Shotz Privacy Policy Draft

Effective date: Not yet!

Shotz ("Shotz," "we," "us," or "our") provides an app for medication and peptide tracking, reminders, subscriptions, and educational chat features. This Privacy Policy explains what information we collect, how we use it, how we share it, and the choices available to users.

We may collect information you provide directly, including:

• Account information, such as email address and authentication provider details.
• Profile information, such as goals, age, gender, preferred weight unit, medication name, dose, dose frequency, and reminder preferences.
• Tracking information, such as injection dates, medication, dose, injection site, weight entries, symptom entries, notes, and reminder settings.
• Chat information, such as messages you send to the Shotz chat feature and recent messages included to provide context.
• Subscription and purchase information, such as product identifiers, subscription status, transaction identifiers, expiration dates, trial status, and purchase/restore events.
• Support communications and information you provide when contacting us.

We may also collect technical and usage information, including:

• App events related to paywall presentation, purchase attempts, restore attempts, chat usage counts, and error codes.
• Device, app, and network information needed to operate, secure, debug, and improve the service.

We use information to:

• Provide account access, authentication, and user-specific app data.
• Store and sync tracking records across devices.
• Provide reminders and app functionality.
• Process subscriptions, purchases, restores, discounts, and entitlement checks.
• Provide educational chat responses and enforce chat safety and usage limits.
• Maintain security, prevent abuse, troubleshoot errors, and improve reliability.
• Comply with legal obligations and enforce our terms.

Shotz may store health-adjacent information such as medication names, injection history, symptom entries, weight entries, goals, and reminder settings. Shotz is not a medical provider and is not intended to diagnose, treat, cure, or prevent any disease. You should consult qualified healthcare professionals for medical decisions.

We may use third-party service providers to operate Shotz, including:

• Supabase for authentication, database, Edge Functions, and backend infrastructure.
• Apple for Sign in with Apple, StoreKit subscriptions, App Store purchase validation, and server notifications.
• Google services for Google sign-in if enabled and for AI chat processing through Gemini or related Google AI services.
• Other hosting, analytics, security, customer support, or infrastructure providers we add in the future.

When you use the chat feature, your chat message and limited recent chat context may be sent to an AI provider to generate a response. Do not submit information you do not want processed by that provider.

We do not sell personal information. We may share information:

• With service providers that process data on our behalf.
• With Apple, Google, or subscription providers as needed to authenticate users, process purchases, verify subscriptions, or comply with platform requirements.
• If required by law, legal process, or governmental request.
• To protect the rights, safety, and security of Shotz, users, or others.
• In connection with a merger, acquisition, financing, reorganization, or sale of assets, subject to appropriate protections.

We retain personal information for as long as needed to provide Shotz, comply with legal obligations, resolve disputes, enforce agreements, maintain security, and support business operations. Some subscription provider event records may be retained in anonymized or de-identified form for audit, fraud prevention, and accounting purposes.

[Attorney/product to specify retention periods for account data, tracking data, chat usage logs, raw provider payloads, support records, and backups.]

You may request deletion of your account and associated personal information through [insert in-app flow/support email]. Some information may be retained where required or permitted by law, such as purchase records, fraud prevention records, security logs, tax/accounting records, or de-identified data.

Depending on your location, you may have rights to access, correct, delete, export, restrict, or object to processing of your personal information. To exercise rights, contact us at [insert privacy contact email].

Shotz may store data locally on your device so the app can load your account data and tracking history. Local data may remain on the device after sign-out unless you use a device data clearing or account deletion feature. Protect your device with a passcode and operating system security features.

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Shotz is not intended for children under [insert age, e.g. 13 or 16]. We do not knowingly collect personal information from children without required consent. If you believe a child has provided personal information, contact us.

Your information may be processed in the United States and other countries where we or our service providers operate. These countries may have data protection laws different from those in your location.

We may update this Privacy Policy from time to time. If we make material changes, we will provide notice as required by law. The updated policy will be effective when posted or as otherwise stated.

Privacy contact: simon@shotzapp.app

Company/legal name: Shotz App LLC

Mailing address: 1040 Spring Street Apt D, Madison WI 53715