Skip to main content
kneu

Privacy Policy

Last updated: June 2026

Kneu Health

Kneu Health Limited is registered as a limited company in the United Kingdom (no.14492037) and our registered address is Blackwell House, Guildhall Yard, London, EC2V 5AE (referred to as “Kneu Health”, “we”, “us” or “our” in this notice).

We have appointed a Data Protection officer who is responsible for overseeing questions relating to this notice as well as our general data protection practices. To contact, please use privacy@kneu.com

If you have any questions about this Privacy Policy, general data protection inquiries or any complaints. You can contact us:

  • Using the details above (including ‘data protection’ in the email subject line); or
  • By visiting the contact us page on our website, selecting ‘data protection’ as the subject, and submitting a form: Contact us

Key Definitions

An overview of key terms used to describe personal data and how it can be used.

What is Personal Data?

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

What is Data Processing?

In relation to personal data, processing, means any operation or set of operations which is performed on personal data or on sets of personal data (whether or not by automated means, such as collection, recording, organisation, structuring, storage, alteration, retrieval, consultation, use, disclosure, dissemination, restriction, erasure or destruction).

Further Information

The Information Commissioner’s Office (ICO) is the UK Data Protection Regulator. For further detail on definitions relating to personal data, used throughout this policy, please visit the ICO website.

Kneu Health’s Interactions with Personal Data

Kneu Health may handle your personal information as a data controller or a data processor. This privacy notice tells you what to expect us to do with your personal information when you make contact with us, use our website or platform or register for and use our services through the Kneu Platform application(s).

In circumstances where we are the data controller, we determine what data is collected, how this data is going to be used and how this data is protected. We are registered as a data controller with the Information Commissioner's Office (ICO) with registration no.ZB541090.

We also act on behalf of other organisations as a data processor under contract. Where this is the case we do not determine what personal data is collected or how it is going to be used. The organisation we work on behalf of will make these decisions as the data controller for your personal information and you should refer to their privacy notice for these details. This will typically involve health care sector organisations who have contracted with us for services provided through our platform.

Below we describe the different scenarios where we collect and/or handle personal information, along with controls in place to ensure this is done securely. For a detailed breakdown, please see the end of this policy.

Website Visitor

We use Google analytics to collect this standard internet log information and details of visitor behaviour patterns. We do this to understand things such as the number of visitors to the different areas of the website. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google analytics to make, any attempt to find out the identities of those visiting our website. Details of Google's privacy policy can be found here: https://policies.google.com/privacy

If we do want to collect personally identifiable information through our website, we will make this clear at the point personal information is collected and will explain what we intend to do with it.

Use of cookies

Like many other websites and services, We use cookies and similar technologies on this website. We use Cookiebot to manage your consent and to provide a live, up-to-date cookie declaration that lists each cookie, its purpose, provider, and duration. When you first visit, you can choose which categories to allow (Necessary, Preferences, Statistics, Marketing).

You can change or withdraw your consent at any time via the Cookie settings link on this site. For the full list of cookies currently in use, see our Cookie Declaration.

Kneu Health App User ‘Patient’

Following prescription by a clinician, users will download the Kneu Health application to their mobile phone and interact accordingly, as detailed in the application and/or accompanying guidance materials.

When Kneu Health is the Data Controller

We collect and use certain personal data to operate the app and support you as a user. This includes:

  • Contact and Account Information: Name, email address, phone number, and NHS number (used to confirm your identity and ensure your account matches the clinician who prescribed the app).
  • Demographic Information: Date of birth, biological sex, and dominant hand — collected as part of the app setup to ensure the service works correctly and to provide your clinician with reliable insights for your care.
  • Application Activity Information: App performance data and app feedback. We may also request feedback from you, but only if you wish to provide it.
  • Support Information: Information you provide when contacting us for technical support.

How we use this data as Controller:

  • To confirm your identity and ensure only legitimate users access and use the app.
  • To improve the services and functions of the app.
  • To analyse patient input data and generate derived data, which is presented to clinicians through graphs and other analytic displays to support clinical decision-making.
  • To provide technical support and resolve issues you raise.

In these cases, Kneu Health is the controller and decides how and why this data is used.

When Kneu Health is a Data Processor (on behalf of your healthcare provider)

When your clinician prescribes the app, your healthcare provider is the controller of your health and assessment data. Kneu Health processes this data only under their instructions and may vary slightly depending on your provider. Below we detail what processing is likely to occur. Should you require further detail regarding use of this information – please contact the data controller.

Personal Data we process on behalf of the Controller:

  • Condition & Health Information: Diagnosis, medication history, symptom reports, questionnaire results, and sleep diaries.
  • Smartphone Assessment Data: Information captured when you complete specific tasks in the app, such as:
    • Finger tapping and reaction-time tasks (measuring speed and accuracy).
    • Balance and gait tasks (capturing movement while holding the phone).
    • Voice recordings (for example, sustaining a sound for a set time).
    • Cognitive and memory tasks (such as problem-solving or recall exercises).
  • Operational Support Information: Contact details used to support onboarding, follow-up, and delivery of the service, always under the controller’s instruction.

