Longr

Privacy Policy

Last updated · January 2026

Privacy Policy

This Privacy Policy describes how Longr Holdings Inc. (“Longr,” “we,” “us,” or “our”) collects, uses, and shares information when you use our websites, applications, and services (collectively, the “Service”). We take privacy seriously, especially given the nature of the health data we may handle.

1. Information We Collect

Information you provide

When you create an account, contact us, subscribe to our newsletter, or use clinical features of the Service, we collect information you provide directly, including your name, email address, postal address, phone number, payment details, and any health, biometric, or lifestyle information you choose to share.

Information collected automatically

When you access the Service, we automatically collect certain information, including IP address, device and browser type, operating system, referring URLs, pages viewed, and interactions with the Service.

Information from third parties

We may receive information about you from third parties, such as laboratory partners, wearable device providers, pharmacies, and clinical providers you authorize to share data with the Service.

2. How We Use Information

We use the information we collect to:

  • Operate, maintain, and improve the Service.
  • Personalize your experience, including the Bionetic Coach and related recommendations.
  • Communicate with you about your account, your care, and product updates.
  • Process transactions and deliver clinical, pharmacy, or testing services you have requested.
  • Conduct research and analytics to improve clinical and product outcomes, using de-identified or aggregated data where possible.
  • Detect, prevent, and respond to fraud, abuse, security, or technical issues.
  • Comply with legal obligations.

3. Health Information

Health information you share through the Service is handled with heightened safeguards. Where Longr is acting as a business associate to a covered entity under HIPAA, your protected health information is governed by the applicable business associate agreement and Notice of Privacy Practices provided by your clinical provider. We do not sell your health information.

4. How We Share Information

We share information only as described below:

  • Service providers: with vendors who perform services on our behalf (hosting, analytics, payment processing, email delivery, customer support), subject to confidentiality obligations.
  • Clinical and pharmacy partners: with licensed providers and pharmacies you authorize for the purpose of delivering care or fulfilling prescriptions.
  • Legal and safety: when required by law, subpoena, or to protect the rights, property, or safety of Longr, our users, or others.
  • Business transfers: in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate confidentiality protections.
  • With your consent: for any other purpose disclosed at the time of collection or with your consent.

We do not sell your personal information.

5. Your Choices

  • Access and correction: You can review and update account information through your account settings or by contacting us.
  • Deletion: You can request deletion of your personal information, subject to legal and regulatory retention requirements (including those that apply to medical records).
  • Marketing communications: You can opt out of marketing emails at any time using the unsubscribe link in the email.
  • Cookies: You can control cookies through your browser settings. Disabling cookies may limit functionality.

6. Data Security

We use reasonable administrative, technical, and physical safeguards designed to protect personal information. No system is perfectly secure, and we cannot guarantee the security of information transmitted to or from the Service.

7. Data Retention

We retain personal information for as long as needed to provide the Service and for legitimate business or legal purposes. Medical records may be retained for periods required by applicable law and professional standards.

8. Children

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided information to us, please contact us and we will delete it.

9. International Users

The Service is operated from the United States. If you access the Service from outside the United States, you understand that your information may be transferred to, stored, and processed in the United States and other jurisdictions whose data protection laws may differ from those of your country.

10. State-Specific Rights

Residents of certain U.S. states (including California, Colorado, Connecticut, Virginia, and others) may have additional rights with respect to their personal information, including the right to access, correct, delete, or limit the use of certain categories of personal information. To exercise these rights, contact us at privacy@longr.io.

11. Changes to this Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Service or by email. The “Last updated” date above indicates when this Policy was last revised.

12. Contact

Questions about this Privacy Policy or our data practices can be sent to privacy@longr.io, or by mail to:

Longr Holdings Inc.
Attn: Privacy
142 West 57th Street
New York, NY 10019