Headache Privacy Policy
Effective date: July 16, 2026
Contact information: service@iblueagle.com
Headache is a health record app for organizing headache episodes, medication use, preventive treatment, and information for medical visits. This Policy explains how Headache processes, stores, and protects your personal information. Please read it before using the app.
Headache organizes personal health records and supports communication during medical visits. It does not provide a medical diagnosis, estimate the likelihood of disease, or offer treatment advice. Seek prompt medical care or emergency assessment for a sudden severe headache, new neurologic symptoms, a headache after injury, fever, neck stiffness, or symptoms that are clearly worsening.
1. Scope
This Policy applies to the Headache iOS app, the official website at https://headache.iblueagle.com, and related services.
This Policy does not cover how third-party services, websites, healthcare organizations, social platforms, or apps selected through the system share sheet process your information. If you save or share a complete backup, PDF report, CSV file, screenshot, or other content with a healthcare professional, family member, friend, or third-party platform, that recipient or platform processes the information under its own privacy practices.
2. Types of information we process
Headache currently uses a local-first data storage method. Your headache history, medication history, preventive treatment history, personal profile, and reminder settings are saved locally on your device by default.
To provide recording, statistics, reminders, and reporting features, Headache may process the following information locally on your device:
- Profile information: gender, age, headache history, name, healthcare facility, medical history, usual sleep schedule, and menstrual information.
- Headache episode records: start and end times, pain level and peak pain level, pain location and quality, triggers, associated symptoms, aura, premonitory symptoms, helpful factors, sleep, impact on activities or work and study, and notes.
- Medication and treatment records: acute medication name, dosage, time taken, effect evaluation for each intake, side effects, preventive treatment type, plan, adherence and completion, reminder settings, etc.
- Statistics, reports, and backup content: trend statistics, pattern summaries, visit reports, PDF files, structured CSV files, and complete JSON backups containing profiles, headache episodes, acute medication entries, saved medications, preventive treatment plans, and treatment logs.
- Local settings and preferences: reminder settings, follow-up visit date, unrecorded reminder duration, interface language, and other function preferences.
- Notifications and on-device usage statistics: When you enable a reminder, the device stores its time, title, body, and local notification identifier. The app also stores on the device the count and most recent time of events such as opening a Pro screen, previewing a report, purchasing, or exporting. These statistics do not contain the contents of your health records and are not uploaded to our servers.
- Purchase status: When you purchase Headache Pro through the App Store, Apple may process purchase, refund, and payment information. Headache only checks whether the corresponding features are available. We do not receive your bank card number or complete payment credentials.
- Website access information: When you visit the Headache website, its hosting and content-delivery provider may process basic network logs such as IP address, browser type, operating system, access time, requested page, referring page, and security events to deliver the site, protect it, and troubleshoot faults. The website does not provide user accounts or contact forms and does not use advertising cookies or third-party behavior analytics.
- Support email: When you email
service@iblueagle.com, we process your email address, message, and any app version, iOS version, device model, or troubleshooting steps you choose to provide so we can reply and investigate. Do not send unnecessary health records, PDF reports, CSV files, or complete backups in ordinary support email.
The above information related to headaches, medications, medical history, menstrual periods, sleep and medical visits may be sensitive personal information. We process this information only to the extent necessary to enable the health recording, statistical, alerting and reporting functions you actively use.
3. How we use information
We will use the information for the following purposes:
- Store and display your headache episode, medication, preventive treatment, and profile records.
- Calculate statistical results such as headache days, episode count, average pain level, duration from completed records, medication days, common pain locations, common triggers, and per-intake medication effects.
- Generate headache calendar, trend analysis, pain location distribution and visit reference reports.
- Organize your records into readable or structured files when you actively generate, export or share PDF reports, advanced CSV or full backups. PDF exports contain key visit information by default; you choose whether to append episode-level details each time. A visit-purpose note is used locally only for that report, is not written back to the original health records, and is not automatically uploaded by Headache.
- When you select a backup and confirm restoration, verify its format, version, and data relationships, then replace the health records on the current device with the backup contents.
- When you enable reminders, schedule local iOS notifications for sleep records, preventive treatment plans, follow-up preparation, or a gentle review after a long period without records.
- Maintain the basic functions, data security and user experience of the app.
- After you purchase paid functions such as Headache Pro lifetime access, identify and provide corresponding paid feature access.
- Deliver the official website, maintain website security, investigate access problems, and respond to support email you initiate.
We will not use your health records for advertising, marketing profiles, insurance pricing, employment evaluation, credit evaluation, or other purposes unrelated to your use of Headache features.
The website does not use access logs to create health profiles and does not ask you to submit headache, medication, or other health records through a web page.
4. How information is stored
Headache stores your health records locally on your device by default. We do not upload your headache records, medication records, profile, or visit reports to our servers unless you actively export, share, back up, or migrate data, or consent to a future cloud feature.
If your device has system-level backup, device migration, Family Sharing or other Apple system features turned on, related data may be backed up, migrated or synchronized in accordance with Apple’s system rules. You can manage these features in iOS system settings.
After you delete the app, clear local data, or delete related records, locally saved data may be deleted. Complete backups, reports, and other files that you have exported, shared, printed, saved to other apps, or sent to third parties will not be automatically deleted when you delete the data in Headache.
Complete backups are exported only when you request them and are saved to a location you choose. Headache does not upload backups automatically. The backup is a structured JSON file and is not additionally encrypted by Headache. Its security depends on the device, storage location, and third-party file service you select. The restore feature reads only the file you choose and shows its backup time and record count before confirmation. Restoring replaces the current local health records. Purchase status, notification permissions, on-device usage statistics, and Pro reminder settings are not included in or restored from a backup.
When you request a structured CSV export, Headache creates four related files covering headache episodes, acute medication entries, preventive treatment plans, and preventive treatment logs. You can also choose to include a profile file; this option is off by default each time. CSV files cannot restore Headache data. Use the free complete JSON backup for restoration. Headache does not upload CSV files automatically. Their security depends on the recipients, storage locations, and third-party services you choose.
The official website uses Cloudflare Pages for static hosting and content delivery. Basic access and security logs may be processed and retained on Cloudflare infrastructure under its service rules. Support emails are stored by the email service we use and are used only for communication, troubleshooting, and necessary security records.
5. Special instructions for sensitive personal information
Since Headache involves health-related information such as headache symptoms, medication, medical history, menstrual period, sleep, and visit reports, once this information is leaked or improperly used, it may have an impact on your personal dignity, personal safety, property security, or social evaluation.
The necessity for us to process this information is that without recording and organizing this information, Headache will not be able to provide core functions such as headache trend statistics, medication tracking, preventive treatment records, reminders and visit reference reports.
You can decide whether to fill in certain fields. Except for the information necessary to complete the function, you can choose not to fill in your name, hospital, medical history, notes, menstrual period information or other supplementary content. You can also delete saved records at any time.
6. System permissions
Headache may request the following system permissions:
- Notification permissions: used to send sleep reminders, preventive treatment plan reminders, organization reminders before follow-up visits, reminders that have not been recorded for a long time, or other local reminders that you actively turn on. You can turn off notification permissions in iOS system settings.
- File, sharing, and printing capabilities: When you export a complete backup, select a backup to restore, or save, share, or print a PDF report or CSV file, iOS may open its document picker, file saver, share sheet, or print interface. Headache does not read or share external files unless you initiate the action.
If a future version adds access to the camera, photos, location, contacts, microphone, Bluetooth, HealthKit, or other sensitive permissions, we will explain the purpose before enabling the feature and request authorization through the system.
7. Third-party services
The current version of Headache’s core health record function mainly saves locally and does not use the advertising SDK or third-party data analysis SDK to process your health records.
In the following scenarios, third-party or system services may be involved:
- The App Store and Apple services: for downloads, updates, purchases, refunds, crash diagnostics, system notifications, device backup or system sharing capabilities. Apple’s processing of personal information is governed by its privacy policy and related rules.
- The sharing target you actively choose: such as email, WeChat, Messages, cloud storage, printing service, hospital system or other apps. The corresponding service provider is responsible for the processing of information after you actively share it.
- Cloud synchronization, account, customer service, analytics or crash diagnostics services that may be accessed in the future: If they are subsequently accessed, we will update this agreement before going online or notify you in a prominent way, and obtain your consent when necessary.
- Website hosting and content delivery: The Headache website uses Cloudflare Pages for static pages, HTTPS connections, security protection, and content delivery. Cloudflare may process basic network requests and security logs under its privacy policy. The website currently does not use third-party advertising or behavior analytics.
- Email service: When you initiate a support email, transmission and storage involve the email providers used by you and by us and are subject to those services’ privacy and security practices.
8. How we protect information
We will take protective measures that match the product form and information sensitivity, including:
- Minimize the scope of information collection and processing, and only process necessary information around recording, statistics, reminders and reporting functions.
- Health records are saved locally on the device by default to reduce unnecessary server transmission.
- Avoid using your health records for advertising, marketing profiles, or purposes unrelated to product functionality.
- Follow the data minimization principle during development and testing and avoid using real user health records as test data.
- If server-side services are introduced, we will use measures such as access control, encryption in transit, log management, separation of privileges, and security auditing.
Protect your device, Apple Account, device passcode, and exported backups, reports, and CSV files. Backups and profile-inclusive CSV files may contain identifiable personal and health information. Store them only in locations you trust. Before sending a file to another person or service, check that the recipient and platform provide appropriate privacy and security protections.
9. Your rights
You can exercise the following rights through Headache’s app features or iOS system capabilities:
- View and correct: You can view, edit and correct profiles, headache records, medication records and preventive treatment records.
- Delete: You can delete individual records or uninstall the app to remove its local data.
- Withdraw authorization: You can turn off notification permissions in the iOS system settings, or turn off related reminder functions in the app.
- Backup and restore: You can export a complete local backup for free and restore a backup supported by the current app version. After you confirm, restoration replaces the current local data.
- Export and share: You can actively generate, export, save, print or share a PDF visit reference report and choose whether to append episode-level details; you can also share a structured CSV composed of multiple associated files and choose whether to include the profile CSV.
- Contact us: Use the contact information in this Policy to ask about personal information processing, request assistance with deletion, or provide privacy feedback.
- Website and support information: You can clear locally cached website data through your browser. To access, correct, or request deletion of personal information retained in support correspondence, contact us at the address in this Policy.
Since current health records are saved locally on your device by default, we may not be able to remotely access, restore, modify or delete records in your device. If you have deleted local data and did not back it up yourself, we usually cannot help with recovery.
10. Protection of minors
Headache is aimed at users with independent health record needs. Before using Headache, minors should obtain the consent of their parents or other guardians and use it under the guidance of their guardians.
If you are under 14, do not use Headache or enter personal health information without your guardian’s consent. If a guardian discovers that a minor is using the app without consent and wants the information deleted, the guardian can contact us using the details in this Policy. For information stored only on the device, the guardian can delete the records directly or uninstall the app.
11. Data retention period
For health records saved locally by default, the retention period is controlled by you. You can keep, edit or delete records as needed.
For full backups, PDF reports, CSVs, screenshots, printouts, or shared files that you actively export, the retention period depends on where you save them, the recipient, and the rules of the third-party service.
If we introduce accounts, cloud synchronization, customer support, or other server-side services, we will retain related information only for as long as needed to provide the service. We will then delete or anonymize it, or respond to a lawful deletion request, unless applicable law requires otherwise.
Retention of basic website access and security logs follows the hosting provider’s security, operations, and logging practices. We use them only as needed to deliver and protect the site or troubleshoot faults. Support emails are generally retained until the issue is resolved and for a reasonable follow-up period. You may request deletion unless retention is required by law.
12. Cross-border transmission
The current version of Headache does not upload your health records to our servers by default, and therefore does not generally involve cross-border transfers of personal information actively initiated by us.
If you use Apple services, third-party cloud storage, email, social platforms, or other cross-border services to save or share reports, the service provider handles that transfer under its own rules.
If we provide services that may involve cross-border transmission in the future, we will perform notification, consent, security assessment or other necessary procedures in accordance with the law.
Cloudflare Pages and the email services used by the website may process basic access logs or email content on infrastructure outside mainland China. Do not send unnecessary sensitive personal information through support email. If the website or support service later needs to process health records or other sensitive personal information, we will explain this before enabling the feature and complete legally required procedures.
13. Policy updates
We may update this Policy based on changes in product features, laws and regulations, or operating entities. When major changes occur, we will notify you through in-app prompts, version update instructions, or other reasonable means.
Significant changes include but are not limited to:
- Significant changes in the purpose, type or method of processing personal information.
- New account, cloud synchronization, third-party analytics, advertising, customer support, or server-side storage features.
- Significant changes in the rules for external sharing, transfer or public disclosure of personal information.
- Significant changes to the organization responsible for personal information, its contact information, or how users exercise their rights.
If you do not agree to the updated Policy, you can stop using relevant functions, delete local records or uninstall the app. Your continued use of Headache indicates that you have read and understood the updated Policy.
14. Contact us
If you have any questions, comments or requests about this Policy or the protection of personal information, you can contact us through the following methods:
Email: service@iblueagle.com
We will respond as soon as reasonably possible. To protect your information, we may need to verify your identity or clarify the request. We cannot remotely access information stored only on your device, so you may need to view, export, or delete it directly in the app.
15. Important reminder
Headache’s records, statistics, reminders, and reports are based only on information you enter or save. They may be incomplete or inaccurate, and statistical summaries may contain deviations. Reports support communication with a healthcare professional. Do not use them for self-diagnosis, changing medication, delaying medical care, or replacing professional medical advice.
If you have questions about symptoms, medications, treatment options, or the content of this report, please consult a qualified medical professional.