How does Allura's AI work with my private health data?

Allura uses a Privacy-First AI model. On newer iPhones, we use Apple Intelligence to process your cycle insights directly on your device - your data never leaves your phone. For older devices, we use the OpenAI API with professional protections, and we strip away your name and email before sending any query.

How do I delete my Allura data?

You are in total control. You can delete specific logs or your entire account directly in the Settings menu. Once you hit delete, we purge your data from our servers. If you aren't using an account, simply deleting the app erases all your local data instantly.

Privacy Policy | Allura Period Tracker

Q: Does Allura sell my period data?

No. Never. Allura does not sell, rent, or trade your personal or health information to data brokers, insurance companies, or advertisers. Our business model is built on providing value to you, not selling your secrets.

Q: What data does Allura collect?

Only what you choose to tell us. This may include your cycle dates and symptoms, Basal Body Temperature and moods, and basic device info to ensure app stability. We do not use third-party marketing trackers to follow you around the internet.

Q: Where is Allura based and what privacy laws does it follow?

Allura is a Canadian company based in Ontario. We comply with PIPEDA (Canada's federal privacy law), which is one of the strictest privacy standards in the world.

Allura Privacy FAQ

Your body, your data. Period.

At Allura, we believe that your health data is a part of you—not a product to be sold. Here are the answers to the most common questions about how we protect your privacy.

1. Do you sell my data?

No. Never. We do not sell, rent, or trade your personal or health information to data brokers, insurance companies, or advertisers. Our business model is built on providing value to you, not selling your secrets.

2. Can I use Allura without an account?

Yes. When you first open Allura, you can choose to use the app in Anonymous Mode. This means your data stays 100% on your phone and isn't linked to an email or name. If you choose to create an account later (using Email, Apple, or Google), it is only to help you sync your data across devices or recover it if you lose your phone.

3. How does the AI work? Is it reading my private logs?

We use a "Privacy-First" AI model.

On-Device: If you have a newer iPhone, Allura uses Apple Intelligence to process your cycle insights directly on your device. Your data never leaves your phone to generate these predictions.

Secure Cloud: For older devices, we use the OpenAI API to help answer your health questions. We use the professional "API" version, which means OpenAI is legally prohibited from using your questions to train their global models. We also strip away your name and email before sending a query.

4. What data does Allura collect?

Only what you choose to tell us. This may include:

Your cycle dates and symptoms.
Basal Body Temperature (BBT) and moods.
Basic device info (like your iOS version) to make sure the app doesn't crash.

We do not use third-party marketing trackers (like Facebook or AppsFlyer) to follow you around the internet.

5. How do you keep my data secure?

We use the same level of security that banks use.

Encryption: Your data is encrypted while it's sitting on your phone and while it's traveling to our secure servers.

Biometrics: You can lock the Allura app using FaceID or TouchID so that even if someone has your phone, they can't see your health logs.

6. Does Allura share data with Apple Health?

Only if you want us to. You can choose to sync Allura with Apple HealthKit. This is a two-way street: we can pull data (like steps or sleep) to help predict your cycle, and we can send your period dates to Apple Health so all your records are in one place. You can turn this off at any time in your iPhone settings.

7. Where is Allura based?

We are a Canadian company based in Ontario. We comply with PIPEDA (Canada's federal privacy law), which is one of the strictest privacy standards in the world.

8. How do I delete my data?

You are in total control.

In-App: You can delete specific logs or your entire account directly in the "Settings" menu.

Instant: Once you hit delete, we trigger a process to purge your data from our servers. If you aren't using an account, simply deleting the app from your phone erases all your local data instantly.

Have more questions?

We're happy to help. You can reach our team at admin@alluratechnologies.com.

Privacy Policy for Allura

Last Updated: January 6, 2026

Effective Date: January 6, 2026

Welcome to Allura, operated by Allura Technologies Inc. ("Allura", "we", "us", or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application (the "App") and our website (the "Services").

By using Allura, you agree to the practices described in this policy. If you do not agree, please do not use the Services.

1. Our Privacy Philosophy

Unlike many apps in the fem-tech space, Allura was built with the assumption that your health data belongs to you.

Data Minimization: We only ask for what we need to provide your predictions.
On-Device First: We prioritize processing your data on your physical hardware rather than our servers.
No Monetization of Data: We do not, and will never, sell or rent your health data to insurance companies, data brokers, or advertisers.

