1. Scope & Introduction
What is "Consumer Health Data"?
Under the Washington My Health My Data Act (MHMDA) and similar state privacy laws, "consumer health data" means personal information that is linked or reasonably linkable to a consumer and that identifies the consumer's past, present, or future physical or mental health status. This includes, but is not limited to:
- Biometric data (facial geometry, fingerprints)
- Reproductive or sexual health information
- Gender-affirming care information
- Mental health diagnoses or treatment
- Health conditions or disabilities
- Medications and prescriptions
- Bodily functions or vital signs
- Health-related surgeries or procedures
This Consumer Health Data Privacy Policy ("Health Policy") supplements our general Privacy Policy and specifically addresses how LoveConnet ("we," "us," or "our") collects, uses, stores, shares, and protects consumer health data as defined by applicable laws including the Washington My Health My Data Act, the California Consumer Privacy Act (CCPA/CPRA), the Illinois Biometric Information Privacy Act (BIPA), the EU General Data Protection Regulation (GDPR), and other applicable privacy regulations.
This policy applies to all users of LoveConnet's mobile applications, website (loveconnet.com), and related services, regardless of your location. Even if your jurisdiction does not yet have specific health data privacy laws, we extend the same protections to all users globally.
2. Types of Health Data We Process
Below is a comprehensive breakdown of every category of consumer health data that LoveConnet may collect or encounter, along with detailed explanations of how each type is handled.
2.1 Biometric & Verification Data
When you verify your identity on LoveConnet, we process biometric data to confirm you are a real person and to prevent catfishing. This is a core safety feature of our platform.
What we collect
Facial geometry data derived from your selfie during the face verification process. This includes facial landmarks, proportions, and a mathematical representation (embedding) of your face — not the photo itself.
Why we collect it
To compare your selfie against your profile photos in real-time, ensuring the person creating the account is the same person in the photos. This prevents catfishing, identity theft, and underage access.
How long we keep it
Facial embeddings are retained only for the duration of the verification session (typically under 60 seconds). Once verification is complete, the raw biometric data is permanently deleted. Only a binary verified/not-verified status is stored.
Who has access
Biometric processing occurs on secure, isolated servers. No human employee ever sees your raw biometric data. The verification is fully automated using AI models that run in encrypted memory.
Your control
You can request re-verification at any time. If you delete your account, all verification records — including the verified status flag — are permanently erased within 30 days.
2.2 Reproductive & Sexual Health Data
LoveConnet does not actively collect reproductive or sexual health data. However, users may voluntarily share health-related information in their profiles or conversations.
What we may encounter
Information you voluntarily include in your bio or messages, such as references to health conditions, reproductive choices, HIV status, or sexual health disclosures. We do not prompt or require this information.
Our policy
We never sell, share, or use voluntarily disclosed health information for advertising, profiling, or any purpose beyond displaying it as part of your user-generated content. It is treated with the highest level of sensitivity.
Content moderation
Our AI content moderation may scan messages for safety purposes (e.g., detecting threats or exploitation). However, health-related disclosures are never flagged, logged, or used for any purpose other than immediate safety screening.
Third-party access
We will never provide voluntarily disclosed health data to insurance companies, employers, data brokers, law enforcement (except under valid court order), or any third party. Period.
Your control
You can edit or remove any health-related information from your profile at any time. Deleted content is purged from our servers within 30 days, including all backup systems.
2.3 Mental Health & Wellness Indicators
As a dating platform, we recognize that our users' emotional well-being is paramount. We take special care with any data that could indicate mental health status.
What we may process
Behavioral patterns that our safety AI monitors for concerning activity — such as sudden account deletion after harassment, or messages indicating self-harm. These are used exclusively for proactive safety intervention, not profiling.
Safety interventions
If our AI detects messages indicating potential self-harm or crisis, we may display crisis helpline resources (such as the 988 Suicide & Crisis Lifeline). We do not store or log the triggering content beyond the immediate safety response.
No profiling
We never create mental health profiles, assign wellness scores, or use emotional indicators for matching algorithms, advertising, or any commercial purpose.
