Back to home

Security

How we protect your data, end to end.

Our security commitment

Health data is among the most sensitive information a person can share. We treat yours with the level of care that demands. Security isn't a feature in Arlo — it's a design constraint on every system we build.

Encryption everywhere

Every message, food log, workout, and medical detail is encrypted in transit using TLS 1.3 and at rest using AES-256. Database backups are encrypted with separately-managed keys.

Medical data is segregated

Your medical profile — allergies, conditions, medications, supplements — sits in a separate, more tightly access-controlled data store from the rest of your profile. The reasons:

  • HIPAA-style data classification: more sensitive data, stricter handling.
  • Hard safety constraints: Arlo will never recommend a meal or supplement that conflicts with what's on file.
  • Auditability: every read and write to medical data is logged.

Infrastructure practices

  • Least-privilege access: only the services and engineers that need access have it.
  • Isolated environments: production data is isolated from development and staging.
  • Sensitive-field redaction in logs: emails, phone numbers, medical details, and tokens are redacted at log-emission time, not after.
  • Regular audits: dependencies, infrastructure, and access policies are audited on a regular cadence.

AI safety

  • No training on your conversations. Your messages aren't used to fine-tune any model.
  • Hard constraints over hallucinations. Allergies, contraindications, and medical conditions are enforced as deterministic guards, not just hints to a model.
  • Tone safety. Users who tell us about an eating-disorder history get a gentle mode that drops calorie and weight language entirely.
  • Human escalation. Anything that looks like a medical emergency is escalated to professional resources, not handled in chat.

Health data sources

When you connect Apple Health or Health Connect, Arlo only reads the data types you grant. You can revoke access from your phone's settings or from inside Arlo at any time. We never write data back to your health store without explicit consent for that specific metric.

Reporting a vulnerability

If you think you've found a security issue in Arlo, please email security@arlohealth.app. We respond to all credible reports within 72 hours and credit researchers who help us responsibly.