Privacy Policy

We are committed to protecting your privacy across both the Abler app and website. Learn how we handle your data and the choices available to you.

Effective date: January 1, 2024

1. Introduction

Abler (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy applies to the Abler mobile application and our website at abler.health (collectively, the “Services”). It explains what data we collect, why we collect it, how long we keep it, and the choices you have.

Because Abler is a health-focused app designed to help you track and manage panic attacks and anxiety, some of the data you voluntarily enter is health-related. We treat this data with the highest level of care.

2. Data We Collect

2a. Health & Symptom Data (App)

To provide the core functionality of Abler, you may voluntarily enter health information, including:

  • Panic attack logs — date, time, duration, and severity of episodes you record
  • Symptoms you report during or after an episode (e.g., heart pounding, shortness of breath, dizziness)
  • Potential triggers you associate with an episode (e.g., location, activity, stress level)
  • Mood and anxiety ratings you enter before, during, or after an episode
  • Notes or journal entries you write about your experiences
  • Progress and trend data derived from the above logs

This data is entered solely by you and is used only to power your personal tracking, insights, and pattern reports within the app. We do not use it for advertising or sell it to third parties.

2b. Account Data

  • Email address (used to create and identify your account)
  • Password (stored as a one-way cryptographic hash — we never see your plain-text password)
  • Display name (optional)

2c. Device & Usage Data

  • Device type, operating system version, and app version
  • App feature usage events (e.g., screens visited, features tapped) — collected in aggregate to improve the app
  • Crash reports and diagnostic logs to fix bugs

2d. Website Data

  • Standard server logs (IP address, browser type, referring URL, pages visited) for security and analytics
  • Contact form submissions if you reach out to us

3. How We Use Your Data

We use the data we collect solely for the following purposes:

  • Provide the service — display your logged episodes, generate pattern reports, and surface personal insights
  • Sync across devices — keep your data consistent if you use Abler on multiple devices
  • Account management — authenticate you, recover your account, and send essential service emails
  • Improve the app — analyze aggregated, de-identified usage patterns to fix bugs and build better features
  • Security & fraud prevention — detect and respond to abuse or unauthorized access
  • Legal compliance — meet our obligations under applicable law

We do not use your health data for advertising, profiling, or any purpose beyond providing your personal tracking experience.

4. Data Retention

We retain your data for as long as your account is active or as needed to provide the Services:

  • Health & symptom logs — retained for the lifetime of your account so your history remains available to you. When you delete your account, all health data is permanently deleted within 30 days.
  • Account data — retained until you delete your account, then permanently deleted within 30 days.
  • Usage & diagnostic data — retained for up to 12 months in identifiable form, after which it is anonymized or deleted.
  • Server/website logs — retained for up to 90 days for security purposes, then deleted.
  • Legal hold — if we are required to preserve data to comply with a legal obligation or dispute, we may retain specific data beyond the above periods until the obligation is resolved.

You may request deletion of your data at any time by contacting us at [email protected] or using the “Delete Account” option in the app settings.

5. Sharing Your Information

We do not sell your personal or health data. We share data only in the following limited circumstances:

  • Service providers — we use trusted third-party providers (e.g., cloud hosting, crash analytics) who process data on our behalf under strict data processing agreements and are prohibited from using it for their own purposes.
  • With your explicit consent — for example, if you choose to share a report with a therapist.
  • Legal requirements — if required by law, regulation, court order, or to protect the rights, safety, or property of Abler or others.
  • Business transfer — if Abler is acquired or merges, your data may transfer to the new entity, which will be bound by this policy or provide equivalent protections.

6. Your Data Protection Rights

Depending on your location, you may have the following rights:

  • Access — request a copy of the personal data we hold about you
  • Correction — request correction of inaccurate or incomplete data
  • Deletion — request permanent deletion of your data (right to be forgotten)
  • Portability — request your data in a structured, machine-readable format
  • Restriction — request that we limit processing of your data in certain circumstances
  • Objection — object to processing of your data for certain purposes
  • Withdraw consent — where processing is based on consent, withdraw it at any time

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

7. Security

We implement industry-standard safeguards to protect your data, including encryption in transit (TLS), encryption at rest, access controls limiting who can view your data, and regular security reviews. However, no system is perfectly secure — if you believe your account has been compromised, contact us immediately.

8. Children's Privacy

Abler is not directed to children under the age of 13. We do not knowingly collect personal data from children under 13. If we learn we have done so, we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes — particularly to how we handle health data — we will notify you via email and/or a prominent in-app notice before the changes take effect. The “Effective date” at the top of this page will always reflect the most recent revision.

10. Contact Us

If you have any questions about this Privacy Policy or how your data is handled, please contact us at [email protected].