Privacy Policy

1. Scope

This Privacy Policy explains how HE Media, LLC operates the PeptideTrackr iOS application and related support communications. This policy is written to align with consumer expectations for modern health and fitness apps in the App Store and is generally consistent with approaches used by consumer tracking apps such as Medisafe, MyTherapy, MyFitnessPal, and Lose It.

2. Information We Collect

We collect only the data reasonably needed to provide core app functionality:

• Account identifiers: email address and internal user ID.
• Health and protocol tracking entries you provide: supplement and medication logs, schedules, protocol notes, dosage history, reminders, and related wellness tracking content.
• Basic service metadata: timestamps and technical records required to operate, secure, and troubleshoot the service.

3. Information We Do Not Collect

• We do not collect precise location data.
• We do not collect browsing history across third-party websites or apps.
• We do not access your contacts, photos, or call logs unless you explicitly provide data through app features.
• We do not store full payment card information. Purchases are processed by Apple In-App Purchase.
• We do not include third-party advertising SDKs and we do not sell personal data.

4. How We Use Information

We use your information only to operate and improve PeptideTrackr for you, including:

• Creating and maintaining your account.
• Displaying and syncing your health tracking data.
• Providing reminders, protocol tracking features, and subscription access.
• Customer support and service communications.
• Fraud prevention, abuse prevention, and platform security.

We do not use your data for third-party ad targeting and do not sell your data.

5. How We Share Information

We share data only when necessary to operate the app or when legally required:

• Service providers: infrastructure and subscription tooling that process data on our behalf.
• Legal compliance: if required by law, regulation, subpoena, or valid legal process.
• Business transfers: in connection with merger, acquisition, financing, or asset transfer, subject to applicable privacy obligations.

We do not share personal data with data brokers.

6. Apple Purchases and Subscriptions

Premium subscriptions are purchased through Apple In-App Purchase. Apple handles billing credentials and payment processing. PeptideTrackr and HE Media, LLC receive subscription status details needed to manage access. RevenueCat is used to manage entitlement status and subscription state.

7. Data Storage and Security

PeptideTrackr uses a Railway-hosted API and PostgreSQL database for secure service operation. We use reasonable administrative, technical, and organizational safeguards intended to protect confidentiality, integrity, and availability of your data. No system can be guaranteed 100% secure, but we apply industry-standard controls appropriate for a consumer wellness app.

8. Data Retention

We retain account and app data for as long as your account is active and for limited additional periods when required for legitimate business operations, dispute resolution, security, fraud prevention, or legal compliance. When data is no longer required, we delete or de-identify it.

9. Your Privacy Rights

You may request to:

• Access the personal data associated with your account.
• Export your tracking data in a usable format.
• Delete your account and associated personal data, subject to legal exceptions.
• Correct inaccurate account information.

To exercise rights, contact support@peptidetrackr.app. We may verify account ownership before acting on requests.

10. International and GDPR-Friendly Rights

Although PeptideTrackr is primarily offered to users in the United States, we support core privacy rights generally aligned with GDPR principles, including access, correction, deletion, and portability where applicable.

11. Children's Privacy

PeptideTrackr is intended for users age 17 and older. We do not knowingly collect personal information from children under 13 in violation of the Children's Online Privacy Protection Act (COPPA). If you believe a child has provided personal information, contact us and we will take appropriate deletion steps.

12. HIPAA Notice

PeptideTrackr is a direct-to-consumer wellness application. HE Media, LLC is generally not a HIPAA covered entity and is not acting as a business associate for healthcare providers through this app. Data entered in PeptideTrackr is not intended to constitute provider medical records and should not be relied upon as a substitute for professional medical recordkeeping systems.

13. Cookies and Web Tracking

We do not use cookies or website tracking technologies for behavioral advertising on the landing pages associated with this app. We do not run third-party analytics or advertising SDKs in the mobile app.

14. Third-Party Service Providers

• Apple (App Store and In-App Purchase): app distribution, subscription billing, and payment processing.
• RevenueCat: subscription and entitlement status management.
• Railway: backend hosting environment for API and PostgreSQL infrastructure.

These providers process information as needed to deliver their services.

15. Changes to this Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the "Last updated" date and may provide additional notice in-app or on our website when appropriate. Continued use of PeptideTrackr after changes become effective constitutes acceptance of the updated policy.

16. Contact Us

If you have questions or requests regarding this policy, contact:

HE Media, LLC
Attn: Privacy Requests
Fort Collins, CO, USA
support@peptidetrackr.app