Privacy Policy

01 Information We Collect

We collect the following categories of information:

Account Information

• Email address (required)
• Display name (optional)
• Profile photo (optional)

Health and Tracking Data (User-Provided)

• Dose logs and protocol entries
• Weight logs and check-in data
• Age, height, weight, biological sex (optional)
• Sleep quality and stress level (optional)
• Goals and health focus areas

HealthKit Data (iOS Only — With Explicit Permission)

If you grant permission, the App may access data from Apple HealthKit, including:

• Heart rate
• Sleep data
• Heart rate variability (HRV)
• Steps
• Blood oxygen

Usage and Device Data

• App interactions and feature usage
• Device type, operating system, and app version
• Crash reports and diagnostics

02 How We Use Information

We use collected data to:

• Provide, operate, and maintain the App
• Personalize user experience
• Deliver reminders and notifications (if enabled)
• Improve performance and features through aggregated analysis
• Respond to user inquiries and support requests
• Comply with legal obligations

We do not:

• Sell personal data
• Use health data for advertising
• Build advertising profiles based on user data

03 How We Share Information

We only share information in the following circumstances:

Service Providers

We use third-party providers (e.g., Supabase for infrastructure, Apple for notifications) to operate the App. These providers:

• Process data on our behalf
• Are contractually obligated to safeguard data
• May not use your data for their own purposes

Aggregated and De-Identified Data

We may display or use anonymized, aggregated data (e.g., usage trends). This data cannot be used to identify any individual user.

Legal Compliance

We may disclose information if required by law, regulation, legal process, or governmental request.

Business Transfers

If Vial undergoes a merger, acquisition, or asset sale, user data may be transferred. Users will be notified of any material changes.

04 Data Storage and Security

• Data is stored on secure servers located in the United States
• We implement industry-standard safeguards, including:
  • Encryption in transit (TLS)
  • Encryption at rest
  • Access controls and row-level security
  • Secure authentication systems

No system can be guaranteed 100% secure.

05 HealthKit Compliance Statement

In accordance with Apple's policies:

Users can manage or revoke HealthKit permissions at any time via:

iOS Settings → Privacy & Security → Health → Vial

06 Data Retention

• Data is retained for as long as the account is active
• Upon account deletion, personal data is deleted or anonymized within 30 days, unless retention is legally required
• Aggregated, de-identified data may be retained indefinitely

07 Your Rights

Depending on jurisdiction, users may have the right to:

• Access their data
• Correct inaccurate data
• Request deletion
• Request data portability
• Object to or restrict processing

08 Children's Privacy

The App is not intended for individuals under 18. We do not knowingly collect data from minors. If such data is identified, it will be deleted promptly.

09 Third-Party Services and Links

The App may link to external services. We are not responsible for third-party privacy practices. Users should review those policies independently.

10 Push Notifications

With user consent, we may send:

• Dose reminders
• Progress updates
• Milestone alerts

Users may opt out at any time via:

• In-app settings
• Device notification settings

11 Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via:

• Updated effective date
• In-app notification (if applicable)

Continued use of the App constitutes acceptance of the updated policy.

12 Contact

For questions or requests: