Privacy Policy
Unhindr LTD - Roliner
Last updated: 12 March 2026
Unhindr Ltd ("we", "us") is committed to protecting your privacy. This policy explains how we collect, use, store, and protect your personal data when you use the Roliner system and its mobile application.
Roliner is a wearable medical device — an adjustable prosthetic liner system comprising the Liner, a Control Unit, and a Mobile Application — designed to improve the fitting and comfort of prosthetic legs.
Who We Are
Unhindr Ltd is the data controller for the personal data collected through the Roliner system. We are subject to the UK GDPR and the Data Protection Act 2018. Contact us at enquiry@unhindr.com.
What Data We Collect
Account Data — Username, email address, and password (encrypted) when you create an account. Stored securely via AWS Cognito.
Profile Data — Name, age, gender, height, weight, amputation details, and prosthetic usage time. This data is stored only on your device and is never uploaded to our servers.
Sensor Data— Pressure readings, accelerometer, gyroscope, temperature, step count, and battery level from the Roliner Control Unit. Stored locally and optionally uploaded to AWS S3.
Location Data — Approximate location collected every 60 seconds while the app is in use, with your permission. Used to provide context for comfort patterns.
Weather Data — Temperature, humidity, and conditions retrieved hourly from the OpenWeather API based on your approximate location. No identifying information is sent to OpenWeather.
Activity Labels — Activity type (walking, resting, exercise, etc.) that you select manually within the app.
HealthKit Data — Step count read from Apple Health with your permission. Displayed in the app only and never uploaded to any server.
Why We Collect Your Data
We process your data on the following legal bases:
Your consent — You provide explicit consent during registration for the collection of health-related sensor data, location data, and profile information. You can withdraw consent at any time.
To provide our service — Processing your account data (email, username) is necessary to deliver the Roliner service to you.
Our legitimate interests — We use anonymised performance monitoring and security logging to maintain and improve the service, where this does not override your rights.
How We Store and Protect Your Data
On your device — Profile data and sensor recordings are stored locally, protected by iOS hardware encryption and app sandboxing. No other app can access this data.
In the cloud — Account authentication is handled by AWS Cognito (London, UK). Sensor data files are stored in AWS S3 (London, UK), encrypted at rest and in transit.
Privacy by design — Our authentication database and sensor data store are completely separate systems. Sensor files are keyed by device identifier, not your user account. This means your sensor data cannot be trivially linked to your identity.
All data stays in the UK — No personal data is transferred outside the United Kingdom or the European Economic Area.
How Long We Keep Your Data
Account Data — Until you request account deletion.
Profile Data — Until you uninstall the app.
Sensor Data (Device) — Until you delete it or uninstall the app.
Sensor Data (Cloud) — Until you request deletion.
HealthKit data — Not stored — displayed in real time only.
Who We Share Data With
We do not sell, rent, or trade your personal data. We use the following third-party services to operate Roliner:
Amazon Web Services (AWS) — For authentication and secure data storage, hosted in the UK (London). Bound by AWS's GDPR Data Processing Addendum.
OpenWeather API — Receives only approximate location coordinates to retrieve weather data. No personal information is shared.
Apple HealthKit — Read-only access to step count on your device. No data is sent to Apple or any server.
Your Rights
Under the UK GDPR, you have the right to:
Access your personal data and request a copy of it.
Correct your profile information directly in the app, or request corrections to account-level data.
Delete your data. Local data is removed when you uninstall the app. Cloud data will be deleted on request.
Export your data in a machine-readable format (JSON).
Object to processing based on legitimate interest.
Restrict processing in certain circumstances.
Withdraw consent at any time without affecting processing that occurred before withdrawal.
Lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
To exercise any of these rights, contact us at enquiry@unhindr.com. We will respond within 30 days.
Children's Data
Roliner is not directed at children under 16. We do not knowingly collect data from children under 16. Where a minor uses Roliner under clinical supervision, we require verified parental or guardian consent.
Data Breach Procedures
If we become aware of a data breach that poses a risk to your rights, we will notify the ICO within 72 hours and inform affected users without undue delay.
Changes to This Policy
We may update this policy to reflect changes in our practices or legal requirements. We will notify you of material changes through in-app notifications and updates at unhindr.com/privacy-policy.