As of April 3, 2026
This privacy policy informs you about how personal data is processed in our iOS application "Kai Companion." We follow a strict local-first architecture: we do not operate our own servers for the app, there is no cloud upload and no user tracking by us. All data processing is carried out locally on your device. In order to execute Siri voice commands, shortcuts, send messages, make calls, process in-app purchases, or retrieve public safety alerts, processing by Apple, your mobile phone provider, or public authorities may be necessary for system or service reasons (see sections 6 and 7).
Ka.I Health GmbH
Odenwaldstraße 1, 63263 Neu-Isenburg, Germany
info@kai-health.net
The party responsible for processing personal data is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.
Kai Companion is a personal safety app that provides emergency workflows, health monitoring, fall detection, companion mode, safety briefings, and nearby safe places — all processed locally on your device. Communication (message/call) is provided via iOS system services. Optional premium features are available through in-app subscriptions.
Depending on the use of the functions, the following data categories are processed on your device:
The app receives the trigger as an action/intent; audio data (your voice) is not recorded or stored by the app. Voice processing is performed by Apple (see section 7).
Your current location is determined on-device to embed it in emergency messages and to search for nearby safe places via Apple MapKit. No location tracing or logging by us takes place. Background location access may be used during active safety escalations.
Emergency contacts are selected from your address book or entered manually. Contact data is stored locally only — no synchronization or transmission to our systems.
Sending messages and initiating calls is performed via iOS system functions. You determine the content and recipient.
With your explicit consent, the app reads the following health data types from Apple HealthKit in read-only mode:
This data is used exclusively for on-device vital signs monitoring, anomaly detection, and morning safety briefings. Health data is processed in temporary in-memory snapshots only and is never transmitted, uploaded, or permanently stored. A 30-day lookback is maintained on-device for baseline calculations. All processing follows Apple's HealthKit guidelines.
The app uses CoreMotion for on-device fall detection and activity monitoring. Sensor data is analyzed locally in real time and is not recorded, stored, or transmitted.
The app maintains a local safety event log (e.g. trigger events, cancellations, messages sent, check-ins) using SwiftData. This log is stored exclusively on your device (max. 500 entries, auto-rotated) and is never synchronized or transmitted.
Settings such as your name, emergency SMS templates, language preference, and onboarding state are stored locally in UserDefaults on your device only.
Local and push notifications are used for safety alerts, companion signals, check-in timers, fall detection alerts, and daily safety briefings. Notification content is generated on-device.
The app offers optional "Kai Plus" subscriptions (monthly/yearly) via Apple's StoreKit. All purchase processing, payment handling, and subscription management is performed exclusively by Apple. We do not receive, process, or store any payment information (credit card numbers, billing addresses, etc.). We only receive a transaction confirmation to unlock premium features on your device.
We do not specifically process special categories of personal data (Art. 9 GDPR), with the exception of health data as described in section 4.5, which is processed exclusively on-device with your explicit consent.
Permissions are requested contextually via iOS system dialogs. Processing is based on the following legal grounds:
| Permission | Purpose | Legal basis (GDPR) |
|---|---|---|
| Contacts | Select and contact your emergency contacts. No copies, synchronization, or transmission to our servers. | Consent (Art. 6(1)(a)), Contract (Art. 6(1)(b)) |
| Location (When in Use & Always) | Embed current location in emergency messages; search for nearby safe places. No location history tracking. Background access only during active safety scenarios. | Consent (Art. 6(1)(a)), Contract (Art. 6(1)(b)), Vital interests (Art. 6(1)(d)) |
| Notifications | Safety alerts, companion signals, check-in reminders, fall detection alerts, and daily safety briefings. | Consent (Art. 6(1)(a)) |
| Siri & Shortcuts | Trigger emergency workflows via voice command or Shortcut. The app does not process audio data. | Contract (Art. 6(1)(b)), Consent (Art. 6(1)(a)), Vital interests (Art. 6(1)(d)) |
| HealthKit | Read-only access to health metrics for vital signs monitoring and anomaly detection. Data remains on-device. | Explicit consent (Art. 9(2)(a)), Contract (Art. 6(1)(b)) |
| Motion & Fitness (CoreMotion) | Fall detection and activity monitoring. All analysis is performed on-device. | Consent (Art. 6(1)(a)), Contract (Art. 6(1)(b)), Vital interests (Art. 6(1)(d)) |
| Messages/Calls (via iOS system services) | Send emergency messages and initiate calls. You determine content and recipients. Confirmation may be required. | Consent (Art. 6(1)(a)), Contract (Art. 6(1)(b)), Vital interests (Art. 6(1)(d)) |
| Background App Refresh | Safety monitoring, proactive safety signals, check-in timers, and daily safety briefings while the app is in the background. | Consent (Art. 6(1)(a)), Contract (Art. 6(1)(b)) |
Note: Some core functions cannot be used technically without the respective authorization. You can grant or revoke authorizations at any time in iOS Settings; the app will adjust its functionality accordingly.
