Privacy Policy
This Privacy Policy explains how PeptiGuide AI ("PeptiGuide," "we," "us," or "our") collects, uses, discloses, and safeguards information when you use the PeptiGuide AI mobile application and the website at peptiguide.app (together, the "Service"). By using the Service, you agree to the practices described here.
Health context. PeptiGuide AI is an educational and record-keeping tool. It does not sell peptides, does not provide medical advice, and does not prescribe treatments. Any health-related information you choose to log is stored to power features you request (such as the injection tracker) and is treated as sensitive.
- Who we are
- Information we collect
- How we use information
- Legal bases (GDPR/UK GDPR)
- How we share information
- Data retention
- Data security
- Your rights & choices
- International transfers
- Children's privacy
- Third-party services
- Changes to this policy
- Contact us
1. Who we are
PeptiGuide AI is the data controller for personal information processed through the Service. For any privacy questions or to exercise your rights, contact us at [email protected].
2. Information we collect
a) Information you provide
- Account data: email address and password (stored in hashed form by our authentication provider).
- Onboarding data: age range and your acceptance of our Terms and this Policy.
- Content you create: injection logs (peptide name, optional dose, injection site, date/time, notes), vial inventory entries, calculator inputs, and searches or questions you submit to the AI assistant.
- Support communications: messages you send us.
b) Information collected automatically
- Usage & device data: app version, device type, operating system, language, and basic diagnostic/crash data.
- Approximate technical logs: IP address and timestamps used for security and abuse prevention.
We do not use the Service to sell your personal information, and we do not run third-party advertising trackers inside the app.
3. How we use information
- To provide and maintain the Service (authentication, encyclopedia, AI assistant, calculator, tracker, vial inventory).
- To process AI questions by sending your query text to our AI processing provider to generate an educational response.
- To manage subscriptions and entitlements (via our payments/subscription provider).
- To secure the Service, prevent fraud and abuse, and enforce rate limits.
- To improve features, fix bugs, and understand aggregate usage.
- To comply with legal obligations.
4. Legal bases for processing (GDPR / UK GDPR)
- Performance of a contract: to deliver the features you request.
- Consent: for processing any health-related data you voluntarily log; you may withdraw consent at any time by deleting the data or your account.
- Legitimate interests: to secure and improve the Service, where not overridden by your rights.
- Legal obligation: to comply with applicable law.
5. How we share information
We share information only with service providers who process it on our behalf under contract, including:
- Cloud & database hosting (backend infrastructure and authenticated data storage).
- AI processing provider to generate educational answers from your questions.
- Subscription/payments provider to manage in-app purchases (the app stores and the subscription platform handle payment details; we do not receive your full card data).
- Analytics/crash reporting limited to diagnostic and aggregate usage data.
We may also disclose information if required by law, to protect our rights or the safety of users, or in connection with a merger, acquisition, or asset sale (you will be notified of any change in ownership affecting your data). We do not sell or rent your personal information.
6. Data retention
We retain your account and content for as long as your account is active. If you delete an item, it is removed from active systems; backups are cycled out on a rolling basis. When you delete your account, we delete or anonymize your personal data within a reasonable period, except where retention is required by law.
7. Data security
We use industry-standard safeguards, including encryption in transit (TLS), authenticated access, and database row-level security so that users can only access their own records. No method of transmission or storage is 100% secure, but we work to protect your information and to notify you and regulators of qualifying breaches as required by law.
8. Your rights & choices
Depending on where you live, you may have the right to access, correct, delete, port, or restrict processing of your personal data, and to object to certain processing. EEA/UK users have rights under the GDPR/UK GDPR; California residents have rights under the CCPA/CPRA (including the right not to be discriminated against for exercising them); Brazilian users have rights under the LGPD.
- In-app: you can edit or delete your logs and inventory, and request account deletion.
- By email: contact [email protected] to exercise any right. We will verify your request and respond within the timeframe required by applicable law.
- Complaints: you may lodge a complaint with your local data protection authority.
9. International data transfers
We may process and store information in countries other than your own. Where we transfer personal data internationally, we rely on appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.
10. Children's privacy
The Service is intended for adults and is not directed to children under 18 (or the age of majority in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.
11. Third-party services
The Service integrates third-party providers for hosting, authentication, AI processing, subscriptions, and diagnostics. Their processing of data is governed by their own privacy policies. The app is distributed through the Apple App Store and Google Play, whose terms and privacy practices also apply to your download and purchases.
12. Changes to this policy
We may update this Policy from time to time. Material changes will be reflected by updating the "Last updated" date and, where appropriate, by an in-app notice. Your continued use of the Service after changes take effect constitutes acceptance.
13. Contact us
Questions or requests: [email protected].