How Moveno keeps your data secure
Last updated
Your data is encrypted in transit and on your device, and stored so that only you can reach it.
How it works
- No action is required — these protections apply automatically.
- For your own account security: keep your login credentials private and sign out on shared devices.
Good to know
- All data transmission uses TLS 1.3 encryption.
- Your login session is stored AES-256 encrypted on your device.
- Row Level Security (RLS) in the database means you can only ever reach your own data — other users can never see your food or weight.
- Error reports (Sentry, EU region) identify you only by a 12-character one-way hash — no email, IP address, or name — and sensitive content (credentials, tokens, search queries, dietary filters, photos) is scrubbed before sending; error reports are kept 90 days.
- Sessions time out after a maximum of 24 hours and lock after 8 hours of inactivity.
- If you connect Apple Health (iPhone) or Android Health Connect, that is health data: special-category (sensitive) data that is never sold or used for advertising; reading and write-back are separate choices you make yourself.
Common questions
Is my data encrypted? Yes — TLS 1.3 in transit and AES-256 for the session on your device.
Can Moveno staff or other users see my food or weight? Other users cannot — row-level security in the database isolates your data to you alone.
Does error monitoring expose my personal data? No — you are identified only by a hash and sensitive content is scrubbed.
Why was I signed out? Sessions expire after 24 hours or lock after 8 hours of inactivity.