top of page

Data & Privacy Policy

1. Who We Are

Idunox (“we”, “us”, “our”) is a Swiss health-tech company in foundation. We currently run a validation campaign.

We operate the websites (www.iduscore.com and www.idunox.com) and provide the IduScore wellness service, which lets users upload or enter existing blood-test values to receive informational health-insight reports.
 

We are the data controller under the Swiss nFADP and, where applicable, under the EU GDPR.

Contact:
📧 privacy@idunox.com
 

​

2. What Data We Collect

We only collect the data necessary to deliver and improve our service:

  • Contact details: name, email address (for communication and notifications).

  • Uploaded data: blood-test results, age, sex, and optional lifestyle information that you enter voluntarily.

  • Technical data: IP address, browser type, and usage statistics (for security and analytics).

We do not require or process government IDs, financial data, or precise geolocation.

​

3. Purpose of Processing

We process your data only for:

  1. Generating wellness-oriented IduScores and delivering your report.

  2. Improving model accuracy (in fully anonymised, aggregated form).

  3. Providing user support and service updates.

  4. Complying with Swiss/EU data-protection and security obligations.

We do not use your uploaded data for marketing or share it with third parties without your explicit consent.

​

4. Legal Basis

​

  • Under Swiss nFADP: processing is based on your consent when you upload data.

  • Under GDPR (if applicable): Art. 6 para. 1 (a) consent and Art. 9 para. 2 (a) explicit consent for special-category (health) data.

You may withdraw your consent anytime by emailing privacy@idunox.com.

​

5. Storage & Security

  • Data are stored on secure servers located in Switzerland and/or the EU (GDPR-adequate jurisdictions).

  • All transfers use TLS/SSL encryption; sensitive data are encrypted at rest.

  • Access is restricted to authorised personnel bound by confidentiality.

  • Raw uploads are automatically deleted within [30 days] after score generation unless you request ongoing storage.

  • Aggregated and anonymised statistics may be retained for scientific or operational purposes.

​​

6. International Transfers

If we use processors outside Switzerland/EU, transfers occur only to countries with adequate protection (per FDPIC / EU adequacy decisions) or via Standard Contractual Clauses.

​

7. Your Rights

Depending on your location, you may:

  • Request access to, correction of, or deletion of your data.

  • Obtain a copy (data portability).

  • Object to or restrict processing.

  • Withdraw consent at any time.

Requests can be sent to privacy@idunox.com; we respond within 30 days.

​

8. Cookies & Analytics

We use essential cookies for website functionality and optional analytics tools (e.g., Wix Analytics, Google Analytics 4).
You can manage cookies through your browser settings.
Analytics data are aggregated and never linked to uploaded medical information.

​

9. Children’s Privacy

Our service is intended for adults (18+).
We do not knowingly collect data from minors; if you believe a minor has provided data, please contact us for deletion.

​

10. Wellness & Non-Diagnostic Disclaimer

The IduScore and all outputs are provided for informational and wellness purposes only.
They are not medical advice or diagnosis and must not replace consultation with a qualified healthcare professional.
You remain responsible for any medical decisions based on your results.

​

11. Updates to This Policy

We may revise this policy to reflect technical, legal, or business changes.
The updated version will always be posted on this page with a new “Last updated” date.

​

12. Contact

If you have questions or concerns about this policy or our data practices, please reach out to:
📧 privacy@idunox.com

bottom of page