METIS Health Navigator
Terms & Conditions · Effective Date: March 29, 2026
1. Acceptance of Terms
By accessing or using METIS Health Navigator ("the App"), you agree to be bound by these Terms & Conditions. If you do not agree, do not use the App.
2. Description of Service
METIS Health Navigator is a client-side Progressive Web Application (PWA) that helps users consolidate and analyze their personal health data from multiple sources, including electronic health records (via FHIR R4 APIs), wearable devices, and genomic data. The App provides AI-powered health correlations, drug interaction checking, and lab trend analysis.
3. Data Privacy & Storage
METIS is designed with a local-first architecture. All health data retrieved through the App is processed and stored locally in your web browser. No personal health information is transmitted to, stored on, or accessible by any external server operated by METIS. Your data stays on your device.
When you connect external data sources (such as Epic MyChart, VA Health, Oura Ring, or CMS Blue Button), you authenticate directly with those services using industry-standard OAuth 2.0 protocols. METIS never sees, stores, or has access to your login credentials for these services.
The App may use third-party CORS proxy services (such as corsproxy.io) to facilitate API connections where browser security restrictions would otherwise prevent direct communication. These proxy services relay data in transit but do not store it.
4. Not Medical Advice
METIS Health Navigator is a health information tool, not a medical device. The App does not provide medical advice, diagnoses, or treatment recommendations. AI-generated correlations, alerts, and insights are for informational purposes only and should not replace professional medical judgment. Always consult your healthcare provider before making any medical decisions.
The service is for educational and informational purposes, not clinical decisions.
5. Third-Party Services
The App integrates with third-party health data providers, each governed by their own terms of service and privacy policies. By connecting to these services through METIS, you acknowledge that your use of those services is subject to their respective terms. METIS is not responsible for the availability, accuracy, or security practices of third-party services.
6. Accuracy of Information
While METIS strives to present accurate health data and analysis, the App relies on data provided by external sources. METIS does not guarantee the accuracy, completeness, or timeliness of any information displayed. Drug interaction checks reference publicly available databases and may not reflect all possible interactions.
7. User Responsibilities
You are responsible for maintaining the security of the device on which you use METIS. Since all data is stored locally in your browser, clearing your browser data or using the App on a shared device may result in data loss or unauthorized access. You are responsible for safeguarding any access codes or credentials associated with your use of the App.
8. Intellectual Property
METIS™ Health Navigator is a product of Divergent Labs™ LLC. The following are trademarks or registered trademarks of Divergent Labs™ LLC:
- METIS™ — the product name and brand
- Divergent Labs™ — the company name and brand
- The METIS owl logo™ — the stylized owl mark used in the application and marketing materials
The METIS™ user interface design, AI correlation engine architecture, zero-knowledge health data platform, and all associated intellectual property are the exclusive property of Divergent Labs™ LLC. © 2026 Divergent Labs™ LLC. All rights reserved.
Third-party libraries, APIs, and data sources used by the App are subject to their respective licenses. Unauthorized reproduction, distribution, or modification of the App or its components is prohibited.
9. Limitation of Liability
METIS™ Health Navigator is provided "as is" without warranties of any kind, express or implied. To the fullest extent permitted by law, Divergent Labs LLC and its officers, employees, and agents shall not be liable for any damages arising from your use of the App, including but not limited to direct, indirect, incidental, or consequential damages, loss of data, or medical decisions made based on information presented by the App.
10. Modifications to Terms
These Terms & Conditions may be updated from time to time. When changes are made, we will notify you directly via the email address associated with your account prior to the changes taking effect. Changes will also be posted on this page with an updated effective date. Continued use of the App after changes constitutes acceptance of the revised terms.
11. Veteran Pilot Program — Lifetime Access Rights
Veterans who participate in the METIS pilot program are granted permanent, free access to their METIS account for life, regardless of any future changes to METIS pricing, subscription models, or business structure. This right is irrevocable. No future pricing change, product update, or ownership transfer will diminish or revoke the free lifetime access of a pilot program Veteran.