How we use this data as Processor:

  • To collect health and assessment data via the app and send it securely, directly to your clinical team in their environment.
  • To process these activities and provide results back to your clinicians, helping them to monitor your condition and support your care.
  • To contact you on behalf of your Trust to support onboarding and the delivery of the service.

Kneu Health has only minimal access to this data, and then only where necessary — for example, to provide technical support or maintain service delivery. Your healthcare provider remains responsible for explaining how and why your clinical data is used in your care.

Non-Personal Data we collect:

Application activity information: app performance information, app feedback

Anonymised information will be used internally by Kneu Health for service and technology evaluation and improvements.

Any additional information collection and/or handling is managed by the data controller.

Cookies:

We use cookies that are essential for website functionality, analytics cookies to understand usage patterns, and diagnostic cookies to identify and resolve issues for a better user experience. For more details, see Cookies policy.

Caregiver App User ‘Companion’

Companions will access the Kneu Health application via the same mobile application used by patient users. The Caregiver App is intended for people who support users of the Kneu patient app. It allows caregivers to view non-diagnostic summaries (such as adherence and symptom trends), access educational materials, and record their own observations to support conversations with the person and their healthcare team.

This functionality is for information and communication only and does not provide medical advice or treatment recommendations.

Personal Data we collect

We collect and use the following types of personal data from caregivers:

  • Registration Information: First name, last name, email address and phone number.
  • Relationship Information: Relationship to the patient and whether the caregiver lives with the patient.
  • Caregiver Observations: Observations of patient symptoms and associated ratings recorded by the caregiver within the app.
  • Caregiver Impact Information: Information regarding the impact of caregiving on the caregiver, where provided.
  • Verification and Linking Information: To complete registration and confirm identity, caregivers are required to verify their phone number and confirm the patient’s date of birth, alongside a six-digit invitation code generated in the patient’s mobile application.

This verification and linking information is processed to confirm that the caregiver is authorised and to securely link the caregiver account to the correct patient account. Completion of this process indicates that the patient app user and caregiver both agree to share information through the caregiver functionality.

This information is collected to enable caregiver functionality, support patient monitoring and related care outcomes, and to ensure secure access to a linked patient account.

Non-Personal Data we collect:

Application activity information: app performance information and caregiver interaction information.

This allows Kneu Health to monitor service performance, resolve technical issues, and improve the user experience. Anonymised information may be used internally by Kneu Health for service and technology evaluation and improvements.

Any additional information collection and/or handling is managed by the data controller.

Clinical Dashboard User ‘Clinician’

Clinicians/the data controller will have access to Kneu Platform – providing a dashboard to review results collected via patients using the Kneu Health app.

Personal Data we collect:

We collect the following types of personal data from the data controller:

  • Registration Information: Name, email address and place of work.

This information will be collected via the Kneu Platform registration process to confirm identity and ensure only legitimate users access and use the dashboard functionality accordingly.

Non-Personal Data we collect:

Application activity information: Dashboard interaction information.

This allows Kneu Health to review activity and perform fixes on behalf of clinicians/the data controller using necessary performance information. Anonymised information will be used internally by Kneu Health for service and technology evaluation, improvements and longitudinal research purposes.

Any additional information collection and/or handling is managed by the data controller.

Kneu Health Research App Participant

We collect the following types of personal data from you:

  • Contact Information: Name, identification number, email address, and phone number.
  • Demographic Information: Date of birth, dominant hand.
  • Condition Information: Diagnosis

This information will be collected via the Kneu Health app registration process to confirm identity. This will be used for the clinician’s reference and ensure only legitimate users' access and use the application accordingly.

Non-Personal Data we collect:

Application activity information: Results from our smartphone assessments, medication information, and symptom information.

This allows us to review activity and perform calculations to provide clinicians/the data controller with necessary performance information. Anonymised information will be used internally by Kneu Health for service and technology evaluation and improvements.

Kneu Health Research App Researcher

Researchers/the data controller will have access to Kneu Platform – providing a dashboard to review results collected via patients using the Kneu Health app.

Personal Data we collect:

We collect the following types of personal data from the data controller:

  • Registration Information: Name, email address and place of work.

This information will be collected via the Kneu Platform registration process to confirm identity and ensure only legitimate users access and use the dashboard functionality accordingly.

Non-Personal Data we collect:

Application activity information: Dashboard interaction information.

This allows Kneu Health to review activity and perform fixes on behalf of clinicians/the data controller using necessary performance information. Anonymised information will be used internally by Kneu Health for service and technology evaluation, improvements and longitudinal research purposes.

Focus Group Members / Other Test Users

We conduct focus groups with users (patients and clinicians) to develop and evaluate our products. The exact nature of activities relevant to each focus group activity will be detailed per project and provided to participants via specific accompanying materials.

The basis for personal information collection is consent. Consent forms will be provided to each individual prior to commencement of the project. Consent can be withdrawn at any time.

Where applicable, information such as, but not limited to, video/audio recordings, transcripts, test performance information will be recorded and used internally by Kneu Health for service and technology evaluation and improvements.

