Apple Health Users
Rapha Protocol Apple Health integration uses a native iOS HealthKit consent bridge. All health data stays on the user device. The web surface receives only authorization state and consent hashes — never raw health metrics, heart rate data, sleep analysis, or HRV values.
The native bridge: iPhone Secure Enclave generates ECDSA-P256 consent signatures with biometric presence. HealthKit reads heart rate, HRV (SDNN), and sleep analysis with read-only authorization. On-device training runs deterministic gradient updates using local biometric features. A SHA-256 data receipt hash is produced without raw values leaving the process. Browser-only HealthKit access fails closed.