2. Detailed Categories of Data We Collect

A. Information You Provide to Us

Registration Data: If you choose to create an account, we collect your email address and password. If you use Apple or Google Sign-In, we receive a token and your email address as permitted by those platforms.

Health and Menstrual Data: This includes period start and end dates, cycle length, symptoms (e.g., cramps, headaches), moods, basal body temperature (BBT), sexual activity, and weight.

Communication Data: If you contact our support team, we collect the content of your message and any attachments to resolve your inquiry.

B. Information Collected Automatically

Device Identifiers: We collect your hardware model, operating system version (iOS), and unique device identifiers to ensure app stability.

Service Usage Data: We collect aggregated data on which features of the App are most popular (e.g., "AI Insights" vs. "Calendar View") to inform our development roadmap. This is not linked to your individual identity.

C. Apple HealthKit Data

With your explicit consent, we may read data from and write data to the Apple Health App. This allows for seamless tracking across your devices. We do not use HealthKit data for marketing or advertising purposes, nor do we share it with third parties except as required to provide the core service.

3. The Allura "Hybrid" AI Architecture

We use Artificial Intelligence to provide personalized cycle predictions and health insights. We utilize a two-tier processing system:

Tier 1: Local On-Device Processing

For users with modern, compatible devices (e.g., those supporting Apple Intelligence), your health data and AI prompts are processed locally. In this tier:

Your data never leaves your device.
Allura utilizes local Foundation Models to generate insights.
Insights are private to you and are not accessible by Allura Technologies Inc.

Tier 2: Secure Cloud Processing (OpenAI API)

For older devices or highly complex queries, Allura uses the OpenAI API.

API Protection: We use a professional API tier, which ensures that your prompts are never used to train OpenAI's public models (e.g., ChatGPT).
Temporary Retention: Your prompt is sent via encrypted channels and is subject to OpenAI's 30-day data deletion policy for API calls.
De-identification: We strip your name and email from any prompt before it is sent to the cloud.

4. Legal Basis for Processing

We process your information under the following legal frameworks:

Consent: For the collection of sensitive health data (Special Category Data). You may withdraw this consent at any time by deleting your data or your account.
Contractual Necessity: To provide the cycle tracking and prediction services you signed up for.
Legitimate Interests: To improve our app's performance, ensure security, and prevent fraud.

5. Data Storage, Retention, and Transfers

Storage

Allura is a Canadian company. While we prioritize on-device storage, any data synced to the cloud is stored on secure, encrypted servers (e.g., AWS or iCloud).

International Transfers

If you are located in the European Economic Area (EEA) or the UK, please note that we may transfer your data to Canada or the United States. Canada is recognized by the EU as providing "adequate protection" for personal data. For transfers to the US (e.g., OpenAI API), we use Standard Contractual Clauses (SCCs) to ensure your data remains protected.

Retention

Active Accounts: We keep your data as long as your account is active.
Inactive Accounts: If your account is inactive for more than 24 months, we will reach out to ask if you want to keep your data.
Deletion: If you delete your account, your data is purged from our production servers within 30 days.

6. Your Rights and Choices

Regardless of your location, Allura provides the following rights to all users:

The Right to Access: You can request a copy of all health data you have logged.
The Right to Portability: You can export your data in a machine-readable format.
The Right to Erasure ("Right to be Forgotten"): You can delete your account and all data at any time via the "Settings" menu.
The Right to Object: You can opt-out of specific data processing, such as cloud-based AI insights, by adjusting your app settings.

7. Security Measures

We implement industry-leading security to protect your most sensitive logs:

Encryption at Rest: All data stored on our servers is encrypted using AES-256.
Encryption in Transit: All communication between your app and our servers is encrypted via TLS 1.3.
Secure Enclave: On-device data is protected by your phone's biometrics (FaceID/TouchID) if enabled.

8. Children's Privacy

Allura is not intended for use by individuals under the age of 13. If you are under 16 and live in the EEA, UK, or Canada, you must have parental consent to use the Services. If we learn we have collected data from a child without proper consent, we will delete it immediately.

9. Changes to This Policy

We may update this policy from time to time. If we make "material changes" (such as changing how we share health data), we will notify you via a prominent notice in the App or via email before the change takes effect.

10. Contact Information

For questions regarding this policy or to reach our Data Protection Officer (DPO), please contact:

Allura Technologies Inc.
Attn: Privacy Department
Email: admin@alluratechnologies.com
Address: 3355 Hurontario St
Unit 05 PMB 323
Mississauga, ON
L5A 3E7, Canada