Steady
Last updated: June 29, 2026

Health Data Privacy Policy

What We Collect

Steady collects the health information you voluntarily enter into the App, including symptom ratings, attack logs, dietary information, medication records, and weather data. This information is stored on your device and automatically synced to a secure cloud database (Supabase) associated with your anonymous account. Your data is encrypted in transit and at rest in the cloud.

Where Your Data Is Stored

Your data is stored in two places: locally on your device (for offline access and fast loading) and in a secure cloud database provided by Supabase (supabase.com) for backup and cross-device sync. Data is synced automatically a few seconds after any change. Your data is associated with an anonymous ID generated on first launch. No personal identifying information is required. Supabase stores data on encrypted servers in the United States. You can review Supabase's security practices at supabase.com/security.

What We Don't Collect

Steady does not collect: your name, email address, or contact information; location data beyond what is needed to fetch weather (coordinates are sent directly to weather APIs and not stored); device identifiers; usage analytics or tracking data; advertising identifiers. We do not use cookies for tracking purposes.

Weather Data

When you use the weather feature, your device's GPS coordinates are shared directly with Open-Meteo and the National Weather Service to retrieve local weather data. These coordinates are used only for the weather request and are not stored by Steady. Please review Open-Meteo's privacy policy at open-meteo.com and the NWS privacy policy at weather.gov for their data practices.

Food Search Data

When you use the food search feature, your search query is sent to the USDA FoodData Central API to retrieve nutritional information. Steady does not log or store your search queries. Please review the USDA privacy policy at usda.gov for their data practices.

Physician Reports

PDF reports are generated entirely on your device. No report data is transmitted to Steady or any third party. The PDF is downloaded directly to your device. You are responsible for the security of any reports you share with healthcare providers.

HIPAA

Steady is a consumer wellness application and is not a HIPAA-covered entity or business associate as defined under the Health Insurance Portability and Accountability Act (HIPAA). HIPAA protections apply to covered entities such as healthcare providers, health plans, and their business associates. While Steady is not legally obligated to comply with HIPAA, we voluntarily follow its core principles: we do not sell your health data, we minimize data collection, and we give you full control over your information.

Your Rights and Control

You have full control over your data at all times. You can: view all your data within the App; delete any individual day's data from the History tab; request complete deletion of your cloud data by contacting us with your anonymous user ID (found in your browser's local storage under the key 'steady_user_id'). Clearing your browser's local storage removes the local copy; your cloud data will persist until deletion is requested. We will process deletion requests within 30 days.

Children's Privacy

Steady is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has entered personal health information into the App, please clear the browser's local storage on their device.

Changes to This Policy

We may update this Privacy Policy as the App evolves. We will update the 'Last updated' date when material changes are made. Continued use of the App after changes constitutes acceptance of the revised policy. For significant changes affecting how your data is stored or shared, we will notify you within the App on next launch.

Contact

If you have questions or concerns about this Privacy Policy or how your health data is handled, please contact us through the App's official website or support channel.