Your Privacy
Last updated: November 2025
The Thrive program is provided by In2Health Solutions Pty Ltd. At In2health solutions we are committed to protecting your privacy as a client using our services. We use the information we collect about you to improve the services that we provide to you. We respect the privacy and confidentiality of the information provided by you and adhere to the Australian Privacy Principles at all times. Please read our privacy policy below carefully.
INFORMATION WE COLLECT FROM YOU
In the course of using our services, we may obtain the following information about you: name, company name, email address, telephone number, credit card details, billing address, geographic location, IP address, survey responses and support queries (together 'Personal Data').
Optional Wearable Device and Health Platform Data
If you choose to connect a wearable device or health platform (such as Google Fit or Apple Health), we may also collect:
Activity data: step count, distance traveled, exercise sessions, active minutes, and calories burned
Body measurements: weight, height, BMI, and other body composition metrics
Vital signs: heart rate data, blood pressure readings, and oxygen saturation (if available)
Sleep data: sleep duration and patterns
Other health metrics: nutrition data, hydration levels, and any other health metrics you have tracked and authorised for sharing
Important notes about wearable device data:
Connecting a wearable device or health platform is completely optional
You can use Thrive without connecting any external devices
Data is only collected after you explicitly authorise the connection
You can disconnect your device at any time
We request read-only access and do not modify or delete data in your connected health platforms
You control which data types are shared through your device or platform settings
Age Requirements:
Our surveys are not for any persons under 18. All medical data supporting the assessment questions and calculations are based on adults aged 18 years and above. Our surveys are not created for use by persons aged under 18 years of age and thus are not directed to persons under 16 and we do not knowingly collect Personal Data from anyone under 16 unless authorised by a parent or guardian. If we become aware that a child under 16 has provided us with Personal Data, we will delete that information as quickly as possible. If you are the parent or guardian of a child and you believe they have provided us with Personal Data without your consent, then please contact us.
Your Rights:
You can review, correct, update or delete your Personal Data at any time by contacting us directly and requesting the information we may have on file for you. We want to keep our Personal Data up-to-date and are required to do so, so we may ask you to review your Personal Data from time to time.
HOW WE USE YOUR INFORMATION
Personally Identifiable Information: We use the information we collect to deliver our services to you, including: communicating with you, diagnosing problems and discussing issues with you, measuring customer satisfaction, and providing information about services to assist you further.
Wearable Device and Health Platform Data: If you have connected a wearable device or health platform, we use this data to:
Display your health metrics and progress trends on your personal dashboard
Track progress toward your health and fitness goals
Generate personalized health insights and recommendations
Create health reports and summaries
Identify patterns and areas for potential health improvement
This data is used solely to provide you with health tracking and insight features within the Thrive app. We do not use your health or fitness data for advertising purposes, and we do not sell this data to third parties.
Marketing communications are only sent to you if you have requested, subscribed or given us your email to receive them. You can opt out of our marketing communications at any time by unsubscribing or emailing us and your request will be actioned immediately.
Non-Personally Identifiable Information: We also use the information we collect in aggregated and anonymized forms to improve our services, including: administering our services, producing reports and analytics, advertising our products and services, identifying user demands and assisting in meeting customer needs generally.
Survey Personal Sensitive Information: You are not required to respond to any of our surveys as it is purely by choice. You are also not required to include any medical or health specific information unless you opt-in to do so. If you do opt-in and choose to provide us with this information either to request and receive a health report from us which may be generated by the survey, or to otherwise respond in order to provide de-identifiable information for education and research purposes, we at all times abide by The Privacy Act 1988 (Cth), the Australian Privacy Principles and The Health Records Act 2001 (Vic) with respect to the collection, storage, use and destruction of your personal information.
STORAGE AND SECURITY OF YOUR INFORMATION
We will use all reasonable means to protect the confidentiality of your Personal Data while in our possession or control. All information we receive from you is stored in secure servers in Australia to prevent unauthorised use or access. Credit card information is encrypted before any transmission and is not stored by us on our servers.
