LEGAL

Privacy Policy

LAST UPDATED · 10 JULY 2026

Who we are

SangraMate is operated by Worklair Pty Ltd (ACN 685 645 452, ABN 16 685 645 452) — "we" and "us" in this policy — an Australian company based in Sydney. We provide the SangraMate iPhone app, its companion web portals for clinics and carers, and this website, and you can reach us about anything in this policy at info@sangramate.com.

Because SangraMate handles health information, we hold ourselves to the Privacy Act 1988 (Cth) and the Australian Privacy Principles as our baseline — wherever in the world you use the app.

Health information and consent

Glucose readings, insulin doses, meals and the other records you keep in SangraMate are health information — a category of sensitive information under Australian privacy law. We collect it only with your consent: you choose to connect your LibreLinkUp account, to log events and to use the AI features. You can withdraw that consent at any time by disconnecting your sensor or deleting your account.

What we collect

  • Account details — your email address, a display name of your choosing, time zone, country and app settings. We deliberately collect no date of birth, no government identifiers and no proof of identity. Your password is stored only as a cryptographic hash, never in plain text. Clinic accounts may also carry an organisation name and address.
  • Diabetes data — glucose readings (refreshed roughly every two minutes while your sensor is connected), your logs of meals, insulin, activity and notes, and the reports and insights the app builds from them.
  • LibreLinkUp credentials — the email and password you provide are stored encrypted and used for one thing only: fetching your glucose data from Abbott's LibreLinkUp service.
  • Meal photos — a photo you attach to a meal is used to estimate its nutrition and stored with the log.
  • Voice recordings — your voice recordings are streamed to our speech-recognition provider to produce a transcript and are not retained by SangraMate. We have opted out of our provider's data-retention and model-training programs, so your audio is not stored after transcription or used to train speech models.
  • AI conversations — your chat threads with the assistant, plus a technical log of AI requests that we keep for reliability and usage metering.
  • Security data — two-factor authentication secrets and recovery codes, stored encrypted.
  • Subscription records — your plan and entitlement status from the App Store. Payment happens through Apple; we never see your card details.
  • Support messages — feedback and support tickets you send us.
  • Diagnostics — crash and error reports from the app and our servers, so we can find and fix failures.

Where it comes from

Almost everything comes directly from you or your sensor: what you log, what you ask the assistant, and the readings SangraMate fetches from Abbott's LibreLinkUp service using the credentials you provide. The rest — forecasts, insights, briefings — is generated by the app itself from your data.

How we use it

  • Running the service — syncing readings, storing logs, firing alarms and building reports.
  • AI features you invoke — answering chats, estimating nutrition from meal photos and writing briefings, delivered around 07:00 in your time zone with a weekly edition on Mondays.
  • Notifications you enable — alarms, briefings and Care Circle updates.
  • Keeping the service reliable and fair — metering AI usage per plan, preventing abuse and fixing crashes.
  • Support and legal — answering your messages and meeting obligations the law places on us.

We do not sell personal information, and we do not use it for advertising.

Sharing you control

Followers and clinic connections see your data only after you invite them, and you can remove their access at any time. Nobody is added by default.

Service providers

We use a small set of specialised providers, each receiving only what its function needs:

  • Amazon Web Services (United States) — hosts our servers, database and file storage.
  • OpenAI (United States) — processes AI chats, meal-photo analysis and generated reports when you use those features. Our AI provider may retain inputs and outputs for up to 30 days for abuse monitoring, after which they are deleted.
  • Deepgram (United States) — converts voice recordings to text when you log by voice.
  • RevenueCat (United States) — matches your App Store receipt to your subscription entitlements.
  • OneSignal (United States) — delivers push notifications to your device.
  • Sentry (United States) — receives crash and error diagnostics.
  • Apple — handles App Store billing under Apple's own terms.
  • Abbott's LibreLinkUp — the source of your glucose data, accessed with your own credentials under Abbott's terms. SangraMate is an independent product and is not affiliated with, endorsed by or sponsored by Abbott.

Our service providers process your information only to provide their service to us — never for advertising, and never to sell to third parties. Some providers may use de-identified, aggregated information (which does not identify you) to operate and improve their services.

Overseas processing

We use service providers located overseas, principally in the United States (cloud hosting, AI processing, speech transcription, subscription management, notifications and error monitoring). We take reasonable steps, including contractual data-processing terms, to ensure these providers handle your information consistently with Australian privacy law. By using SangraMate you consent to your information, including health information, being transferred to and processed in the United States for these purposes.

How long we keep it

Your health data has no time-based expiry — it stays available to you until you delete it or your account. In detail:

DataKept
Glucose readings, logs, chats, reportsUntil you delete the entry or your account
Meal photosRemoved immediately when you delete or re-log the entry; a scheduled storage cleanup deletes any remainder within 90 days
Voice audioNot retained by SangraMate — only the transcript is kept, until your account is deleted
AI request logsUntil your account is deleted
Account, subscription and support recordsUntil your account is deleted

When your account is deleted, this data is deleted from our production systems, and residual copies in backups and storage cleanups expire within 90 days.

Security

Data moves over encrypted connections. LibreLinkUp credentials and two-factor secrets are encrypted at rest, passwords are stored only as hashes, and access to the clinic and admin portals is role-gated.

No system is perfectly secure. If a breach ever puts you at likely risk of serious harm, we will notify you and the Office of the Australian Information Commissioner under the Notifiable Data Breaches scheme.

Access and correction

Most of your data is visible and editable directly in the app. For anything else — a copy of your data, a correction, or a question about what we hold — email info@sangramate.com from your account address. We aim to answer within 30 days.

Deleting your account

Email info@sangramate.com from your account address and we will delete your account and its data. Self-serve deletion is on our roadmap; until it ships, deletion is handled by our team.

Complaints

If you think we've mishandled your information, tell us first — we take it seriously and will respond within 30 days. If you're not satisfied with our answer, you can complain to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au or on 1300 363 992.

Changes to this policy

When this policy changes, we will update it here and adjust the date above. If a change meaningfully affects how we handle your data, we'll tell you in the app or by email first.