Privacy Policy
Last updated: 20 Aug 2025
Welcome to Rouast Labs! Your privacy is important to us, and we are committed to protecting it. This Privacy Policy explains how Rouast Labs Pty Ltd ("we," "us," or "our") collects, uses, and shares your personal information when you use our services. This policy applies to our website (rouast.com), the VitalLens API, and VitalLens App (collectively, our "Services"). By using any of our Services, you agree to the collection and use of information in accordance with this policy.
1. Our Core Privacy Principles
For the VitalLens API: We do not retain video, image, or resulting vital signs data after a request has been processed. The data you send is held temporarily in memory for processing and is discarded immediately after the result is returned to you.
For the VitalLens App: We do not collect your video or resulting vital signs data.
2. Information We Collect
We collect information to provide and improve our Services. The type of information we collect depends on how you interact with us.
2.1 Information You Provide Directly
Account Information: When you register for a VitalLens API key, we collect personal information such as your first and last name, email address, and optional information like your company name and position. This information is managed through our authentication provider, AWS Cognito.
Payment Information: When you purchase a paid API plan, our payment processor, Stripe, collects your payment information on our behalf. This may include your credit card number, billing address, and other payment details. We do not have direct access to or store your full credit card information.
2.2 Information We Collect Automatically
API Usage Data: When you use the VitalLens API, we automatically log information about your usage. This includes your API key, the number of frames you process, timestamps of your requests, error occurrences, and information about your subscription plan, usage quotas, and billing cycle.
Website Analytics Data: When you visit our website, we use Google Analytics to collect information about your interaction with the site, such as pages visited, time spent on pages, and general device and browser information. We have enabled IP anonymization for this feature.
App Analytics and Advertising Data: When you use the VitalLens App, we may collect analytics and advertising data through third-party services: (a) Google Firebase Analytics: If you consent, we collect anonymized data about app performance, device information, and user interactions to help us improve the app, and (b) Google AdMob: If you use the free version of the app, Google AdMob may collect device identifiers and other data to serve personalized or non-personalized ads, based on your location and consent choices.
3. How We Use Your Information
We use the information we collect for the following purposes:
To Provide and Maintain Our Services: We use your Account and API Usage Data to operate the VitalLens API, authenticate you, manage your plan, and track your frame credit usage.
To Process Payments: Your Payment Information is used by Stripe to bill you for paid plans. We use associated metadata (like your subscription status and customer ID) to manage your account.
To Improve Our Services: We analyze Website and App Analytics Data to understand how users interact with our Services, identify areas for improvement, and enhance user experience.
To Communicate With You: We use your email address to send you important transactional information, such as onboarding details, payment receipts, usage notifications, and responses to your support requests.
For Security and Fraud Prevention: We use API Usage Data and Account Information to monitor for unauthorized access, prevent abuse, and protect the security of our Services.
To Comply with Legal Obligations: We may retain certain information, such as billing history, to comply with financial and legal record-keeping requirements.
4. Data Sharing and Third-Party Services
We do not sell your personal information. We only share your information with trusted third-party service providers who are essential for us to deliver our Services. These providers are contractually obligated to protect your data.
Stripe: Our payment processor for API plans. They handle all payment data securely. You can view Stripe's Privacy Policy here.
Google: We use Google Analytics for our website, and Google Firebase Analytics and AdMob for our app. You can learn more about Google's Privacy Policy here.
Amazon Web Services (AWS): Our core cloud and infrastructure provider. Your Account Information and API Usage Data are securely stored and processed on AWS servers. We also use AWS Simple Email Service (SES) to send transactional emails.
5. Your Privacy Rights and Choices
You have rights and choices regarding your personal data:
Right to Access and Rectify: You can access and update your account information through your user dashboard or by contacting us.
Right to Erasure (Deletion): You can request the deletion of your account and associated personal data by contacting us at vitallens@rouast.com. Please note that we may need to retain certain information for legal or operational purposes, such as billing records.
Opting Out of Analytics: You can opt out of Google Analytics on our website using their browser add-on, and out of Google Firebase Analytics in the VitalLens App settings.
Advertising Choices: The VitalLens App provides options to manage your consent for ad-related data processing, in compliance with regulations like GDPR and US State Laws.
For users in jurisdictions like the European Economic Area (EEA), we provide specific controls and disclosures as required by the General Data Protection Regulation (GDPR). Similarly, we adhere to applicable US State privacy regulations by offering necessary controls, such as restricting data processing for users in applicable states.
6. Data Retention
We retain your personal data only for as long as necessary to provide you with our Services and for legitimate and essential business purposes, such as maintaining the performance of the API, making data-driven business decisions, complying with our legal obligations, and resolving disputes. API usage and metadata logs are retained for operational and billing purposes. Data associated with website analytics is retained for a period of 2 months.
7. Updates to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last updated" date at the top.
8. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at vitallens@rouast.com.