In the event of a business transfer, merger, acquisition, or dissolution, any receiving entity must honor this permanent free access commitment as a non-negotiable condition of the transfer. See Privacy Policy Section 12 for full business transfer provisions.
12. Contact
For questions about these Terms & Conditions or the METIS Health Navigator, please contact: support@divergentlabs-evolve.com
Privacy Policy
Effective: March 29, 2026 · Last updated: July 6, 2026
1. Information We Collect
METIS collects the following information when you create an account: your name, email address, and branch of military service. During the pilot program, we also collect your VA Benefit Summary Letter for verification purposes only. All health data you upload or connect (medical records, wearable data, genetic data) is stored exclusively on your device and is never stored or retained on any METIS server.
2. How We Use Your Information
Account information (name, email) is used solely to: verify your eligibility for the disabled veteran pilot program, communicate with you about your METIS account and the pilot program, and provide customer support. We do not sell, rent, or share your personal information with third parties for marketing purposes.
3. Data Storage & Security
METIS operates on a zero-trust, no-backend architecture. All health data is encrypted using AES-256-GCM with PBKDF2-derived keys (250,000 iterations) and stored in your browser's IndexedDB on your device. Encryption keys are non-extractable and derived from your password. There is no METIS server that stores, processes, or has access to your health data. Your data is yours.
4. Third-Party Data Sources
When you connect external data sources (VA.gov, Oura Ring, 23andMe, MyChart, etc.), METIS uses OAuth 2.0 to securely access your data from those services. Data retrieved from these sources is processed on your device and stored locally in encrypted form. METIS does not store your OAuth tokens on any server — they are kept in your browser session only.
A note on connectivity relays. Some healthcare providers' systems cannot be reached directly from your browser for technical reasons (cross-origin restrictions). To complete those connections, the request passes through a secure, transient relay operated by Divergent Labs LLC. This relay is a pass-through only: it carries the request over an encrypted connection and returns the response to your device, and it never stores, logs, or retains your requests, responses, or access tokens — they exist only in memory for the moment of the request and are then discarded. Nothing from these connections is written to any METIS server or database. Your health data continues to live only on your device.
5. VA Data
METIS accesses VA health data through the VA Lighthouse API program with your explicit authorization. VA data is subject to the VA's own privacy policies in addition to this policy. METIS does not share your VA data with any third party. All VA data retrieved is processed and stored exclusively on your device.
6. Cookies & Analytics
METIS does not use tracking cookies, advertising cookies, or third-party analytics services. The only browser storage used is for your encrypted health data (IndexedDB) and application settings (localStorage), both stored on your device only.
7. Data Retention & Deletion
METIS gives you two distinct and independent deletion rights — one instant and fully in your hands, one governed by our 45-day commitment:
All health data (medical records, wearable data, genomic data, lab results) is stored exclusively on your device, encrypted with keys only you hold. It is never stored or retained on any METIS server. You can permanently delete it yourself at any time directly within the app, by clearing your browser data, or by uninstalling the PWA — no request needed, no waiting, no approval required. This is immediate and irreversible.
The only information Divergent Labs LLC holds is your name, email address, and branch of service, used solely for pilot verification and communication. The METIS pilot program runs for 2 months from the date of your enrollment. Upon your written request to support@divergentlabs-evolve.com, Divergent Labs LLC will permanently delete 100% of your pilot account data within 45 days of receiving your request. At the conclusion of the pilot program, all pilot account data is permanently deleted regardless. Divergent Labs LLC retains zero participant data after the pilot ends.
In short: your health data is yours to destroy instantly, at any time, without asking anyone. The 45-day window applies only to the minimal administrative record we hold for pilot verification — your name, email, and branch of service. That is the entirety of what Divergent Labs LLC stores.
8. Children's Privacy
METIS is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.
