Privacy Policy

Last updated: 21 June 2026 · applies to the Android app ArcVita (package de.arcan.arcvita)

In short: ArcVita is a local-first app. All of your entries and health data are stored encrypted on your device. We do not run servers for your data, you do not need an account, and there are no ads, no trackers and no telemetry.

1. Controller

Arcan Consulting – Michael J. Arcan
c/o Online-Impressum.de #37562
Europaring 90, 53757 Sankt Augustin, Germany
E-mail:

2. Core principle: on-device processing only

ArcVita processes all data locally on your Android device. Your entries and health data are not transmitted to us or to any third party. Because we have no access to this data, we cannot view, analyse or share it.

3. What data ArcVita processes

You decide which features to use. Depending on your choices, ArcVita stores locally, among other things:

Nutrition & drinking: logged foods, amounts, meals, calorie/nutrient goals, drink amounts.
Health diary (optional, per module): mood and strain, cycle data, medication, blood pressure, skin/symptoms, shifts.
Movement & sleep: steps, exercise minutes and sleep imported from Health Connect (see section 4).
Profile & settings: e.g. name (local), diet type, body data for goal calculation, reminders, theme.

Much of this is health data (a special category of personal data, Art. 9 GDPR). The legal basis for local processing is your consent through active use of the respective feature (Art. 6(1)(a), Art. 9(2)(a) GDPR). Processing happens solely on your device and under your control.

4. Health Connect (health & fitness data)

If you enable the health module, ArcVita can — with your explicit permission — read the following data from Health Connect: steps, exercise minutes and sleep. This data is used only locally, to display it in the diary and include it in local insights.

ArcVita reads Health Connect data read-only and only while you have granted permission.
This data is not transmitted to us or third parties and is not used for advertising.
You can revoke the permission at any time in Health Connect or your Android settings.

ArcVita's use of Health Connect data complies with the Google Play Health Connect policy, including its limited-use requirements.

5. Purchases (Google Play Billing)

ArcVita offers paid access (subscription and one-time purchase) via Google Play. Payment processing is handled solely by Google. We receive no payment data from Google — only a proof of purchase (e.g. product ID and purchase token) that the app verifies locally to unlock the purchased features. Google's Privacy Policy applies to payment processing.

6. Backup and export

You can optionally create an encrypted backup or export reports (PDF/CSV). You choose the location via the Android file picker (e.g. local storage or a cloud of your choice). The backup is encrypted with your password. We have no access to exported files or your password. If you choose a cloud location, that provider's terms additionally apply.

7. Permissions

Notifications (POST_NOTIFICATIONS): for the reminders you set up.
Health Connect (optional): to read steps, exercise and sleep.
File access via the file picker: only for backup export/import and report export that you trigger.

8. No sharing, no analytics, no ads

ArcVita contains no analytics, tracking or advertising SDKs. No usage profiles are created, and no data is sold or shared. Data is transferred to a third party only as part of the payment processing you initiate via Google Play (section 5).

9. Retention and deletion

Your data stays on the device until you delete it. You can remove individual entries in the app, clear the app's data in Android settings, or uninstall the app — which deletes the locally stored data. The export feature lets you obtain a copy of your data at any time.

10. Your rights (GDPR)

You have the rights of access, rectification, erasure, restriction, data portability and objection. Because ArcVita processes your data exclusively locally and without access by us, you exercise these rights directly in the app (view, edit, export, delete). For questions, contact . You also have the right to lodge a complaint with a data protection authority.

11. Data security

The local database is encrypted with SQLCipher; the key is protected via the Android Keystore. Backups are end-to-end encrypted with a password you choose.

12. Children

ArcVita is not directed at children and does not knowingly collect data from children.

13. Changes to this policy

We update this policy when features or legal requirements change. The current version is always available at this address; the date above indicates its status.

14. Note

ArcVita is not a medical device and does not replace medical advice, diagnosis or treatment.