Data Security
Last updated: July 2026
Your health data is personal, and BioMetRx is built to keep it that way. This page outlines the measures that protect it.
Isolation by default
Data is stored in Supabase (PostgreSQL) with row-level security enforced at the database level. Every record is tied to your user ID, and the security policies mean one account can only ever read or write its own data — never anyone else's.
Encryption
- All traffic between the app and our servers is encrypted in transit over HTTPS
- Data at rest is encrypted by our infrastructure providers
Authentication
Access requires a signed-in session. Authentication is handled by Supabase Auth, and sensitive server operations run through scoped, revocable tokens rather than exposing your credentials.
Health Connect
On Android, BioMetRx requests read-only access to Health Connect and never writes back to it. You can revoke that access at any time from Health Connect or the Profile page.
Your control
You can delete your account and all associated data at any time from the Profile page. See our Privacy Policy for how data is handled.
