Your cycle data is personal. Here's exactly how we protect it.
When you set your PIN, Lunarosa generates an encryption key on your device. Your health data — period dates, flow, symptoms, notes — is encrypted locally before being sent to our servers. We store ciphertext. We cannot read it. Period.
We never see your decrypted health data. Not our engineers, not our servers, not anyone. The only way to decrypt your data is with your PIN or recovery key — and we don't have either of those.
No advertisers, no data brokers, no "anonymous" data sharing. We make money through optional Premium subscriptions, not by monetizing your information. Your data is not the product.
Your email is hashed with HMAC-SHA256 before storage — we don't store plaintext emails in our database. Login uses short-lived magic links and one-time verification codes. All connections use HTTPS with TLS 1.3.
Lunarosa runs on Vercel's edge network with servers in South America. Data at rest is encrypted. We use strict Content Security Policy headers, HSTS, and other modern web security standards.
Account deletion removes all your data permanently — encrypted health records, authentication methods, billing information, everything. There's no "soft delete" or hidden archive. When it's gone, it's gone.
Questions about security? Reach us at support@lunarosa.app
Get Started — Free