Therapy & counseling
If we partner with mental health resources in the future, participation will always be entirely voluntary, and no data from such services will be integrated into your dating profile or shared with other users.
Your control
You can opt out of AI-powered safety monitoring by contacting [email protected]. However, we strongly recommend keeping it enabled for your protection.
2.4 Health-Adjacent Profile Data
Certain profile fields on LoveConnet could be considered health-adjacent information. We treat this data with enhanced privacy protections even when not strictly required by law.
What this includes
Information such as your smoking status, drinking habits, exercise frequency, dietary preferences (e.g., vegan, allergies), disability status, and body type. These fields are entirely optional.
Purpose
This data is used solely to help you find compatible matches. For example, if you prefer a non-smoking partner, we use your preference to filter results. The data is never used for health risk assessment, insurance scoring, or any medical purpose.
Visibility controls
Each health-adjacent field has individual visibility settings. You can choose to show it to everyone, only to matches, or keep it completely private (used only for algorithmic matching behind the scenes).
Data minimization
We only collect what is necessary for matchmaking. We do not ask for detailed medical histories, medication lists, diagnoses, or treatment information. If a user attempts to share such information in a profile field, our system does not store it differently than any other text.
Your control
You can update or remove any health-adjacent profile data at any time through Settings → Profile → Edit. Removed data is purged from active systems immediately and from backups within 30 days.
3. Consent & Legal Basis
We collect and process consumer health data based on the following legal bases, depending on the type of data and your jurisdiction:
Explicit Consent
For biometric data (face verification), we obtain your explicit, informed consent before processing. You are clearly informed about what data will be collected, how it will be used, and how long it will be retained. You must affirmatively opt in — we never use pre-checked boxes or implied consent for health data.
Voluntary Disclosure
Health-adjacent profile data (smoking status, exercise habits, etc.) is entirely optional. By choosing to fill in these fields, you consent to their use for matchmaking purposes. You can remove this data at any time without affecting your ability to use the platform.
Legitimate Safety Interest
Our AI safety monitoring may process message content to detect threats of violence, self-harm, or exploitation. This processing is based on our legitimate interest in protecting our community, and is limited to real-time safety screening with no persistent storage of flagged content.
Legal Obligation
In rare cases, we may be required by law to process or retain health data — for example, in response to a valid court order or subpoena. We will notify you of such requests unless legally prohibited from doing so, and we will always challenge overly broad requests.
4. Third-Party Sharing & Disclosure
Our Commitment: We Never Sell Health Data
LoveConnet has never sold, and will never sell, consumer health data to any third party — including data brokers, advertisers, insurance companies, employers, or any other entity. This commitment is absolute and unconditional.
The only circumstances under which health data may be shared with third parties are:
- Service Providers: Vendors who process data on our behalf (e.g., cloud hosting, AI verification services) under strict contractual obligations that prohibit them from using, retaining, or sharing health data for any purpose other than providing services to LoveConnet.
- Legal Requirements: Valid court orders, subpoenas, or legal process where we are compelled by law. We will always challenge overbroad requests and notify users when legally permitted.
- Emergency Safety: In rare, life-threatening situations where sharing specific information with emergency services could prevent imminent harm or death. This is limited to the minimum necessary information.
- With Your Explicit Consent: If you explicitly authorize us to share specific health data with a named third party for a stated purpose. Such consent must be given in writing and can be revoked at any time.
5. How We Protect Your Health Data
We implement industry-leading security measures specifically designed for health data protection:
AES-256 Encryption at Rest
All health data is encrypted using AES-256, the same standard used by governments and financial institutions. Even if our servers were physically compromised, your data would be unreadable.
TLS 1.3 In Transit
All data transmitted between your device and our servers is protected by TLS 1.3 encryption, preventing interception during transfer.
Isolated Data Storage
Health-related data is stored in isolated, access-controlled databases separate from general user data. Access requires multi-factor authentication and is logged.
