Legal

Privacy Policy

Last updated: May 2026

🔒 GlucoTV is built with privacy first. We collect only what is necessary to show your glucose data on your TV — nothing more.

What We Collect

GlucoTV collects only what is necessary to deliver glucose readings to your Roku device:

  • Your Dexcom credentials (encrypted with AES-256) and Share session token, or your Nightscout URL
  • Your most recent glucose readings and trend data
  • A unique session identifier for your paired Roku device
  • Your display preferences such as units (mg/dL or mmol/L) and threshold settings — stored locally on your Roku device only

What We Do Not Collect

  • Your name or email address
  • Your Dexcom password in plaintext — it is encrypted with AES-256 before being written to our database. The encryption key is stored separately in Google Secret Manager and is never co-located with your data
  • Any personally identifiable information
  • Location data
  • Usage analytics or tracking data
  • Any data from the GlucoTV Screensaver channel beyond what is needed to display your glucose reading

How Your Data Is Used

Your CGM credentials are used solely to retrieve glucose readings and deliver them to your paired Roku device. Data is stored securely in Google Cloud Firestore and is only accessible via your unique session token.

We do not sell, share, or distribute your data to any third parties under any circumstances.

Dexcom Share

GlucoTV connects to Dexcom using Dexcom's Share feature — the same feature that allows caregivers to follow a person's glucose in real time. When you pair, you enter your Dexcom username and password directly in your browser over HTTPS.

Your credentials are encrypted using AES-256 (Fernet symmetric encryption) before being written to our database. The encryption key is stored separately in Google Secret Manager and is never co-located with your data. This means that even if our database were compromised, your credentials would be unreadable without the encryption key.

Decryption happens in-memory only when your Dexcom Share session token needs refreshing — typically every few hours. The plaintext credentials are used to obtain a new token from Dexcom and are immediately discarded. They are never logged or written anywhere in plaintext.

Dexcom Share must be enabled in your Dexcom app for this to work. GlucoTV does not interact with Dexcom in any other way.

Nightscout

When connecting Nightscout, you provide your Nightscout site URL directly. GlucoTV uses this URL to poll your Nightscout instance for glucose readings and threshold settings. Your Nightscout URL is stored securely and used only to fetch your data. If you use a Nightscout API secret, it is stored encrypted and never exposed.

GlucoTV Screensaver Channel

The GlucoTV Screensaver is a separate Roku channel that reads your session identifier from your Roku device's local registry — the same session established when you paired the main GlucoTV channel. No additional data is collected by the screensaver channel beyond what is already collected by the main channel.

Data Storage

Session data is stored in Google Cloud Firestore hosted in the United States. Google Cloud infrastructure is SOC 2 compliant and encrypted at rest.

Your glucose reading history is not stored long-term — only the most recent reading and 3-hour history needed for display are retained per session.

Display preferences such as units and threshold overrides are stored locally on your Roku device only and are never transmitted to our servers.

Data Retention

Session data is automatically deleted after 90 days of inactivity. You can also clear your session at any time by selecting Re-Pair Device in the GlucoTV settings menu on your Roku, which generates a new session and invalidates the old one immediately.

Security

All data is transmitted over HTTPS. Access tokens are stored encrypted. Session tokens are unique per device pairing and cannot be guessed or brute-forced due to their UUID format. API access is rate limited to prevent abuse.

Medical Disclaimer

GlucoTV is for informational purposes only and is not intended for use in medical treatment decisions. Always confirm glucose readings with an approved medical device and consult your healthcare provider before making any treatment decisions.

Changes to This Policy

We may update this privacy policy from time to time. Any changes will be reflected on this page with an updated date. Continued use of GlucoTV after changes are posted constitutes acceptance of the updated policy.

Contact

For any privacy concerns, data deletion requests, or questions about this policy please contact us at support@glucotv.com