Privacy Policy

Victori SAS, a simplified joint-stock company registered under number 101259034, with its registered office at 60 rue François Ier, 75008 Paris, France.

Contact: hello@biokub.com

In the course of providing the Biokub platform (biokub.com website, pro.biokub.com dashboard, and the Folo mobile app), we collect the following categories of personal data:

• Identity data: first name, last name, professional email address.
• Health data: data from wearable devices including heart rate, heart rate variability (HRV), sleep data, physical activity, nutrition, and biomarkers. This data is collected through the Terra SDK with the client's explicit consent.
• Usage data: login logs, platform interactions, user preferences.
• Payment data: processed directly by our payment provider Stripe. We do not store any credit card numbers.
• Audio data: the Folo mobile app uses microphone access (android.permission.RECORD_AUDIO) exclusively to enable voice messages between practitioners and their clients. No background audio recording is performed.

• Providing and personalizing the Biokub service (health data aggregation, signal generation, dashboards).
• Managing the client relationship (account creation, support, billing).
• Enabling voice message communication between practitioners and clients through the Folo app.
• Continuous improvement of the platform and anonymized statistical analysis.
• Compliance with legal and regulatory obligations.

• Explicit consent for processing health data (Article 9.2.a GDPR).
• Performance of a contract for providing the service and managing subscriptions.
• Legitimate interest for improving our services and platform security.
• Legal obligation for retaining billing data.

Your data is accessible to the following persons and entities:

• The Biokub team (Victori SAS), limited to what is necessary for the service.
• Your practitioner or coach, only for the data you have consented to share.
• Our technical subprocessors: Clerk (authentication), Stripe (payment), Terra API (wearable data aggregation), Railway (database hosting), Heroku/Salesforce (web hosting).

We never sell, rent, or share your personal data for commercial or advertising purposes.

Some of our subprocessors are based in the United States (Clerk, Stripe, Heroku/Salesforce). These transfers are governed by the European Commission's Standard Contractual Clauses (SCCs) and/or the EU-U.S. Data Privacy Framework, in compliance with the GDPR.

• Account data: retained for the duration of the contractual relationship, then 3 years after account deletion.
• Health data: retained for the duration of the practitioner's subscription. Deleted within 30 days of cancellation, unless otherwise required by law.
• Billing data: retained for 10 years in compliance with accounting obligations.
• Voice messages: retained for the duration of the relationship between the practitioner and their client, then deleted within 30 days of the end of that relationship.

Under the GDPR, you have the following rights:

• Right of access: obtain a copy of your personal data.
• Right to rectification: correct inaccurate or incomplete data.
• Right to erasure: request deletion of your data.
• Right to restriction: restrict the processing of your data.
• Right to data portability: receive your data in a structured format.
• Right to object: object to the processing of your data.
• Right to withdraw consent at any time for processing based on consent.

To exercise these rights, contact us at hello@biokub.com. We will respond within 30 days.

You may also lodge a complaint with the French data protection authority (CNIL): www.cnil.fr.

The biokub.com website uses cookies strictly necessary for the functioning of the service (authentication, language preferences). We do not use advertising cookies or third-party trackers for profiling purposes.

We implement appropriate technical and organizational measures to protect your data: encryption in transit (TLS), encryption at rest, secure authentication via Clerk, restricted access to health data, and regular security audits.

We may update this privacy policy at any time. In the event of a material change, we will notify you by email or via a notification on the platform. The last updated date is shown at the top of this page.

For any questions regarding the protection of your personal data, please contact us at: hello@biokub.com