Privacy Policy

1. Who we are

Company:

TrueVitamin Inc. (operating as “True Vitamin”)

Place of business:

Québec, Canada

Contact:

privacy@truevitamin.com | support@truevitamin.com

Address:

200-2205 Bd de la Côte Vertu, Montréal QC H4R 1N8, Canada

Privacy officer:

Mathieu Rivest

2. What we mean by “personal information”

“Personal information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked (directly or indirectly) with you or your household. Some information you provide may be health-related and considered sensitive in many jurisdictions.

3. Information we collect

A. Information you provide

• Account information: name, email, phone, login credentials, profile details.
• Health and lifestyle information (optional): goals, diet preferences, supplement use, symptoms, injuries, training details, sleep/activity patterns, lab results, biomarker values, medications, allergies, contraindications, notes you enter, and similar information you choose to provide.
• Communications: messages to support, feedback, survey responses, reviews, and requests for expert review.
• Purchase information: products selected, subscription choices, shipping address, order history.
• Payment information: payment card data is typically handled by our payment processors; we generally receive tokens/confirmations and limited billing details, not full card numbers.

B. Information we collect automatically

• Device and usage data: IP address, device identifiers, browser type, app version, pages/screens viewed, clicks, timestamps, error logs, and similar analytics.
• Cookies and similar technologies: used for authentication, preferences, security, and analytics (see “Cookies” below).

C. Information from connected services

If you connect third-party services (e.g., wearables, health platforms, labs, or other apps), we may receive information you authorize them to share. The scope depends on what you connect and the permissions you grant.

4. How we use personal information

We use personal information to:

• Provide and operate the Service (accounts, authentication, recommendations, dashboards, communications).
• Generate insights and suggestions based on the information you provide or connect.
• Process purchases (order routing, fulfillment, shipping updates, returns handling).
• Maintain safety and security (fraud prevention, abuse monitoring, access controls).
• Improve and develop the Service (debugging, analytics, testing features, quality evaluation).
• Customer support and troubleshooting.
• Marketing and communications (where permitted and with required consent; see “Marketing”).
• Legal/compliance (enforcing terms, responding to lawful requests, protecting rights and safety).

5. How we share personal information

We may share personal information with:

• Service providers (processors): cloud hosting, databases, analytics, email/SMS, customer support tools, payment processors, and commerce/fulfillment platforms. They may access information only to perform services for us and are required to protect it.
• Fulfillment/supplier partners: to route and deliver supplement orders you place (name, shipping address, order contents, and necessary order metadata).
• At your direction: when you choose to connect third-party services or share outputs.
• Legal and safety: to comply with law, respond to lawful requests, or protect rights, safety, and security.
• Business transfers: if we’re involved in a merger, acquisition, financing, reorganization, or asset sale.

We may also share aggregated or de-identified information that cannot reasonably identify you.

6. International and cross-border transfers (U.S. hosting)

True Vitamin is based in Québec, Canada, and the Service is hosted in the United States. This means:

• Your information may be stored and processed in the United States and other jurisdictions where we or our providers operate.
• Those jurisdictions may have different privacy laws, and in some cases information may be accessible to authorities under lawful process.

7. Security

We use administrative, technical, and physical safeguards designed to protect personal information, such as access controls, encryption in transit (and often at rest), logging/monitoring, and vendor security reviews. No system is 100% secure, and we cannot guarantee absolute security.

8. Data retention

We keep personal information for as long as reasonably necessary to:

• provide the Service,
• meet legal/accounting requirements,
• resolve disputes,
• enforce agreements,

unless a longer retention period is required or permitted by law.

You may request deletion (see “Your rights”), subject to certain legal and operational exceptions.

9. Your choices and rights

A. Account controls

You can review, update, or correct certain information through your account settings (if available) or by contacting us.

B. Canada / Québec privacy rights

Depending on your jurisdiction, you may have rights to:

• access and receive a copy of your personal information,
• correct inaccurate information,
• withdraw consent (where processing is based on consent),
• request deletion (subject to exceptions).

C. U.S. privacy rights (selected states)

If you are a resident of certain U.S. states (e.g., California), you may have rights such as:

• access/know, delete, correct,
• opt out of certain disclosures considered “sale”/“sharing” under state law,
• limit certain uses of sensitive personal information (where applicable).

D. Consumer health data (selected U.S. states)

Some states regulate “consumer health data” outside HIPAA (e.g., Washington). If applicable, we will provide required disclosures and honor requests/consents as required.

E. How to submit a request

Email: privacy@truevitamin.com with:

• the email tied to your account,
• the request type (access/correction/deletion/opt-out),
• your location (country/state/province).

We may need to verify your identity before fulfilling a request.

10. Cookies and analytics

We use cookies and similar technologies to:

• keep you signed in,
• remember preferences,
• prevent fraud/abuse,
• understand how the Service is used and improve it.

You can control cookies through your browser settings. Some features may not work without certain cookies.

11. Marketing communications

• Canada: We comply with CASL consent/unsubscribe requirements.
• U.S.: We comply with CAN-SPAM rules for commercial email.

You can unsubscribe using the link in marketing messages or by contacting us.

12. Children

The Service is not intended for children under 18 (or the age of majority where you live). We do not knowingly collect personal information from children.

13. Breach notification

If we become aware of a breach of security safeguards involving your personal information, we will assess the risk and provide notifications to individuals and regulators as required by applicable law (including Canada’s federal private-sector framework).

14. Changes to this policy

We may update this policy from time to time. We will update the “Last updated” date and, if changes are material, provide additional notice as required.

15. Contact us

Privacy officer:

Mathieu Rivest

Email:

privacy@truevitamin.com

Address:

200-2205 Bd de la Côte Vertu, Montréal QC H4R 1N8, Canada