DoseUp Logo

Privacy Policy

Last updated: August 21, 2025

1. Introduction

At DoseUp, your privacy is our priority. This Privacy Policy explains how we collect, use, and safeguard your personal and health-related information while you track your GLP-1 treatment.

We will never sell, rent, or disclose your identifiable personal or medical data unless you explicitly request it (for example, to share with your healthcare provider).

2. Information We Collect

Health & Wellness Data

  • GLP-1 medication details (type, dosage, administration dates)
  • Side effect logs and patient-reported outcomes (PROs)
  • Weight, water intake, protein, and nutrition tracking
  • Optional progress photos (facial features blurred or cropped before any external use)
  • Meal photos for nutrition review
  • Pharmacy refill information (if integrations are enabled)

User-Provided Data

  • Preferences and in-app settings
  • Shot-preparation checklists
  • Manually entered progress and lifestyle data
  • Optional electronic consent forms (e.g., HIPAA-aligned e-signatures)

System-Generated Metadata

  • Audit logs (time stamps, hashed IDs) for compliance and security monitoring

3. How We Collect Data

  • Manual input by you in the app
  • Photo uploads (optional)
  • Pharmacy/e-prescription integrations (only with your consent)
  • App usage telemetry (checklist actions, settings)

All transfers are encrypted in transit (TLS 1.2+) and logged in immutable audit records.

4. Why We Collect Data

We use your data to:

  • Support and monitor GLP-1 therapy
  • Provide reminders, checklists, and supportive tools
  • Help you identify health trends
  • Improve app performance and usability
  • Produce de-identified, aggregated datasets for research and healthcare analytics

5. Data We Do Not Collect

We do not gather:

  • Exact GPS location
  • Contacts or phone usage data
  • Government IDs (e.g., SSN, passport number)
  • Protected class information unrelated to treatment (e.g., religion, politics)

6. De-Identification & Secondary Use

Before leaving our secure environment, data undergoes de-identification under HIPAA Safe Harbor or expert-determination standards:

  • Identifiers removed or tokenized
  • Dates generalized
  • ZIP codes truncated

De-identified, aggregated datasets may be licensed for research and public health purposes. No individual can be re-identified.

7. Data Storage & Security

On-Device Storage

Your data (weight, dosage, history) is saved locally on your iOS device using Apple's Core Data framework.

Security

Protected by Apple's built-in encryption and device safeguards (Face ID, Touch ID, passcode).

Cloud Backup (Future)

If syncing is introduced, all transfers will use TLS 1.2+ or higher.

No Third-Party Sale

We do not sell or share your data with advertisers.

8. Data Sharing

Identifiable Data

is only shared when:

  • You explicitly consent (e.g., with your clinician)
  • Required by law (e.g., court order)
  • Subprocessors operate under HIPAA-compliant agreements

De-Identified Data

may be shared with trusted institutions for legitimate healthcare or public-health research.

9. Your Rights & Choices

You can:

  • View, edit, or delete your data in-app
  • Export your data in a machine-readable format
  • Withdraw consent to optional integrations anytime
  • Opt out of participation in de-identified data licensing

Verified requests are processed within 30 days (or 45 in some jurisdictions, such as California).

10. Consent & Policy Updates

By using DoseUp, you consent to this policy. If significant changes occur, we'll notify you in-app and, if required by law, request renewed consent. Continued use implies acceptance of updated terms.

11. Legal Compliance

  • Not intended for users under 16
  • DoseUp is a support tool, not medical advice
  • We follow HIPAA-aligned practices and state-level pharmacy-board requirements when handling prescription-related data

12. Contact

Questions? Email us at doseupapp@gmail.com

Back to Home