The app offers an optional "Kai Plus" subscription with monthly and yearly plans, including a free trial period. All purchases are processed exclusively through Apple's App Store and StoreKit framework.
For details on Apple's processing of payment data, please refer to Apple's Privacy Policy.
We do not operate any app servers for processing your data. No upload of personal, health, or safety data to us takes place.
Apple and your mobile phone provider may be involved in the technical provision of Siri voice commands, Shortcuts, sending messages, making calls, HealthKit, StoreKit, MapKit, and push notifications. Processing by these providers is their responsibility under their own privacy policies.
The app retrieves public safety alerts from government APIs to inform you about nearby hazards:
warnung.bund.deapps.fema.gov) and NWS (api.weather.gov)These are read-only requests to publicly available APIs. No personal data (including your location) is transmitted to these services. The app fetches general alert data and filters it locally on your device.
We use AppsFlyer for anonymized install attribution to understand which marketing channels lead to app installations. AppsFlyer processes:
AppsFlyer does not receive any personal data, health data, safety data, location data, or contact information. No user tracking or profiling takes place. The app's privacy manifest declares NSPrivacyTracking: false.
For details, see AppsFlyer's Privacy Policy.
The app uses Apple MapKit to search for nearby safe places (e.g. police stations, hospitals). Search queries are processed by Apple's MapKit service. Apple's privacy terms apply to this processing.
Apart from AppsFlyer (install attribution only), the app does not use any analytics, advertising, or crash reporting SDKs (e.g. no Firebase Analytics/Crashlytics, no Facebook SDK, no Google Analytics).
We do not transfer any app data to third countries. AppsFlyer may process anonymized attribution data on servers outside the EU/EEA; this is covered by AppsFlyer's own data processing agreements and standard contractual clauses. System-related processing by Apple may take place independently of this in accordance with their terms and conditions.
The app provides a companion widget (for the Home Screen and Lock Screen) and an Apple Watch extension. These extensions access the same local data as the main app (e.g. check-in timer state, fall detection settings) and do not collect additional data or make separate network requests. All data processing occurs on-device.
The app uses iOS Background Tasks (BGAppRefreshTask and BGProcessingTask) for:
All background processing occurs entirely on-device. No data is transmitted during background tasks.
The app only stores what is necessary for its use on your device:
Persistent data remains only on your device and is deleted when you:
System backups: Operating system backups (e.g. iCloud backup) can back up local app data without our involvement; this is subject to the terms and conditions of the respective provider.
We take state-of-the-art technical and organizational measures, including:
In accordance with Apple's App Store requirements, the following data types are declared in our privacy manifest:
| Data type | Linked to identity | Used for tracking | Purpose |
|---|---|---|---|
| Location | No | No | App functionality (emergency messages, safe places) |
| Name | No | No | App functionality (personalization) |
| Phone number | No | No | App functionality (emergency contacts) |
| Health & fitness data | No | No | App functionality (vital signs monitoring) |
| Other usage data | No | No | App functionality (local activity log) |
| Purchase history | No | No | App functionality (subscription verification) |
None of the above data types are used for tracking. None are linked to user identity.
Depending on the requirements, you have the right to information, correction, deletion, restriction of processing, data portability, and objection.
Since we do not process any data on our own servers, you can usually manage and delete the relevant content yourself (e.g. via app functions, app uninstallation, or iOS Settings).
For HealthKit data: you can revoke health data access at any time in iOS Settings > Privacy & Security > Health > Kai Companion.
To exercise your rights, please contact us using the contact details provided above.
You have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR), in particular in the Member State of your habitual residence, your place of work, or the place of the alleged infringement.
Our app is not intended for children under the age of 16, unless it is used with the consent of a parent or guardian and/or is necessary to protect vital interests (e.g. emergency functions).
There is no automated decision-making, including profiling, in accordance with Art. 22 GDPR. On-device health anomaly detection and fall detection serve solely to execute safety functions initiated or enabled by you, without any personal evaluation by us.
We may amend this privacy policy if functions, legal frameworks, or technical standards change. The current version displayed in the app or store applies.
If you have any questions about data protection, please write to us at:
info@kai-health.net
Please indicate in your inquiry that it concerns the iOS version of the "Kai Companion" mobile app.
Triggering via Siri/Shortcuts: The emergency is triggered via a Shortcut you have added (e.g. via Siri voice command). The app itself does not perform continuous background microphone detection.
Voice processing: Voice commands are processed by Apple as part of Siri usage; the app does not receive any audio data and does not store any voice recordings.
Emergency message/call: You determine the content and recipients. The location is only determined for the respective message and is not logged. This is carried out via iOS system services; depending on the device settings, confirmation may be required.
Companion mode: Enables monitoring of paired safety contacts. All signal processing and status evaluation occurs entirely on your device.
Morning briefing: A daily safety summary generated entirely on-device based on local data (vital signs, activity, alerts).
Safe places: Nearby help locations (e.g. police, hospitals) are searched via Apple MapKit on-device. Your search location is processed by Apple under their privacy terms.