Privacy Policy
Last updated: 19 May 2026
This policy explains what data PeptideTrack collects, where it goes, and the choices you have over it. We try to be specific rather than reassuring. Each section describes what the app actually does.
Who we are
PeptideTrack is an iPhone app for adults self-managing peptide protocols. The app is published by PeptideTrack ("we"). You can reach us at support@peptidetrackapp.com.
What stays on your device
The information you log inside PeptideTrack — your protocols, doses, inventory, body metrics, lab results, side effects, daily check-ins, photos, notes, and app settings — is stored locally on your iPhone using Capacitor Preferences (backed by iOS Keychain/UserDefaults). This data is not transmitted to our servers as a matter of course.
You can leave PeptideTrack signed out of any third-party service and the core tracking features continue to work. Several features described below send specific subsets of your data outside the device when you use them. Each section below is explicit about what leaves, where it goes, and why.
Sign in with Apple
PeptideTrack uses Sign in with Apple for two optional features: the Community feed and Chat. When you sign in, Apple authenticates you and we receive a Supabase-managed session keyed to your Apple ID. We store your Apple user identifier and, if you choose to share it, the email relay address Apple provides. We do not receive your real Apple ID email unless you opt to share it.
You can use most of PeptideTrack without signing in. Signing in is required only for Community and Chat.
Community
If you post, comment, or vote in the Community feed, the content you submit and your chosen display handle are stored in our Supabase database. You can edit your display handle in Settings. You can delete your own posts and comments at any time. Reports and blocks are stored privately and used only for moderation.
Community photos you upload are stored in our Supabase post-images bucket, scoped to your user ID. Deleting a post deletes its associated image files.
Chat
When you use the in-app Chat feature, the message text you send is forwarded to Anthropic, the operator of the Claude language model, along with a context block summarizing your active protocols, recent doses, latest lab values, body metrics, and check-ins. Anthropic does not train its models on this data. Anthropic's data-handling practices are documented at anthropic.com/legal/privacy.
You can disable personal-context sharing under Settings → Chat → Share my data with Chat. With sharing disabled, Chat answers general questions without your personal context. Disabling sharing does not stop you from sending message text; it only stops the personal-context block.
Your Chat message history is stored in our Supabase database so you can return to it across sessions. You can clear it at any time from the Chat kebab menu or under Settings → Chat → Clear conversation. Deleting your account removes your Chat history entirely.
Chat is rate-limited to a daily message cap per user to bound cost; the rate-limit counter is stored server-side and is not used for any other purpose.
Apple Health
If you connect Apple Health during onboarding, PeptideTrack reads your most recent height and weight to seed your profile. The read happens on your device through HealthKit. We do not transmit your Apple Health data to our servers. You can revoke access at any time in iOS Settings → Privacy & Security → Health → PeptideTrack.
Lab results
Lab PDFs you upload are parsed on your device. The biomarker values, reference ranges, and lab metadata are stored locally on your iPhone. Lab data is included in the Chat context block only if you have Chat data-sharing enabled.
Subscriptions
Subscriptions and free-trial entitlements are managed by RevenueCat on behalf of Apple's App Store. We receive an anonymized RevenueCat user identifier, your subscription status, and the active product identifier. We do not see your Apple Account, your billing address, or your payment instrument. Apple's privacy policy governs the App Store transaction itself; RevenueCat's privacy policy is available at revenuecat.com/privacy.
Notifications
PeptideTrack schedules dose, lab, and inventory reminders as local iOS notifications. They are scheduled on your device and do not pass through our servers. There are no push notifications.
Analytics and tracking
PeptideTrack does not include third-party analytics. We do not use tracking SDKs, advertising identifiers, or cross-app tracking. We do not sell or rent personal information.
Data we collect at a glance
| Category | Where it lives | Linked to identity | Purpose |
|---|---|---|---|
| Protocols, doses, metrics, photos, notes | Your iPhone | n/a, local only | Tracking |
| Community posts, comments, votes | Supabase | Yes | Community functionality |
| Community avatars and post images | Supabase Storage | Yes | Community functionality |
| Chat messages and history | Supabase | Yes | Chat continuity across sessions |
| Chat messages and personal-context block | Anthropic API | Yes during the API call | Generating each Chat response |
| Subscription status | RevenueCat + Apple | Yes (RevenueCat ID) | Entitlement check |
| Apple Health height and weight | On-device only | n/a | Onboarding seed |
How long we keep your data
Local data persists on your device until you delete it from Settings, uninstall the app, or sign out and reinstall. Server-side data (Community posts, Chat history) persists until you delete it individually or delete your account. Our database backups rotate out within approximately 30 days.
International transfers
Our Supabase database and the Anthropic API are operated in the United States. If you use PeptideTrack from another country, your data is transferred to and processed in the United States. By using the app you consent to this transfer.
Your rights
- Export everything: Settings → Data → Download all data (CSV).
- Clear your Chat history: Settings → Chat → Clear conversation.
- Disable Chat data sharing: Settings → Chat → Share my data with Chat.
- Delete all local data: Settings → Make PeptideTrack better → Delete all data. This wipes the device-side state and reloads to onboarding.
- Delete your account: Settings → Make PeptideTrack better → Delete my account. This removes your Supabase profile and cascades through your Community posts and comments, Chat threads and messages, and Storage objects. Apple Guideline 5.1.1(v) compliant.
If you are in the EU, UK, California, or another jurisdiction with statutory data-subject rights, you can email support@peptidetrackapp.com and we will respond within the timeframe required by your local law.
Medical disclaimer
PeptideTrack is an information and tracking tool. It does not provide medical advice, diagnosis, or treatment. Chat answers questions from cited literature and your own logged data; it is not a medical professional, will not recommend specific doses, and will not diagnose symptoms. Always consult a qualified healthcare professional before starting, stopping, or changing any protocol.
Children
PeptideTrack is rated 17+ on the App Store and is not intended for children under 17. We do not knowingly collect data from children.
Changes to this policy
If we change this policy meaningfully, we will update the "Last updated" date above and surface the change in the app's About screen.
Contact
Privacy questions: support@peptidetrackapp.com