← Back

Privacy Policy

Effective June 22, 2026

This Privacy Policy explains how Grand Health (“Grand Health,” “we,” “us”) collects, uses, and protects information in connection with the Grand Health patient and clinician application (the “App”). The App is provided to patients of Grand Health and their care teams to support personalized, preventive healthcare. By using the App you agree to the practices described here.

Information we collect

We collect the following categories of information:

  • Account information — your name, email address, and the credentials used to sign in.
  • Health and profile information — information you or your care team enter, such as date of birth, sex, height, weight, dietary preferences, medications and supplements, training plans, food logs, and clinical notes.
  • Wearable device data — if you choose to connect a third-party device or service (for example, Oura or Whoop), we receive metrics such as sleep, heart rate variability, resting heart rate, readiness or recovery scores, activity, and calories. We only access this data after you explicitly authorize the connection, and you can disconnect at any time from the integrations screen.
  • Usage information — limited technical and audit data needed to operate, secure, and troubleshoot the App.

How we use information

We use this information to provide and personalize your care, display your health metrics and targets, allow communication with your care team, maintain security and audit records, and meet our legal and regulatory obligations. We do not sell your personal information, and we do not use your health data for advertising.

Wearable data authorization

When you connect a wearable provider, you are redirected to that provider to sign in and grant access. We store the access tokens needed to retrieve your data and the metrics we receive. Disconnecting a provider in the App revokes our ongoing access and stops further syncing. You can also revoke access directly from the provider’s own account settings.

How we share information

Your information is accessible to the Grand Health clinicians involved in your care. We may share information with service providers who host and operate the App on our behalf under contractual confidentiality and security obligations, and when required by law. As a healthcare provider, Grand Health handles protected health information consistent with applicable law, including HIPAA where it applies.

Data security and retention

We use administrative, technical, and physical safeguards designed to protect your information, including access controls and encryption in transit. We retain information for as long as needed to provide care and meet legal and recordkeeping requirements.

Your choices and rights

You may review and update much of your profile information in the App, connect or disconnect wearable providers at any time, and contact us to request access to or correction of your information, subject to applicable law and our recordkeeping obligations.

Children

The App is intended for use by adult patients of Grand Health and is not directed to children.

Changes to this policy

We may update this Privacy Policy from time to time. We will update the effective date above and, where appropriate, notify you within the App.

Contact us

Questions about this Privacy Policy or your information can be directed to tdennis@mygrandhealth.com.

See also our Terms of Service.