Privacy is at the heart of everything we do at Vital. We are committed to protecting your privacy and your data and have built our service with those values in mind.
To do this we've taken a number of precautions:
- Users can deregister their device's and delete their data from Vital.
- We encrypt all data at REST and in transit. Furthermore, we encrypt the data prior to storing it it in our database. To do this we use Evervault.
How this works?
When we pull data from various wearable provider's this data goes through the Evervault encryption proxy - which encrypts the data before we store it.
When you request data from the Vital API, it is decrypted via the Evervault encryption proxy before being returned.