EILA

Privacy Policy

Your data, your sovereignty.

Who we are

EILA is operated by EILA, S.L., a company incorporated in Spain.

EILA, S.L. is the data controller for the personal data described below.

What we collect

We collect only what is necessary to run the agent against your biology and to keep the service available.

  • Account data — email address and, when you sign in with Google, the profile fields Google returns (name, profile picture).
  • Biopassport — supplements, goals, biomarkers, conditions, inventory, and the structured health data you choose to record.
  • Chat history — your conversations with the EILA agent and the agent's responses.
  • Lab documents — images you upload of lab reports and the values our OCR extracts from them. You confirm extracted values before they are saved to your biopassport.
  • Wearable and health-app data — only when you explicitly grant permission. The app works without this access. See our health-data privacy policy for the specifics.
  • Crash and error telemetry — minimal diagnostic data sent to Sentry (EU region). Breadcrumbs, user identifiers, and request metadata are scrubbed; the exception type and stack trace are retained as the diagnostic signal, and our code-style rules prohibit interpolating health values into error messages.

Why we process it (legal basis)

Under Article 6 of the GDPR, we process your data on the following bases:

  • Consent — when you create your account, and again whenever you grant optional health or wearable permissions. You can withdraw consent at any time.
  • Performance of a contract — running the EILA agent against your biopassport is what you sign up to receive.
  • Legitimate interest — minimal security telemetry, abuse monitoring, and service availability.

How long we keep it

Account data and biopassport contents are retained while your account exists. When you ask us to delete your account, we erase your data from primary systems within 30 days. Encrypted backups are rotated within 90 days, after which any residual copies are unrecoverable.

While the in-app account deletion flow is being built, you can request erasure by emailing contact@eila.ai.

Your rights

Under Articles 15 through 21 of the GDPR, you have the right to:

  • Access the personal data we hold about you.
  • Have inaccurate data corrected.
  • Have your data erased ("right to be forgotten").
  • Receive a copy of your data in a portable format.
  • Restrict or object to certain processing.
  • Withdraw consent previously granted.
  • Lodge a complaint with the Spanish data protection authority (Agencia Española de Protección de Datos).

To exercise any of these rights, contact us at contact@eila.ai. We respond within 30 days, usually faster.

Third-party services

Five processors handle what we can't run ourselves. Each gets only what it needs.

  • Anthropic (United States) — powers chat, structured mutation proposals, and the extraction of values from lab documents you upload. Receives the conversation context, biopassport content, and any lab document needed for each response, with an opaque user identifier for abuse monitoring. You confirm extracted lab values before they are saved.
  • Google (United States) — provides Google Sign-In (OAuth). Your IP address is transferred to Google LLC only when you choose to sign in with Google; site fonts are now self-hosted, so simply loading these pages no longer contacts Google.
  • Hetzner (Germany) — hosts the EILA backend and stores your biopassport and chat history. Primary data residency for EILA is Germany.
  • Sentry (EU, Frankfurt) — receives crash and error telemetry. Breadcrumbs, user identifiers, and request metadata are scrubbed; the exception type and stack trace are retained as the diagnostic signal, and our code-style rules prohibit interpolating health values into error messages.
  • RevenueCat — subscription management. Currently not in active use; this entry will become active when subscriptions launch.

International data transfers

Your primary biopassport data is stored in Germany (Hetzner) and the EU (Sentry, Frankfurt). Certain processors operate in the United States — Anthropic for chat and lab-document extraction, Google for sign-in. These transfers rely on the European Commission's Standard Contractual Clauses (SCCs) as the lawful transfer mechanism.

Contact

For any question about this policy or how we handle your data, see our contact page or write directly to contact@eila.ai.

Changes to this policy

If we make material changes to this policy, we will update the date below and, where appropriate, notify you inside the app before the changes take effect.

Last updated: 11 June 2026