:

GRAFX Group, Inc.
Email: legal@grafxgrp.com
Website: https://www.somnotrak.com

© 2026 GRAFX Group, Inc. All rights reserved.