← Back to home

Privacy Policy

Last updated: March 24, 2026

1. Who We Are

Novapath ("we," "us," or "our") operates the website at novapath.appand the Novapath application (collectively, the "Service"). We are committed to protecting your privacy, especially given the sensitive nature of the topics our Service addresses.

2. Information We Collect

2.1 Information You Provide

  • Email address— when you join our waitlist or create an account.
  • First name— optionally, if you choose to provide it.
  • Wellness-related responses— information you voluntarily share when using the Service, such as journal entries, survey answers, or interactions with the AI companion.

2.2 Information Collected Automatically

  • Usage data— pages viewed, features used, time spent, referring URL, and general interaction patterns.
  • Device information— browser type, operating system, screen resolution, and language preference.
  • IP address— used for security, fraud prevention, and approximate geographic location (country/region level only).
  • Cookies and tracking pixels— we use first-party cookies for session management and Meta Pixel for advertising measurement. See Section 6.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service.
  • Send you waitlist updates, product announcements, and service-related communications.
  • Personalize your experience within the AI companion based on your interactions.
  • Analyze usage patterns to improve product quality and user experience.
  • Detect and prevent fraud, abuse, or security incidents.
  • Comply with legal obligations.

We will never sell your personal data to third parties.

4. Health Data & Sensitive Information

We understand that information related to eating behaviors and mental health is deeply personal. We treat all wellness-related data you share with the highest level of care:

  • Wellness data is encrypted at rest and in transit.
  • We do not share your wellness data with insurers, employers, data brokers, or advertisers.
  • AI conversations are processed to provide you with personalized support. We may use aggregated, de-identified data to improve our models, but never in a way that identifies you.
  • You can request deletion of all your wellness data at any time (see Section 8).

5. How We Share Information

We only share your personal information in the following circumstances:

  • Service providers— trusted third parties that help us operate the Service (e.g., cloud hosting, email delivery). These providers are contractually bound to protect your data and may only use it to provide services to us.
  • Legal requirements— if required by law, regulation, legal process, or enforceable governmental request.
  • Safety— if we believe in good faith that disclosure is necessary to protect the safety of any person.
  • Business transfers— in connection with a merger, acquisition, or sale of assets, with continued privacy protections.

6. Cookies & Tracking

We use the following tracking technologies:

  • Essential cookies— required for the Service to function (session management, security).
  • Analytics— to understand how visitors use our website and improve the experience.
  • Meta Pixel— to measure the effectiveness of our advertising campaigns on Meta platforms. This pixel may collect your IP address, browser information, and page view data. You can opt out of Meta's tracking at Meta Ad Preferences.

You can disable cookies in your browser settings, though some features of the Service may not function properly without them.

7. Data Storage & Security

  • Your data is stored on secure servers provided by Amazon Web Services (AWS) in the United States.
  • We use encryption in transit (TLS) and at rest to protect your data.
  • Access to personal data is restricted to authorized personnel on a need-to-know basis.
  • While we implement industry-standard security measures, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access— request a copy of the personal data we hold about you.
  • Correction— request correction of inaccurate or incomplete data.
  • Deletion— request deletion of your personal data. We will comply within 30 days unless we have a legal obligation to retain it.
  • Portability— request your data in a structured, machine-readable format.
  • Opt-out— unsubscribe from marketing communications at any time via the link in our emails.

To exercise any of these rights, contact us at support@novapath.app.

9. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we learn that we have collected data from a child under 18, we will delete it promptly. If you believe a child has provided us with personal data, please contact us at support@novapath.app.

10. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. Waitlist data is retained until you unsubscribe or request deletion. We may retain certain data as required by law or for legitimate business purposes (e.g., fraud prevention, legal compliance).

11. International Users

If you are accessing the Service from outside the United States, please be aware that your data may be transferred to and processed in the United States. By using the Service, you consent to this transfer. We take steps to ensure your data receives adequate protection in accordance with this Privacy Policy.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, contact us at:

Novapath
Email: support@novapath.app