Privacy Policy

Last updated: January 30, 2026

1. Introduction

Helios ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services. Please read this policy carefully. By using the Service, you consent to the practices described herein.

2. Information We Collect

Information you provide directly:

Email address — collected when you sign up for our waitlist

Information collected automatically:

Log data — your IP address, browser type, operating system, referring URLs, and access times, collected automatically by our servers
Usage data — pages visited, interactions with the site, and other diagnostic data

We do not collect sensitive personal information such as health records, financial data, social security numbers, or government-issued identification through this website.

3. How We Use Your Information

We use the information we collect for the following purposes:

To manage and maintain our waitlist
To communicate with you about Helios, including product updates, launch announcements, and related news
To monitor and analyze usage and trends to improve the Service
To detect, prevent, and address technical issues or abuse (e.g., rate limiting)
To comply with legal obligations

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

Consent — by voluntarily submitting your email to our waitlist, you consent to its processing
Legitimate interest — to operate and improve our Service, and to protect against misuse
Legal obligation — to comply with applicable laws and regulations

5. Data Storage and Security

Your email address is stored in a Supabase-hosted database with encryption at rest and in transit. We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:

HTTPS encryption for all data in transit
Rate limiting to prevent abuse
Security headers via Helmet.js
Password-protected administrative access

While we take reasonable steps to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

Service providers — with trusted third-party services that help us operate our Service (e.g., Supabase for database hosting, Railway for server hosting), who are bound by contractual obligations to keep your data confidential
Legal requirements — if required by law, regulation, legal process, or governmental request
Protection of rights — to enforce our Terms of Service, protect our rights, privacy, safety, or property, or that of our users or the public
Business transfers — in connection with a merger, acquisition, or sale of assets, in which case your data would be transferred to the successor entity

7. Data Retention

We retain your email address for as long as necessary to fulfill the purposes described in this policy, including maintaining the waitlist and communicating product updates. You may request deletion of your data at any time by contacting us (see Section 12).

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Access — request a copy of the personal data we hold about you
Correction — request correction of inaccurate or incomplete data
Deletion — request deletion of your personal data
Withdrawal of consent — withdraw your consent to processing at any time
Data portability — request a machine-readable copy of your data
Objection — object to processing based on legitimate interests

To exercise any of these rights, please contact us at support@my-helios.app. We will respond within 30 days.

9. Cookies and Tracking

Our website does not currently use cookies or third-party tracking technologies. If this changes in the future, we will update this policy and notify you accordingly.

10. Children's Privacy

The Service is not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: support@my-helios.app