Last updated: 2 May 2026.
Diaboo handles health data, which the General Data Protection Regulation (GDPR Art. 9) classifies as a special category. Diaboo therefore applies a minimisation principle: only the information strictly necessary for personal self-care tracking is stored.
What we store: glucose readings, meals, activity, medication, personal profile (diabetes type, target range, weight, height, date of birth) and application preferences.
Where it is stored: in the device's local database, inside the application's private storage. The operating system's encryption (Android File-Based Encryption) protects this data when the device is locked.
Who can access it: only you. Diaboo operates no server that receives your data. We do not sell, rent, or share information with third parties.
Error telemetry: if you enable crash reporting, Diaboo may send anonymised technical information (app version, device model, error trace). Before sending, the app strips any glucose value, personal note, weight, height, date of birth, name or contact.
Your rights: access, rectification, export and deletion of all your data at any time from the Privacy screen.
Data controller: the user themselves, since data never leaves the device. If Diaboo introduces cloud sync in a future version, this policy will be updated.