Role-Based Access Control
Only authorized personnel with a documented business need can access health data systems. Access is reviewed quarterly and revoked immediately upon role change.
Continuous Monitoring
Our security team monitors health data systems 24/7 with automated anomaly detection. Any unusual access patterns trigger immediate investigation.
Annual Security Audits
Independent third-party security firms conduct annual penetration testing and compliance audits of our health data handling practices. Results are available upon request.
6. Your Rights Over Your Health Data
You have comprehensive rights over your consumer health data. We make exercising these rights as simple as possible:
Right to Know
You have the right to know exactly what consumer health data we have collected about you, how it was collected, why we collected it, who we have shared it with, and how long we intend to keep it. You can exercise this right at any time by submitting a data access request.
How to exercise this right:
Email [email protected] with the subject line 'Health Data Access Request' or use the in-app privacy dashboard at Settings → Privacy → My Data. We will respond within 15 business days with a comprehensive data report.
Right to Data Portability
You can request a complete, machine-readable export of all your health-related data in standard formats (JSON or CSV). This allows you to transfer your data to another service or simply review everything we have.
How to exercise this right:
Navigate to Settings → Privacy → Export My Data, or email [email protected]. Your export will be ready within 5 business days and available for secure download for 7 days.
Right to Deletion
You have the absolute right to request deletion of any or all consumer health data we hold about you. This includes biometric verification records, health-adjacent profile data, and any health-related content in messages.
How to exercise this right:
Use Settings → Privacy → Delete My Health Data for selective deletion, or Settings → Account → Delete Account to remove everything. Email [email protected] for specific deletion requests. Deletion is permanent and completed within 30 days across all systems including backups.
Right to Withdraw Consent
If you previously consented to the collection or processing of any health data, you can withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing done before the withdrawal.
How to exercise this right:
Go to Settings → Privacy → Consent Management to review and withdraw specific consents. For biometric verification, you can email [email protected] to request removal of your verification status (note: this will mark your profile as unverified).
Right to Non-Discrimination
We will never discriminate against you for exercising your health data privacy rights. You will not receive degraded service, higher prices, or reduced functionality because you chose to limit, delete, or refuse to provide health data.
How to exercise this right:
If you believe you have experienced discrimination for exercising your privacy rights, report it immediately to [email protected]. We take such complaints with the highest seriousness.
Right to Correct Inaccuracies
If any health-related data we hold about you is inaccurate, outdated, or misleading, you have the right to request correction. We will update our records promptly upon verification.
How to exercise this right:
Edit your profile directly for visible health-adjacent data, or email [email protected] for corrections to internal records. We will confirm corrections within 10 business days.
7. Data Retention & Deletion
| Data Type | Retention Period | After Deletion Request |
|---|---|---|
| Biometric embeddings | < 60 seconds (session only) | N/A — already deleted |
| Verification status | Duration of account | 30 days |
| Health-adjacent profile data | Duration of account | Immediate (active) + 30 days (backups) |
| Voluntary health disclosures | Duration of account | 30 days across all systems |
| Safety screening logs | Not retained | N/A — not stored |
| Consent records | 3 years after consent withdrawal | Retained for legal compliance |
8. Children's Health Data
LoveConnet is exclusively for adults aged 18 and older. We do not knowingly collect consumer health data from anyone under 18. If we discover that health data has been collected from a minor, we will immediately and permanently delete all such data and terminate the associated account. If you believe a minor's health data has been collected, please contact us immediately at [email protected].
9. Changes to This Policy
We may update this Consumer Health Data Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes:
- We will notify you via email and in-app notification at least 30 days before the changes take effect.
- We will clearly highlight what has changed and why.
- For changes that expand our collection or use of health data, we will obtain your renewed consent before the changes apply to you.
- Previous versions of this policy will be archived and available upon request.
10. Contact Us About Health Data
If you have any questions, concerns, or requests regarding your consumer health data, please contact our dedicated Privacy team:
Your Health Data, Your Control
At LoveConnet, privacy isn't a feature — it's a fundamental right. We're committed to giving you full transparency and control over your data.