9. Changes to This Policy
We may update this Privacy Policy from time to time. When changes are made, we will notify you directly via the email address associated with your account prior to the changes taking effect. Changes will also be posted on this page with an updated effective date. Continued use of METIS after changes constitutes acceptance of the revised policy.
10. Contact Us
For privacy-related questions or to request deletion of your account information, contact: support@divergentlabs-evolve.com
11. Data Breach Notification
In the event of a data breach affecting your pilot account information (name, email address, branch of service), Divergent Labs LLC will notify you at your registered email address within 72 hours of becoming aware of the breach. The notification will describe:
- The nature and scope of the breach
- The specific information affected
- Steps Divergent Labs LLC has taken to contain and address it
- Actions you may take to protect yourself, including requesting immediate account deletion, updating credentials on any connected services, or contacting relevant consumer protection authorities
Important: Your health data cannot be breached from METIS servers because it is never stored there. All health data lives exclusively on your device, encrypted with AES-256-GCM keys that only you hold. The only information held by Divergent Labs LLC is your name, email, and branch of service.
12. Business Transfer or Dissolution
In the event of a merger, acquisition, transfer of ownership, or dissolution of Divergent Labs LLC, you will be notified via email no less than 30 days in advance. At that time, you will have the right to choose one or more of the following options:
- (i) Secure disposal or download — export or permanently delete your pilot account information and any locally stored health data before the transition occurs;
- (ii) Continuity under consistent policies — Divergent Labs LLC will only complete a business transfer to an entity that agrees in writing to privacy and data protection policies at least as protective as those stated in this document; or
- (iii) Account closure — request immediate deletion of all pilot account data prior to any ownership change, with confirmation provided to you within 45 days.
Any business transfer is additionally contingent upon the receiving entity honoring the permanent free access commitment made to all pilot program Veterans (see Terms & Conditions Section 11). This is a non-negotiable condition of any ownership transfer.
13. HIPAA Disclaimer
METIS Health Navigator is a personal health management tool designed to help individuals organize and understand their own health information. METIS is not a covered entity under the Health Insurance Portability and Accountability Act (HIPAA), as it does not provide healthcare services, process insurance claims, or operate as a healthcare clearinghouse.
However, METIS voluntarily implements security safeguards that meet or exceed HIPAA technical requirements, including:
- Encryption at rest: All health data is encrypted using AES-256-GCM with PBKDF2-derived keys (250,000 iterations)
- Access controls: Non-extractable CryptoKey objects; data is inaccessible without your password
- Zero-knowledge architecture: No server-side storage of protected health information (PHI)
- Audit logging: All data access events are logged locally for your review
- Minimum necessary standard: AI analysis operates on the minimum data required for each correlation
If you use METIS to connect to a HIPAA-covered entity (such as the VA or your healthcare provider via MyChart), your data from those sources remains subject to the privacy protections of the originating covered entity. METIS does not alter or diminish those protections.
14. VA Lighthouse API Compliance
METIS accesses VA health data exclusively through the VA Lighthouse API platform, operated by the U.S. Department of Veterans Affairs. Use of VA data through METIS is subject to the VA Lighthouse API Terms of Service in addition to this Privacy Policy.
Specifically, METIS commits to the following in compliance with VA API program requirements:
- No secondary use: VA health data retrieved through METIS is used solely for the purpose you authorized — personal health management. It is never sold, shared, or repurposed.
- No server-side retention: VA data is never stored or retained on any METIS server. All VA data is processed and stored exclusively on your device.
- User-initiated access only: METIS only retrieves VA data when you explicitly initiate a connection or sync. No background polling or automated data collection occurs without your action.
- Token handling: OAuth 2.0 tokens issued by VA are stored in your browser session only. They are never logged, exported, or stored persistently. Tokens are cleared when you log out or close your browser.
- Revocation support: You may revoke METIS's access to your VA data at any time through your VA.gov account settings. Upon revocation, no further VA data can be retrieved, and previously downloaded data remains on your device under your control.