Consumer Health Data Privacy Policy
Last updated May 21, 2026
Published by Foxtide LLC as required by the Washington My Health My Data Act (RCW 19.373), addressing consumer health data we process through Sunkind. It applies in addition to our general Privacy Policy and is also intended to satisfy comparable disclosures under Nevada SB 370 and the Connecticut consumer-health-data amendments (CT Gen. Stat. § 42-515 et seq.).
Read this alongside our Privacy Policy.
1. Categories of consumer health data we collect
- your Fitzpatrick skin type (a UV-response classification from a short quiz, not racial or ethnic data) and related skin answers
- your tanning goals and the “tan-by” vacation date you choose to enter
- tan session history: start/end times, duration, the UV index at the time, your approximate (city-level) location, and any self-reported skin response
- cumulative UV exposure logs derived from your sessions
- tan progress selfies you save to your journal (Pro), which are stored only on your device and are not transmitted to us
- your optional AI skin-scan photo and the skin-tone/type estimate it produces (the photo is sent to OpenAI for analysis and is not stored by us; only the estimate is saved)
- screen views, taps, and funnel events that may incidentally relate to your tanning and UV behavior
We do not read Apple Health data into our servers. Sunkind writes tan sessions to Apple Health on your device only; we do not transmit Apple Health samples to any third party.
2. Sources of consumer health data
- directly from you, when you enter answers, log a session, or save a photo to your journal
- generated by the app as you use it (screen views, taps, funnel events via PostHog)
- derived on your behalf: the UV index attached to a session is fetched from Apple WeatherKit using your approximate location
3. How we share it, and with whom
We do not sell consumer health data. We share it only with the following service providers / processors:
- Supabase, Inc. (US) — stores your onboarding answers and tan session history, scoped to your user ID with row-level security. Tan-journal photos are not stored here; they stay on your device.
- PostHog, Inc. (US) — receives screen views, taps, and funnel events tied to your user ID.
- RevenueCat, Inc. (US) — subscription events tied to your user ID. RevenueCat does not receive consumer health data.
- Apple Inc. (US) — Sign in with Apple, WeatherKit (receives approximate location for UV), the Apple Push Notification service, and the on-device HealthKit framework. Apple does not receive your session history, photos, or onboarding answers from us.
- OpenAI (US) — receives your skin-scan photo only when you use the optional AI skin scan, solely to return a skin-tone/type estimate. The photo is not stored by us and is not used to train OpenAI’s models.
We do not share consumer health data with any other category of recipient.
4. Why we collect, use, and share it
- to provide the Sunkind tan-tracking and UV monitoring service
- to personalize your tan plan and session recommendations
- to deliver session reminders, UV alerts, and vacation countdowns
- to diagnose bugs and improve the app
- to enforce our terms and comply with legal obligations
We do not use consumer health data for advertising, cross-context behavioral profiling, or training AI systems.
5. Consent and how to withdraw it
Necessary collection. Some data is necessary to provide the service — your skin type, tanning goals, and tan session entries.
Opt-in. Before we collect data that isn’t strictly necessary — your optional vacation date, self-reported skin response, tan progress photos, and analytics tied to health-related interactions — we ask you to opt in, and we record the date and version of your consent.
Withdrawing consent: location, Apple Health, and notifications can each be revoked in iOS Settings. For all other consumer health data, email hello@foxtide.co with the subject “CHD — Withdraw Consent.” To also delete data already collected, use your right to delete (Section 6).
6. Your rights and how to exercise them
- Confirm and access the consumer health data we hold about you.
- Delete it — we remove it within 30 days and notify the processors with whom we’ve shared it.
- Withdraw consent (Section 5).
- No discrimination for exercising any of these rights.
Email hello@foxtide.co from your account address (or include your Sunkind user ID) with the subject “CHD — [right].” We acknowledge within 10 business days and substantively respond within 45 days (up to 90 with notice). If we deny a request, you may appeal by replying; if we deny the appeal, you may complain to the Washington State Attorney General.
7. Sale of consumer health data
We do not sell your consumer health data (“sale” as defined by RCW 19.373.010). We have not done so in the past 12 months and have no plans to. If that ever changes, we will first obtain valid written authorization satisfying RCW 19.373.060, revocable at any time.
8. Changes
For material changes — new categories of data, purposes, or recipients — we will obtain your prior affirmative consent before they apply to previously-collected consumer health data, and update the date above.
9. Contact
Email hello@foxtide.co.
Foxtide LLC · Sunkind · iOS