Summary: We collect minimal data needed to provide the app. Your health-related tracking data is stored locally on your device by default. If you create an account, your data syncs securely to our servers. We never sell your data.
1. Information We Collect
1.1 Information You Provide
- Account Information: If you create an account, we collect your email address and authentication credentials (via Apple Sign-In or Google Sign-In).
- Tracking Data: Dose logs, protocols, vial inventory, and other tracking information you enter into the app.
- Preferences: App settings, notification preferences, and display options.
1.2 Information Collected Automatically
- Device Information: Device type, operating system version, and app version for troubleshooting and compatibility.
- Usage Analytics: Anonymous usage patterns to improve the app (which features are used, crash reports).
1.3 Information We Do NOT Collect
- We do not collect your real name, address, or phone number
- We do not collect payment information directly (handled by Apple)
- We do not collect health records from other sources
- We do not track your location
2. How We Use Your Information
- Provide the Service: Store and sync your tracking data across devices
- Improve the App: Understand usage patterns to add features and fix bugs
- Customer Support: Respond to your questions and requests
- Communications: Send important updates about the app (you can opt out)
3. Data Storage & Security
3.1 Local Storage
By default, your tracking data is stored locally on your device using secure storage mechanisms. This data never leaves your device unless you create an account.
3.2 Cloud Storage
If you create an account, your data is synced to our secure servers hosted on Supabase (which uses AWS infrastructure). Data is encrypted in transit (TLS) and at rest.
3.3 Security Measures
- End-to-end encryption for data transmission
- Secure authentication via Apple/Google Sign-In
- Row-level security on all database tables
- Regular security audits
4. Data Sharing
We do not sell your personal data.
We may share data with:
- Service Providers: Supabase (hosting), RevenueCat (subscriptions), Apple (payments) - only as needed to provide the service
- Legal Requirements: If required by law or to protect our rights
5. Your Rights
- Access: You can export all your data from the app at any time
- Deletion: You can delete your account and all associated data from Settings
- Portability: Export your data in CSV format
- Correction: Edit or update your information at any time
6. Data Retention
We retain your data for as long as your account is active. If you delete your account, we delete all associated data within 30 days, except where retention is required by law.
7. Children's Privacy
PepMaxx is not intended for users under 18 years of age. We do not knowingly collect information from children under 18.
8. International Users
Your data may be transferred to and processed in the United States. By using PepMaxx, you consent to this transfer.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or via email.
10. Contact Us
If you have questions about this Privacy Policy or your data: