Enerio — energy tracking and AI journaling app for burnout prevention

Data & Compliance

Last updated: 5 April 2026

1. About this page

This page explains how Enerio handles your data, what information we collect, and the steps we take to protect your privacy. For full details, please also review our Privacy Policy.

2. Data we collect

Enerio collects and processes the following categories of data to provide the service:

  • Account and login data
  • Google sign-in identifiers where used
  • Profile and preference data
  • Energy transaction content entered by you
  • AI-generated summaries, goals, and pattern outputs
  • Achievement, badge, XP, and level progression data
  • Feedback submitted through the product
  • Analytics and technical usage information

3. Analytics and consent controls

Enerio uses lightweight analytics and performance tooling to understand how the product is used and how the site performs.

We do not use your personal energy entries for advertising, and we do not sell your personal information. If you have questions about analytics or data handling, contact us at contact@enerio.app.

4. How we protect your data

  • Your data is separated by account and only accessible to you
  • Sensitive personal content is encrypted at rest with a unique per-account key using AES-256-GCM authenticated encryption
  • Encryption keys are generated and protected by a managed key service and never stored alongside your data
  • All connections use TLS 1.2 or higher to protect data in transit
  • Passwords are securely stored and never kept in plain text
  • All protected areas of the app require authenticated access
  • We do not sell your personal data

Encryption in plain English: The private things you write in Enerio — your goal, your reflections, and the details of every energy entry — are scrambled before they reach our database using encryption to a standard suitable for health-sensitive data under GDPR. Each account has its own encryption key, so even if our database were ever exposed, your personal content would remain unreadable.

Plain-English trust summary: Enerio is designed so your entries, summaries, and reviews stay attached to your account, remain private by default, and are used to provide the features you signed up for.

5. GDPR health-data considerations

Because Enerio helps you reflect on wellbeing, mood, and lifestyle, some of the content you create may be treated as special-category health data under GDPR Article 9 and UK GDPR.

In line with GDPR Article 32, we apply appropriate technical and organisational measures to this content, including field-level encryption at rest for sensitive free-text fields, per-account cryptographic isolation, and encrypted transport. Our approach aligns with the cryptography controls described in ISO 27001 Annex A.10.

6. Your rights

Depending on your location, you may have rights under data protection laws such as GDPR, UK GDPR, or CCPA/CPRA. These may include the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Object to or restrict certain processing

To exercise any of these rights, please contact us at contact@enerio.app. We will respond to your request as promptly as possible.

7. Data sale

Enerio does not sell your personal information. We only use your data to operate and improve the service as described in our Privacy Policy.

8. Contact

For compliance or privacy enquiries, contact contact@enerio.app.

Privacy PolicyTerms of Service← Back to Enerio