← Back to home

Privacy Policy

Last updated · April 2026

This Privacy Policy explains how Raeh, Inc. (“Raeh”, “we”, “our”) collects, uses, and shares information in connection with raeh.io and the Raeh API (together, the “Services”). We designed the Services so that the signals our customers send us are treated as the customer’s data, not ours. This policy describes how we live up to that.

Information we collect

Information you provide

When you create an account, contact us, or sign up to be notified, we collect the information you give us: name, email address, company, and the content of any message you send us. When you mint an API key from the dashboard, we store a hashed reference to that key, its scopes, and the account it belongs to.

Biosignal data processed by the API

When a device or an application sends biosignal frames (PPG, ECG, EEG, IMU, or derived features) to the Raeh API, those frames are processed to return structured insights. Unless you have separately agreed with us in writing, we do not retain raw biosignal frames beyond the processing window required to return a response and to operate short-lived streaming sessions. We retain derived insights (for example, heart rate, confidence, timestamps) only for the duration and purpose described in your integration agreement.

Information collected automatically

When you visit raeh.io or use the Services, we collect basic usage information: pages viewed, timestamps, referrer, approximate location (from IP), browser and device type, and API request metadata (endpoint, status, latency, account identifier). We use this information to operate, secure, and improve the Services.

How we use information

  • To provide and operate the Services.
  • To authenticate users and secure accounts.
  • To respond to inquiries and provide support.
  • To monitor, debug, and improve the Services, including measuring latency and accuracy of our models.
  • To comply with legal obligations and enforce our Terms.

We do not sell personal information. We do not use the content of biosignal frames to train models intended for third-party customers without a separate written agreement.

How we share information

We share information only with:

  • Service providers that help us operate the Services (for example, cloud hosting, authentication, email delivery, and analytics), subject to contractual protections.
  • Legal and safety recipients where required by law, or where necessary to protect Raeh, our users, or the public.
  • Business transfers in connection with a merger, acquisition, or sale of assets, subject to continued protection of your information.

Security

We use administrative, technical, and physical safeguards designed to protect information in our custody. These include encryption in transit (TLS 1.2+), encryption at rest for stored data, scoped API keys, least-privilege access controls, and audit logging. No method of transmission or storage is perfectly secure; we work to keep improving our controls and welcome responsible disclosure at hello@raeh.io.

Data retention

We retain account information for as long as your account is active. API request metadata is retained for operational and security purposes, typically for up to twelve months. Raw biosignal frames are not retained beyond the processing window unless separately agreed.

Your rights

Depending on your location, you may have rights to access, correct, delete, or port your personal information, and to object to or restrict certain processing. To exercise these rights, email us at hello@raeh.io. We will respond within the time frame required by applicable law.

Children

The Services are not directed to children under 13 (or the age of digital consent in your country). We do not knowingly collect personal information from children.

International transfers

We may process information in countries other than your own. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses for international transfers.

Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify you by email or by posting a notice on the Services. Your continued use of the Services after the effective date constitutes acceptance of the updated policy.

Contact

Questions about this policy can be directed to hello@raeh.io.