Privacy Policy
Last updated: June 2026
1. Overview
Chatita ("we," "our," or "the app") is a personal diabetes management companion. This Privacy Policy describes how we collect, use, and protect your information when you use our service.
Not a HIPAA-covered entity. Chatita is not a healthcare provider, health plan, or healthcare clearinghouse and is not subject to the Health Insurance Portability and Accountability Act (HIPAA). Your data is protected under this Privacy Policy and applicable data protection laws, but not HIPAA.
2. Data We Collect
- Account information (email address, name)
- Glucose readings you log manually
- Meal photos and nutrition data
- Mood and symptom entries
- CGM integration credentials (encrypted at rest with AES-256-GCM)
- Chat messages with Chatita's AI assistant
3. Third-Party Services
We use the following third-party services to provide Chatita:
- Anthropic — AI responses are processed by Claude (Anthropic's AI). Your chat messages and health context are sent to Anthropic's API. See Anthropic's Privacy Policy.
- Vercel — Our hosting provider. See Vercel's Privacy Policy.
- Neon (PostgreSQL) — Database hosting. Your data is stored in Neon's managed PostgreSQL. See Neon's Privacy Policy.
- Dexcom — Optional CGM integration. If connected, glucose data is fetched from Dexcom's API. See Dexcom's Privacy Policy.
- Abbott / FreeStyle Libre — Optional LibreLinkUp integration. Your LibreLinkUp credentials are encrypted and stored only to sync your data.
- Google Places — Restaurant search (if enabled). Search queries may be sent to Google. See Google's Privacy Policy.
- USDA FoodData Central — Nutrition data for food search.
- Stripe (future) — Payment processing for Pro subscriptions.
4. How We Use Your Data
- To provide personalized diabetes management guidance
- To generate AI-powered chat responses and meal analysis
- To display your health history and trends
- We do not sell your data to third parties
5. Data Deletion
You may delete your account and all associated data at any time from the Settings page. Account deletion permanently removes all your data from our systems.