Privacy Policy
19Labs
Privacy Policy
Effective Date: November 20, 2025
Welcome to 19Labs.
19Labs (“we,” “us,” “our”) is committed to protecting your privacy and handling your personal information responsibly. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you:
-
Visit and use our website
-
Interact with our WhatsApp AI agent
-
Submit inquiries or communicate with us
-
Engage with us through social media
-
Access related online features or services
This Policy applies globally and is designed to meet requirements under:
-
GDPR (EU/EEA and UK)
-
CCPA/CPRA (California)
-
Other applicable international privacy laws
By using our Services, you consent to this Privacy Policy. If you do not agree, please discontinue use.
1. Information We Collect
We collect only the information necessary to provide and improve our Services.
We do not collect or process sensitive health data or medical records through the website or WhatsApp agent.
1.1 Information You Provide Directly
When using our contact forms, subscribing to communications, or interacting with our WhatsApp AI agent, you may provide:
-
Name
-
Email address
-
Phone number (via WhatsApp)
-
Country/region
-
Message content/inquiry details
-
User preferences
-
General descriptions of symptoms or concerns (non-clinical and non-sensitive)
​
You may also provide information when interacting with us on LinkedIn, Facebook, or other social media platforms.
1.2 Information Collected Automatically
When you visit our website or interact with WhatsApp:
-
IP address
-
Device and browser type
-
Operating system
-
Pages visited and time spent
-
Referring URLs
-
Interaction logs
-
WhatsApp message metadata (timestamps, delivery status)
We do not use these technologies to identify individuals by name.
1.3 Information Collected Through Cookies & Similar Technologies
We use cookies and analytics technologies to:
-
Operate our website
-
Enhance functionality
-
Understand website usage
-
Improve user experience
(See Section 6 for full cookie details.)
2. How We Use Your Information
We use personal information only for legitimate business purposes, including to:
-
Respond to your inquiries
-
Provide general guidance through our WhatsApp AI agent
-
Improve our website, content, and services
-
Analyze website usage and optimize performance
-
Maintain security and prevent fraud
-
Manage user preferences
-
Comply with legal obligations
We do not sell personal information.
3. WhatsApp AI Agent Data Processing
Our WhatsApp AI agent helps users:
-
Navigate basic health-related questions
-
Understand symptoms at a general, non-diagnostic level
-
Locate nearby clinics or telemedicine providers
-
Receive general wellness guidance
3.1 Information Processed
-
WhatsApp phone number
-
Messages you send
-
Language preferences
-
Approximate geolocation (if you enable location sharing) to suggest the nearest clinic or telemedicine provider
-
Non-identifying context needed to provide useful guidance
Important: Geolocation data is used only to suggest nearby care options and is not stored long-term or used for profiling. Users may opt out by disabling location sharing in WhatsApp.
3.2 Important Disclaimers
-
The AI agent is not a diagnostic tool
-
The AI agent is not a medical device
-
We do not collect or store clinical records or PHI
-
Conversations are used solely for improving service quality and user support
If you require medical care, our agent may direct you to licensed clinicians or facilities.
4. Legal Basis for Processing (GDPR)
For users in the EU/EEA or UK, we process data under the following lawful bases:
-
Consent: When you voluntarily submit information
-
Legitimate interests: Website analytics, service improvement, fraud prevention
-
Legal obligation: Compliance with laws and regulatory requests
You may withdraw consent at any time by contacting us.
5. How We Share Information
We limit disclosures to what is necessary.
5.1 Service Providers
We may share data with trusted vendors who assist with:
-
Website hosting
-
Analytics
-
WhatsApp infrastructure
-
Email services
-
Security and fraud prevention
All service providers must protect data and act only under our instructions.
5.2 Legal Compliance
We may disclose information when required by:
-
Law enforcement
-
Courts
-
Government regulators
-
Legal processes
We may also disclose information to protect rights, safety, and security.
5.3 Aggregated or Anonymized Data
We may share aggregated, non-identifying data to improve products and understand user behavior.
We do not share personal information for third-party marketing.
6. Cookies & Tracking Technologies
This section explains our cookie usage in detail.
6.1 What Are Cookies?
Cookies are small text files stored on your device to enable website functionality and performance.
We use cookies and similar technologies such as:
-
Browser cookies
-
Local storage
-
Web beacons
-
Pixel tags
-
Analytics scripts
6.2 Types of Cookies We Use
1. Essential Cookies
Required for:
-
Website functionality
-
Server security
-
Load balancing
-
Contact form operations
These cookies cannot be disabled.
2. Analytics Cookies
Used to track:
-
Visitor behavior
-
Traffic patterns
-
Page performance
This helps us improve the user experience.
We use analytics tools that do not identify you personally.
3. Functionality Cookies
Used to remember:
-
Preferences
-
Language settings
-
User experience customizations
6.3 Third-Party Cookies
We use limited third-party cookies for analytics and performance.
We do not use advertising cookies, cross-site tracking, or profiling technologies.
6.4 Your Cookie Choices
You can:
-
Adjust browser settings to block cookies
-
Delete existing cookies
-
Decline non-essential cookies if a cookie banner is present
-
Opt out of analytics via browser extensions (e.g., opt-out tools)
Blocking certain cookies may affect site performance.
7. International Data Transfers
Because 19Labs operates globally, your information may be processed in jurisdictions outside your country, including the United States.
Where required by GDPR, we use:
-
Standard Contractual Clauses (SCCs)
-
Adequacy decisions
-
Appropriate organizational and technical safeguards
8. Data Retention
We retain personal information only as long as necessary to:
-
Provide the services
-
Fulfill the purposes described in this Policy
-
Meet legal or compliance requirements
Retention is generally up to five (5) years, unless a longer period is required.
WhatsApp message data may be retained for shorter periods for improvement and troubleshooting.
9. Security
We use commercially reasonable measures to safeguard your information from:
-
Loss
-
Misuse
-
Unauthorized access
-
Alteration
-
Disclosure
​
No system is fully secure. If you suspect unauthorized activity, contact us immediately.
10. Your Privacy Rights
10.1 Rights for EU/EEA/UK Users (GDPR)
You may request:
-
Access to your data
-
Correction of inaccurate data
-
Deletion (right to be forgotten)
-
Restriction of processing
-
Data portability
-
Objection to processing
10.2 California Rights (CCPA/CPRA)
You may request:
-
Disclosure of what data we collect
-
Access to personal information
-
Correction or deletion
-
Opt-out of data sharing (we do not sell data)
10.3 How to Exercise Your Rights
11. Children’s Privacy
Our services are not directed to children under 13.
We do not knowingly collect information from children.
12. Contact Us
If you have questions, concerns, or requests regarding this Policy:
19Labs
995 Marsh Rd Ste-102-400
Redwood City, CA 94063
Email: info@19labs.com
13. Updates to This Policy
We may update this Privacy Policy periodically.
The date at the top reflects the most recent revisions.
Your continued use of the website or WhatsApp agent indicates acceptance of the updated Policy.