LIVE
HRV 58 ms
CORTISOL 14.2 μg/dL
BIO-STATE OPTIMAL
TELOMERE LENGTH 7.2 kb
MITO FLUX ↑ 12%
INFLAMMATION INDEX 0.3 LOW
INFERENCE LATENCY 94 ms
AGENTS ONLINE 7 / 7
BIO-AGE DELTA −3.2 yr
GLUCOSE 89 mg/dL ↗
DIGITAL TWIN IN SYNC
HRV 58 ms
CORTISOL 14.2 μg/dL
BIO-STATE OPTIMAL
TELOMERE LENGTH 7.2 kb
MITO FLUX ↑ 12%
INFLAMMATION INDEX 0.3 LOW
INFERENCE LATENCY 94 ms
AGENTS ONLINE 7 / 7
BIO-AGE DELTA −3.2 yr
GLUCOSE 89 mg/dL ↗
DIGITAL TWIN IN SYNC
Protocol Capabilities Pricing About Login Book a call →
Legal

Privacy Policy

How S.O.U.V.E.R.A.I.N. Labs collects, processes, and protects your biological and personal data — built on a zero-knowledge, local-first architecture.

Last updated: March 13, 2026 · Version 2.1

Contents

Overview

Your biology stays yours

S.O.U.V.E.R.A.I.N. Labs ("we," "us," or "Labs") operates the S.O.U.V.E.R.A.I.N. biological intelligence platform. This Privacy Policy explains how we handle your data — with the foundational principle that your most sensitive biological information never leaves your device.

Core commitment: Raw genomic sequences, blood biomarkers, and epigenetic data are processed exclusively on-device. Our zero-knowledge architecture means we cryptographically cannot access your biological data even if compelled to do so.
Collection

Data we collect

Account data

When you create an account, we collect your email address, display name, and encrypted authentication credentials. We do not collect government IDs, payment card numbers directly (handled by our PCI-compliant processor), or unnecessary personal identifiers.

Usage and telemetry

We collect anonymised, aggregated telemetry about feature usage, session duration, and error events to improve the platform. This data cannot be linked back to your identity or biological data. You may opt out of telemetry at any time in Settings → Privacy.

Support communications

If you contact our team, we retain those communications to resolve your issue and improve our service. You may request deletion of support records at any time.

Biological Data

How we handle your biological data

Biological data — including HRV readings, blood glucose levels, genomic sequences, proteomic profiles, epigenetic methylation data, and wearable telemetry — is processed entirely on your local device by the S.O.U.V.E.R.A.I.N. kernel.

What we never see

  • Raw genomic or DNA sequences
  • Blood biomarker values or lab results
  • Wearable sensor streams (HRV, SpO2, skin temperature)
  • Epigenetic methylation patterns
  • Intervention outcomes or protocol responses
  • Digital Twin simulation results

What the cloud receives

Our servers receive only encrypted model weight updates (federated learning), anonymised aggregate statistics (e.g. "89% of intervention suggestions accepted" — never linked to a user), and your account metadata required to authenticate your session.

Architecture

Local-first, zero-knowledge architecture

The S.O.U.V.E.R.A.I.N. kernel runs entirely on your hardware. Your biometric index, epigenetic embeddings, and causal inference models are stored in an encrypted local database using AES-256-GCM with keys derived from your device's secure enclave.

Our cloud infrastructure operates in a verifiable zero-knowledge mode. Technical attestation reports are available to enterprise customers and security researchers upon request.

Backup policy: If you enable encrypted cloud backup, your data is client-side encrypted before transmission. We hold the ciphertext only — we cannot decrypt it. You hold the only key.
Sharing

Data sharing and third parties

We do not sell your data. We do not share your data with advertisers, data brokers, or third-party analytics platforms. The following limited sharing may occur:

  • Payment processors: Stripe processes subscription payments under their own privacy policy. We never see your full card number.
  • Infrastructure providers: We use SOC 2 Type II certified cloud providers for account authentication and anonymous telemetry aggregation.
  • Legal requirements: We will resist legal demands for user data to the maximum extent permitted by law. Where compelled, we will notify you promptly unless prohibited.
Retention

Data retention

Account data is retained for the duration of your subscription plus 90 days following cancellation, after which it is permanently deleted. Anonymised aggregate telemetry may be retained indefinitely as it cannot be linked to individuals.

Biological data exists only on your device. Deleting the S.O.U.V.E.R.A.I.N. application removes all local biological data permanently. We have no copy to delete.

Your Rights

Your rights

Depending on your jurisdiction, you may have the right to access, rectify, erase, or port your personal data. To exercise these rights, contact privacy@souverain.bio. We respond within 30 days.

For GDPR purposes, S.O.U.V.E.R.A.I.N. Labs Ltd is the data controller for account data. Our EU representative is reachable through the contact page.

Security

Security practices

We maintain a responsible disclosure programme. Security researchers who discover vulnerabilities may report them to security@souverain.bio. We commit to acknowledging reports within 24 hours and resolving critical findings within 72 hours.

Our infrastructure undergoes annual penetration testing by independent security firms. Results are available to enterprise customers under NDA.

Contact

Privacy contact

Questions about this policy or your data: privacy@souverain.bio

For all other enquiries: Contact page →