Privacy Policy | PepTrace

1. Who we are

PepTrace is operated by PepStack ("PepTrace," "PepStack," "we," "us," or "our"). PepTrace provides a mobile app and related website for personal peptide, protocol, medication, supplement, injection, recovery, nutrition, hydration, sleep, workout, weight, progress, and wellness tracking.

This Privacy Policy applies to the PepTrace app, website, waitlist, customer support, subscriptions, notifications, sync, backups, and related services. It should be read together with our Terms of Service.

2. Privacy commitments

We do not sell your personal information.
We do not use health, fitness, or medical data for advertising.
We do not share HealthKit or health-related data with advertisers or data brokers.
We request access only to data needed for app features you choose to use.
We provide ways to request access, correction, export, and deletion.

3. Data we collect

The exact data we collect depends on the features you use, the permissions you grant, and whether you create an account or use sync/subscription features.

Category Examples Purpose

Account and contact data Name, email address, authentication identifiers, support messages. Account creation, login, support, security, and service notices.

Protocol and tracking data Substances, schedules, doses, units, inventory, reconstitution notes, dose logs, injection sites, side effects, reminders, check-ins. Core tracking, reminders, history, charts, adherence, and personal organization.

Health and fitness data Weight, sleep, activity, workout, hydration, nutrition, progress photos, body measurements, Apple Health/HealthKit data if enabled. Wellness tracking, trends, goals, and context for your personal records.

Device and app data Device type, operating system, app version, language, region, crash logs, performance diagnostics. Security, debugging, compatibility, reliability, and product improvement.

Purchase data Subscription status, entitlement state, transaction identifiers, renewal state from app stores or payment processors. Unlock paid features, prevent fraud, manage trials, and provide customer support.

Website and waitlist data Email address, message content, referral/source information, basic server logs. Waitlist management, communication, abuse prevention, and site operation.

4. HealthKit, Apple Health, and sensitive health data

If you choose to connect PepTrace to Apple Health or HealthKit, PepTrace requests access only to the health and fitness data types needed for the feature you are using. You can grant, deny, or revoke these permissions in iOS Settings and Apple Health settings.

We do not use HealthKit, health, fitness, medication, peptide, protocol, or medical-style data for advertising, marketing, data mining, credit decisions, insurance eligibility, or sale to data brokers. We do not write false or inaccurate data to HealthKit.

PepTrace is a tracking and wellness-support tool. It is not a medical device, healthcare provider, pharmacy, diagnosis tool, or substitute for professional medical advice.

5. How we use your data

We use personal information to:

provide, sync, back up, and personalize PepTrace features;
display schedules, dose history, inventory, charts, reminders, and trends;
send notifications and service messages you enable;
authenticate accounts and protect against fraud, abuse, and unauthorized access;
process subscriptions, trials, entitlements, and support requests;
debug crashes, improve performance, maintain security, and develop app improvements;
comply with legal obligations and enforce our Terms of Service.

6. When we share data

We share personal information only as needed to provide and operate PepTrace, comply with law, protect rights and safety, or with your direction. We do not sell personal information.

We may share data with these categories of service providers:

cloud hosting, database, authentication, and backup providers;
crash reporting, diagnostics, and app performance providers;
subscription, entitlement, app-store, and payment processors;
email, waitlist, customer support, and notification providers;
professional advisers, legal authorities, or safety responders where required by law or necessary to protect rights.

Service providers are permitted to process user data only for the services they provide to us and must protect it consistently with this Privacy Policy and applicable law. We do not permit third parties to use health or fitness data for advertising.

7. Analytics and diagnostics

PepTrace may collect limited analytics, crash logs, and performance diagnostics to understand reliability, fix bugs, and improve the app. Where possible, we minimize or aggregate diagnostics and avoid including sensitive health entries in diagnostic payloads.

If analytics or diagnostics require consent in your jurisdiction or under platform rules, PepTrace will request that consent and provide a way to withdraw it.

8. Legal bases for processing

Depending on where you live, our legal bases may include your consent, performance of a contract with you, our legitimate interests in operating and securing PepTrace, compliance with legal obligations, and protection of vital interests. For sensitive health data, we rely on your explicit consent where required.

9. Retention and deletion

We keep personal information for as long as needed to provide PepTrace, maintain your account, comply with law, resolve disputes, enforce agreements, prevent abuse, and maintain backups. Health and tracking data associated with your account is generally retained until you delete it, delete your account, or request deletion, subject to backup, security, legal, and accounting requirements.

You can request account or data deletion by contacting support@pepstackapp.com. We will process verified deletion requests as required by applicable law. Some records may be retained where necessary for security, fraud prevention, legal compliance, billing, dispute resolution, or legitimate backup restoration windows.

10. Your choices and rights

Depending on your location, you may have rights to access, correct, export, delete, restrict, or object to processing of your personal information, and to withdraw consent. You can also control device permissions such as notifications, HealthKit, camera, photos, and motion/fitness access through your operating-system settings.

To make a privacy request, contact support@pepstackapp.com. We may need to verify your identity before fulfilling a request.

11. Security

We use administrative, technical, and organizational safeguards designed to protect personal information. No app, network, or storage system can be guaranteed to be completely secure. You are responsible for keeping your device, account, and login credentials secure.

12. International transfers

PepTrace and its service providers may process information in countries other than where you live. Where required, we use appropriate safeguards for international transfers, such as contractual protections or other lawful transfer mechanisms.

13. Children

PepTrace is not intended for children under 18 and should not be used by anyone under the age of majority where they live. We do not knowingly collect personal information from children. If you believe a child has provided information to PepTrace, contact us so we can take appropriate action.

14. App Store privacy disclosures

Apple requires developers to provide App Store privacy details that accurately describe data collection, use, linkage, and tracking. The disclosures for PepTrace in App Store Connect must match this Privacy Policy and the app's actual behavior.

Based on the current PepTrace feature set, likely App Store privacy categories may include contact information, health and fitness, user content, identifiers, purchases, diagnostics, usage data, and other data depending on enabled features and third-party SDKs. If any data is processed only on device and is not transmitted off the device, Apple may treat it differently for disclosure purposes.

PepTrace does not use user data for tracking as Apple defines that term unless the app later adds cross-app or cross-website tracking with proper notice, consent, and App Tracking Transparency compliance.

15. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. If changes are material, we will provide notice through the app, website, email, or another reasonable method. The "Last updated" date shows when this policy was last revised.

16. Contact

Questions, deletion requests, privacy requests, and consent withdrawal requests can be sent to support@pepstackapp.com.

Your health data stays personal.