Legal

Privacy Policy.

Effective Date: April 12, 2026  ·  Last Updated: April 12, 2026

This Privacy Policy explains how Stela Balance LLC ("Stela," "we," "us," or "our") collects, uses, and shares information when you use the Stela mobile application (the "App"). Contact: [email protected].

1. Who We Are

Stela Balance LLC, a California limited liability company. Registered agent: Northwest Registered Agent, Inc., 2108 N ST, STE N, Sacramento, CA 95816.

2. Scope

Covers the consumer version of the Stela App on the Apple App Store.

3. Information We Collect

A. Account Information — Identifiable

  • Email address
  • Password (stored only as a hash by Amazon Cognito)
  • Account metadata — creation and last sign-in timestamps, account status

B. Profile Information — Account-Linked

  • Date of birth, used to compute your age for score calibration and for the aggregate metrics described in Section 4
  • Sex (self-reported)
  • General location — city, state, and country, self-entered. We do not collect GPS, precise location, or IP-derived geolocation. Location is optional.
  • Anonymous ID — a random identifier generated on your device that links your profile to your test records. It is not derived from your email, device, or account.

C. Test Data — Account-Linked

When you complete a test, the App transmits metrics derived from your device's accelerometer and gyroscope motion during the test.

Per session: app version, session week, session mode, test count, composite score, grade.

Per individual test: test ID, plant foot (where applicable), motion-derived metrics (velocity, path length, range, RMS amplitude, mean frequency), sample count, duration, sample rate, gravity seed vector, placement method, band version.

D. What We Do Not Collect

  • Name or precise location
  • Raw sensor streams (only derived metrics leave the device)
  • Device advertising identifiers (IDFA), contacts, photos, microphone, or Health app data
  • Third-party analytics, advertising SDK, or social-login data

E. On-Device Storage

Sign-in token in iOS Keychain via Expo SecureStore. Removed on sign-out or app deletion.

4. How We Use Information

  • Account information — authenticate you, secure your account, respond to support, enforce our Terms.
  • Profile and test data — calculate and display your score based on measured device motion during each test, preserve your test history across devices and sign-ins, and improve score accuracy.
  • Aggregate metrics keyed only by the random anonymous ID (age, sex, general location, composite, grade, app version) — build cohort baselines to improve score accuracy over time. These are not linked to your email, account, or identity.

We do not use your information for advertising or cross-context behavioral profiling.

Where required, we process your information to perform our contract with you, pursue our legitimate interest in operating and improving the App, and comply with legal obligations.

6. Who We Share Information With

We do not sell your personal information and do not share it for cross-context behavioral advertising.

  • Infrastructure providers — Amazon Web Services (hosting, database, Cognito, KMS) acting as our processor.
  • Apple — as required for App Store distribution and receipt validation.
  • Legal authorities — only when required by valid legal process, to the minimum extent required. We will notify you unless prohibited.
  • A successor entity — in a merger, acquisition, or sale of substantially all assets, with notice before any change in data controller.

7. Where Information Is Stored

Amazon Web Services, encrypted at rest and in transit.

8. Sensitive Personal Information (CCPA/CPRA)

We do not collect biometric identifiers or biometric information as defined by the CCPA. Motion metrics derived from the accelerometer and gyroscope are used to score balance and are not used to identify you.

9. How Long We Keep Information

Account information and account-linked test data: retained until you delete your account. Deletion removes your email, password hash, account metadata, profile, and all test records linked to your account.

De-identified aggregate metrics (Section 4): aggregate records keyed only by the random anonymous ID are not removed on account deletion. Once your account is deleted, the link between you and the anonymous ID is destroyed, and the aggregate records do not contain information that identifies you or allows us to contact you.

Operational logs: limited server-side operational and security logs (e.g., AWS CloudWatch, audit records) in which your account identifier may appear are retained up to 90 days after account deletion for fraud prevention, security, and legal compliance, then purged.

10. Account Deletion and Your Rights

You can delete your account at any time from within the App. Deletion removes your account, profile, and linked test history as described in Section 9.

California residents (CCPA/CPRA): you have the right to know, access, delete, and correct your personal information, and not to be discriminated against for exercising these rights. Email [email protected] from your account email, or use the in-app deletion control. We do not sell personal information and do not share it for cross-context behavioral advertising.

Other jurisdictions: users outside the US may have additional rights under local law. Contact us.

11. Security

Encryption at rest, in transit (TLS), network isolation, least-privilege access controls. No system is perfectly secure.

Breach notification. If a breach affects your personal information, we will notify you as required by applicable law, including California Civil Code §1798.82, in the most expedient time possible and without unreasonable delay, via the email on your account.

12. Children

The App is not directed to children under 18. You must be 18 or older. If we learn we have collected information from someone under 18, we will delete it.

13. Third-Party Services

The App uses Amazon Cognito for authentication and AWS for hosting. It does not integrate third-party analytics, advertising SDKs, or social-login providers.

14. Changes to This Policy

For material changes, we will notify you at least 30 days before they take effect, by email or by an in-app notice you must acknowledge.

15. Contact

Stela Balance LLC  ·  Registered Agent: Northwest Registered Agent, Inc., 2108 N ST, STE N, Sacramento, CA 95816  ·  [email protected]