Security of Wearable Device Data: Health and fitness data from connected devices receives additional security protections:
Data is encrypted both during transmission and when stored
Access to health data is restricted to authorized systems and personnel
OAuth tokens used to access connected platforms are securely stored and never exposed
We comply with the security requirements of connected health platforms (Google API Services User Data Policy, Apple HealthKit guidelines, etc.)
We retain your personal information for as long as needed to provide services to you and as otherwise necessary to comply with our legal obligations, resolve disputes and enforce our agreements.
In the event there is a breach of our security and your Personal Data is compromised, we will promptly notify you in compliance with the applicable law.
SHARING YOUR INFORMATION WITH THIRD PARTIES
We do not and will not sell or deal in Personal Data or any customer information.
Your Personal Data details are only disclosed to third party suppliers when it is required by law, for goods or services which you have purchased, for payment processing or to protect our copyright, trademarks and other legal rights. To the extent that we do share your Personal Data with a service provider, we would only do so if that party has agreed to comply with our privacy standards as described in this privacy policy and in accordance with applicable law. Our contracts with third parties prohibit them from using any of your Personal Data for any purpose other than that for which it was shared.
Wearable Device Data Sharing: Your health and fitness data from connected devices is never sold to third parties and is not used for advertising. This data may only be shared with:
Cloud service providers who help us store and process data securely
Support personnel when you explicitly request assistance
Authorities when required by law
MANAGING YOUR WEARABLE DEVICE CONNECTIONS
If you have connected a wearable device or health platform, you have full control:
To disconnect within Thrive:
Go to your account settings or connected devices section
Select the device or platform you wish to disconnect
Click disconnect and confirm
Data synchronisation will stop immediately
To revoke access through your health platform:
- For Google Fit: Visit your Google Account permissions at myaccount.google.com/permissions and remove
ThriveHealth
- For Apple Health: Open iPhone Settings > Privacy & Security > Health > Apps and remove ThriveHealth
After disconnection:
We immediately stop accessing your health platform
Historical data can be retained for your records or deleted upon request
You can reconnect at any time if you choose
DISCLOSURE OF YOUR INFORMATION
We may from time to time need to disclose certain information, which may include your Personal Data, to comply with a legal requirement, such as a law, regulation, court order, subpoena, warrant, in the course of a legal proceeding or in response to a law enforcement agency request. Also, we may use your Personal Data to protect the rights, property or safety of our business, our customers or third parties.
If there is a change of control in one of our businesses (whether by merger, sale, transfer of assets or otherwise) customer information, which may include your Personal Data, could be transferred to a purchaser under a confidentiality agreement. We would only disclose your Personal Data in good faith and where required by any of the above circumstances.
COMPLIANCE WITH HEALTH PLATFORM POLICIES
When you connect wearable devices or health platforms to Thrive, we comply with their respective data policies:
Google API Services: Our use of information received from Google APIs adheres to the https://developers.google.com/terms/api-services-user-data-policy, including the Limited Use requirements. We only access Google Fit data that is necessary for Thrive features, and we do not use this data for serving advertisements or allow it to be transferred to others except as necessary to provide Thrive features or as required by law.
Apple HealthKit: We comply with Apple's HealthKit guidelines and data handling requirements when accessing Apple Health data.
CHANGE IN PRIVACY POLICY
As we plan to ensure our privacy policy remains current, this policy is subject to change. We may modify this policy at any time, in our sole discretion and in accordance with changing privacy legislation or regulation. We will notify you if there are any material changes to our Privacy Policy and provide you with the updated version in the event of any material change to this Privacy Policy.
CONTACT US
If you have any questions or concerns at any time about our privacy policy or the use of your Personal Data, please contact us at hello@in2health.com and we will respond within 48 hours.