Children’s Data

We do not know knowingly collect personal information about children under 13 years old. Our website, platform and app are not designed for use by children.

General Communications

Direct Marketing

We may use your personal data provided to form a view on whether additional services we provide are of interest to you. We will send you limited marketing communications from us unless you have specifically opted out from such marketing when you register for our platform and/or app.

You are able to ask us to stop sending you marketing messages by contacting us at any time. Where you opt out of receiving these marketing messages, this opt-out will not apply to personal data provided to us as a result of your use of service or our platform or app.

We will not sell or otherwise share your personal data with any third parties for marketing purposes (except in respect of Clinical Trials, and only to the extent set out below).

Clinical Trials

We want to give you choices regarding personal data uses, particularly relating to potential clinical trials. Where we have identified potential trials that may be relevant to you, we will contact you to provide initial information. We will not share any personal data unless you provide us with explicit consent to do so (at which point we will share your details with the entity running the trial to contact you directly).

Additional Handling Requirements

Data Accuracy

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your information changes during your relationship with us.

Third Party Processing

We use data processors who are third parties who provide elements of services for us, including cloud-based storage providers. We have contracts in place with our data processors. This means that they cannot do anything with your personal information such as share it with other organisations unless we have instructed them to do it. They will hold your personal data/information securely and only retain it for the period we instruct. When it is necessary for us to transfer your personal information outside of the UK this will only be done in accordance with the UK GDPR and the Data Protection Act 2018 (DPA 2018).

International Transfers

We use some data processors that are based outside of the UK. Where this is the case, we ensure that there is an adequacy decision in place which confirms that there is an adequate level of protection for personal data.

We may also use data processors based in locations which are not yet subject to an adequacy decision, however where this is the case, we ensure that appropriate safeguards are in place so that enforceable data subject rights and effective legal remedies for data subjects are available. This will usually be achieved through the careful selection of data processors which offer high levels of security for personal data and the use of Standard Contractual Clauses (SCCs) which place binding legal obligations on the recipient to ensure the protection of personal data.

If you have any questions about Data Processors we use or International Transfers, please contact us and we will be happy to provide you with additional information (including a list of any processors used and where data is shared).

Data Sharing

We may also share your personal data where we are required by law or under any legal order, or with any third parties that we might choose to sell, transfer or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy policy.

Data Security

We have put in place reasonable and appropriate security measures to prevent your personal data from being accidently lost, used or accessed in an unauthorised way, altered or disclosed. We will limit access to your personal data to those individuals who have a business need to know. Any individual who is permitted access to your personal data will also be subject to a duty of confidentiality.

Your Data Protection Rights

Under data protection law, you have rights we need to make you aware of. The rights available to you depend on our reason for processing your information.

Your right of access

You have the right to ask us for copies of your personal information. This right always applies. There are some exemptions, which means you may not always receive all the information we process. You can read more about this right here.

Your right to rectification

You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete. This right always applies. You can read more about this right here.

Your right to erasure

You have the right to ask us to erase your personal information in certain circumstances. You can read more about this right here.

Your right to restriction of processing

You have the right to ask us to restrict the processing of your information in certain circumstances. You can read more about this right here.

Your right to object to processing

You have the right to object to processing if we are able to process your information because the process forms part of our public tasks or is in our legitimate interests. You can read more about this right here.

Your right to data portability

This only applies to information you have given us. You have the right to ask that we transfer the information you gave us from one organisation to another or give it to you. The right only applies if we are processing information based on your consent or under, or in talks about entering a contract and the processing is automated. You can read more about this right here.

Your rights in relation to automated decision making or profiling

This applies where personal information provided is used to inform automated decision or profiling activities. You have the right not to be subject to a decision when: it is based on automated processing; and it produces an adverse legal effect or significantly affects you. You can read more about this right here.

SMS Communications

If you enable SMS notifications in the Kneu Health app, we will use your phone number to send you service-related text messages, including verification codes and onboarding notifications.

Message frequency varies. Message and data rates may apply. Reply STOP to opt out at any time. Reply HELP for help.

Your mobile phone number will not be shared with third parties for marketing purposes. SMS consent is collected separately from your general account consent and is optional — the toggle is off by default. You can withdraw SMS consent at any time by replying STOP or by disabling the toggle in your app settings.

For further information, please see our Terms of Use.

How to Make a Complaint

We strive to meet the highest standards when collecting and using personal information. For this reason, we take any complaints we may receive about this very seriously. We encourage people to inform us if they think that any collection or use of information by us is unfair, misleading or inappropriate. We would also welcome any suggestions for improving our procedures. You can do this by contacting us here:

Contact us

If you remain dissatisfied, you have the right to make a complaint to the Information Commissioner’s Office (ICO). Please see the ICO’s website for more information:

www.ico.org.uk

Changes to this Policy

We may update this policy from time to time. We will notify you of material changes via the app or by email with at least 30 days’ notice before they take effect. Continued use of our services after that date constitutes acceptance of the updated policy.

Accessibility Statement

Our Accessibility statement can be found here.

Detailed Breakdown