Legal · Privacy

Privacy Policy

Tera Health ("Tera Health," "Tera," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use the Tera Health Coach app, the Tera Patient Copilot, the TeraPro practitioner platform, the Tera AI Clinical Modules (APIs and SDKs) embedded into enterprise products, our website, and related services (collectively, the Services). By using the Services, you agree to this Privacy Policy.

Last updated · March 1, 2026

Contents

01

Who this policy applies to

This Privacy Policy applies to:

  • Direct Users individuals using the Tera Health Coach app or other consumer-facing services without a supervising healthcare provider.

  • Patients individuals invited by a healthcare practitioner to use Tera Patient Copilot in connection with supervised care.

  • Practitioners & Clinics healthcare professionals, wellness professionals, and organizations using TeraPro.

  • Enterprise Customers healthcare companies, telehealth platforms, EHRs, and other organizations embedding Tera AI Clinical Modules into their products.

Your rights and our role may differ depending on your relationship with Tera, as explained below.

02

Categories of information we collect

A. Information you provide directly

Account information

  • Name, email, phone number
  • Login credentials
  • Demographic data
  • Communication preferences

Health & wellness information

Depending on your use of the Services, we may collect:

  • Health goals and conditions
  • Symptoms and medications
  • Allergies and sensitivities
  • Biometric and lab test results
  • Wearable device data
  • Dietary inputs and supplement use
  • Lifestyle and behavioral data
  • Reproductive, hormone, or mental wellness data
  • Practitioner-entered protocol information (for supervised users)

You control what information you share.

B. Practitioner information

If you are a Practitioner or Clinic, we may collect:

  • Credential or certification information
  • Practice or business details
  • Billing and payment information
  • Platform usage data
  • Patient management data entered into the platform

C. Connected services

With your authorization, we may receive information from:

  • Instacart or retail integrations
  • Wearable device platforms
  • Lab testing providers
  • Identity providers (e.g., Google, Apple)
  • Payment processors

D. Automatically collected data

We collect:

  • Device information (IP address, browser, OS)
  • Usage activity and engagement data
  • App performance metrics
  • General geolocation
  • Cookie and tracking data
03

How we use information

We use information to:

A. Provide and personalize Services

  • Generate meal plans and protocols
  • Provide AI-powered recommendations
  • Support practitioner workflows
  • Facilitate patient adherence tracking
  • Integrate third-party services

B. Improve and develop the platform

  • Conduct analytics
  • Improve personalization systems
  • Train and refine AI systems (see Section 7)

C. Communicate

  • Send service-related messages
  • Provide onboarding support
  • Send educational or marketing content (you may opt out)

D. Protect and comply

  • Detect fraud or misuse
  • Enforce agreements
  • Comply with legal obligations
04

Our role depending on your relationship with Tera

Your relationship with Tera determines how we process your data.

A. Direct AI users (no practitioner)

If you use the Tera Health Coach app or other consumer-facing services independently (no practitioner):

  • Tera acts as a data controller.
  • Your data is processed under consumer privacy laws.
  • Health information is treated as personal wellness information, not as medical records.

B. Patients using Tera under a practitioner

If you use Tera Patient Copilot under supervision of a healthcare provider:

  • Your health information may constitute Protected Health Information (PHI).
  • Tera may act as a Business Associate under HIPAA pursuant to a Business Associate Agreement (BAA) with your provider.
  • Your provider's Notice of Privacy Practices may apply.
  • Tera processes PHI on behalf of your provider.
  • We do not make independent clinical decisions regarding your care.

C. Practitioners and clinics

If you use TeraPro:

  • Tera acts as a service provider or processor.
  • If you are a Covered Entity under HIPAA, Tera may act as your Business Associate.
  • You are responsible for obtaining appropriate patient consents.

D. Enterprise Customers

If you are an Enterprise Customer integrating Tera AI Clinical Modules into your platform via APIs or SDKs:

  • Tera typically acts as a processor or sub-processor on your behalf.
  • Data flows, data ownership, and processing roles are governed by the enterprise services agreement and applicable Data Processing Agreement (DPA).
  • Where PHI is involved, use and disclosure are governed by the Business Associate Agreement (BAA) between Tera and you, and applicable law.
  • You are responsible for the legal basis for processing your end users' data and for providing any required notices or obtaining any required consents from those users.
05

How we share information

We do not sell personal data.

We may share information with:

  • Cloud hosting and infrastructure providers
  • Analytics providers
  • Payment processors
  • Retail or fulfillment partners
  • Lab or health data partners (with authorization)
  • Corporate affiliates or acquirers
  • Legal authorities where required

For PHI processed under HIPAA, disclosures are governed by the applicable BAA and law.

06

HIPAA & Protected Health Information

If you access Tera through a healthcare provider:

  • Certain health information may be PHI.
  • Tera safeguards PHI in accordance with HIPAA requirements.
  • Use and disclosure of PHI is governed by the BAA and applicable law.
  • You may have additional rights under your provider's Notice of Privacy Practices.

If you use the Tera Health Coach app independently (no practitioner), HIPAA may not apply.

07

Artificial Intelligence & data use

Tera uses AI systems to generate recommendations and support workflows.

We may use:

  • Aggregated data
  • De-identified data
  • Usage analytics

to improve our Services.

We do not use identifiable PHI to train AI models unless permitted by applicable law and agreements.

08

Data Retention

We retain data:

  • While your account is active
  • As required by law
  • As required under HIPAA obligations
  • As specified in enterprise agreements

After account deletion, certain data may be retained for compliance, auditing, or fraud prevention.

09

Data security

We implement:

  • Encryption in transit and at rest
  • Access controls
  • Audit logging
  • Administrative safeguards

However, no system is completely secure.

10

Your Rights

Depending on applicable law, you may have the right to:

  • Access your information
  • Correct inaccuracies
  • Request deletion
  • Opt out of marketing
  • Restrict certain processing
  • Request data portability

For PHI, rights may also be governed by HIPAA and your provider's policies.

11

International users

Your information may be processed in the United States or other jurisdictions.

12

Children

Tera is not intended for individuals under 18.

13

Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notice. Continued use constitutes acceptance.

14

Contact Us

Questions or requests about this Privacy Policy? Reach Tera Health using the contact form.