🔒 Short version: Bloom collects only what it needs to function. We never sell your data. We never share it for money. All wellness data is encrypted and you can delete everything whenever you want.
1. Who we are
Bloom is operated by Bloom, a private limited company registered in Nairobi, Kenya. References to "Bloom", "we", "us" or "our" in this policy refer to Bloom.
Contact: privacy@mybloomworld.org
2. What data we collect
Account & identity
- Name (first name or chosen name)
- Email address
- Optional: how you plan to use Bloom (to personalise your experience)
Wellness data (stored encrypted, on-device where possible)
- Mood and energy ratings
- Sleep duration and quality logs
- Medication names, doses, and times (self-entered)
- Journal entries and thought records
- Focus session data
Technical data
- Device type and operating system version
- App version and crash reports (anonymised)
- Session timestamps (not linked to content)
We do not collect: location, contacts, camera, microphone, biometric data, or any data from other apps.
3. How we use your data
- To provide and improve the Bloom app and services
- To send product updates and founding member communications (opt-out any time)
- To diagnose technical issues and improve stability
- To generate anonymised, aggregate insights about how Bloom features are used
We never use your data for advertising, profiling, or sale to third parties.
4. Clinician sharing (optional)
Bloom offers an optional, encrypted one-time export of your wellness data to share with a psychiatrist or therapist. This feature is entirely opt-in. The export is generated on-device, encrypted end-to-end, and delivered via a time-limited link. Bloom does not retain a copy of exports.
5. Data sharing
We do not sell your data. We share data only to operate and improve the service, as follows:
- Infrastructure providers - Trusted technology partners who host, deliver, and secure the Bloom platform under appropriate data processing agreements.
- Payment processors - When paid plans are available, payments are handled by regulated third-party payment processors. Bloom does not store your card details or mobile money credentials. Only the minimum transaction record required for accounting is retained.
- Legal authorities - Only where required by a court order or applicable law in Kenya or your jurisdiction.
5a. AI-powered features
Bloom uses artificial intelligence and machine learning technologies to power features such as the Bloom Light wellness companion and personalised content recommendations. These capabilities are delivered with the assistance of trusted technology service providers under appropriate data protection agreements.
Your conversations with Bloom Light are processed solely to generate your response. They are not retained on Bloom's servers after your session ends, and they are not used to train AI models without your explicit consent. All core app features remain fully available without using AI-powered features.
We may expand, modify, or introduce new AI-powered features over time. Where any such feature involves processing of sensitive health data in a new way, we will update this policy and notify you.
6. Your rights (GDPR & Kenya Data Protection Act)
In accordance with GDPR and the Kenya Data Protection Act 2019, supervised by the Office of the Data Protection Commissioner (ODPC), Kenya, you have the right to:
- Access: request a copy of your data
- Correction: update inaccurate data
- Deletion: delete your account and all associated data
- Portability: receive your data in a machine-readable format
- Objection: object to certain types of processing
- Restriction: request we limit how we use your data
To exercise any of these rights: privacy@mybloomworld.org
7. Data retention
We retain account data for as long as your account is active. Wellness data is stored on-device and synced encrypted. On account deletion, all server-side data is permanently erased within 30 days.
8. Security
Bloom is built on a Zero Trust security architecture - the same principle used by leading healthcare and financial institutions. Every layer of the system assumes no one is trusted by default, and every action must be continuously verified.
Your data
- All health data is encrypted to medical-grade standards, both when stored and when moving between your device and our servers
- Your password is transformed using a secure one-way process before storage - it cannot be read, recovered, or reversed by anyone, including us
- Your wellness data is stored on your device where possible; server-side copies are encrypted and inaccessible to Bloom staff
Your account
- Sessions use short-lived, cryptographically signed tokens that expire automatically - a stolen token becomes worthless within minutes
- Suspicious activity (such as someone attempting to reuse an old session) triggers an immediate lockout and security alert
- Passkey support lets you replace your password with a hardware-backed key stored on your device - phishing-resistant by design
- Repeated failed login attempts result in automatic account protection
Our infrastructure
- Multiple layers of protection are applied to every request - no single point of failure
- All administrative access is authenticated, monitored, and logged with a full audit trail
- All data is stored within globally distributed infrastructure in accordance with GDPR and the Kenya Data Protection Act 2019
- Automated monitoring runs continuously to detect and respond to unusual patterns
No Bloom employee can read your individual health records. Access to personal data is restricted to authorised personnel only, with every access logged.
9. Children
Bloom is not intended for use by anyone under 16 years of age. We do not knowingly collect data from children.
10. Changes to this policy
We will notify founding members by email of any material changes to this policy. The "last updated" date at the top reflects the most recent revision.