Privacy Policy

1. Information We Collect

1.1 Information You Provide Directly

Account Information: Email address, password (stored encrypted), profile information (name, date of birth, biological sex, height, weight).

Health and Wellness Data:

• Nutrition data: meal logs, food descriptions, photos, nutritional information, fasting sessions
• Exercise data: workout logs, sets, reps, weights, duration, cardio metrics
• Body measurements: weight, body composition, physical measurements
• Bloodwork & Biomarker Data: laboratory test results, parsed biomarker values, biological age calculations, biomarker trends and correlations
• Continuous Glucose Monitoring (CGM) Data: blood glucose readings, glucose trend data, meal response events, time-in-range calculations, daily glucose aggregates (from Dexcom integration)
• Wearable Biometric Data: heart rate, HRV, recovery scores, strain, sleep scores, sleep stages, resting heart rate, respiratory rate, skin temperature, step counts, collected via on-device SDKs (HealthKit/Health Connect) and cloud wearable APIs (Oura, WHOOP, Garmin, Fitbit)
• Peptide & Injection Data: peptide administration routes, injection sites, reconstitution calculations, side effects, cycle tracking, blend compositions
• Circadian & Sleep Data: wake/sleep times, chronotype, circadian drift calculations
• Supplement and medication logs: supplements, dosages, timing, protocol adherence
• Daily check-ins: sleep quality, stress, energy, mood, wellness assessments
• Thermal therapy sessions: hot/cold exposure, duration, temperatures
• Health goals: focus areas, protocols, wellness objectives

Voice & Photo Data: Voice transcriptions for meal and workout logging (speech recognition processed on-device via expo-speech-recognition; transcriptions sent to server for AI analysis), meal photos for AI nutritional analysis.

Derived/Inferred Data: biological age scores, recovery readiness, HRV baselines, sleep debt, circadian drift, meal response scores, protocol recommendations, biomarker-based health trends, and estimated recovery readiness.

AI Interaction Data: Messages to our AI assistant (Noot), voice transcriptions, AI-generated recommendations.

Payment Information: Subscription status and billing history. Payment card details are processed directly by Apple App Store / Google Play Store (via RevenueCat) and are not stored on our servers.

1.2 Information Collected Automatically

Device type, operating system, app version, unique device identifiers, usage patterns, crash logs, and performance data. We do not collect precise location data.

1.3 Information from Third-Party Sources

With your explicit permission: Apple HealthKit or Google Health Connect data including sleep, steps, heart rate, HRV, and workout data. Additionally, cloud wearable platforms (Oura, WHOOP, Garmin, Fitbit) and continuous glucose monitors (Dexcom) via OAuth authorization.

2. How We Use Your Information

• Providing and improving the Service (tracking, protocols, recommendations)
• AI-powered features (meal analysis, voice commands, personalized insights)
• Communication (notifications, support, important updates)
• Analytics and improvement (usage patterns, bug fixes, new features)
• Legal and safety (compliance, enforcement, protection)

We do not sell, rent, or use your health data for advertising, marketing, or any purpose other than providing and improving the Service.

3. How We Share Your Information

We do not sell your personal information.

We share information only with service providers necessary to operate the Service:

We may also share information when required by law, in business transfers (with notice), or with your consent.

4. Data Storage and Security

Your data is stored on secure servers in the United States (Supabase). We implement:

• Encryption in transit (TLS/SSL) and at rest
• Secure authentication with password hashing
• Strict access controls
• Row-level security (you can only access your own data)
• Encrypted OAuth token storage for wearable integrations
• Regular security audits

5. Data Retention

When you delete your account, your personal data is permanently deleted within 30 days.

6. Your Privacy Rights

Depending on your location, you may have the right to:

• Access: Request a copy of your data
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your data
• Portability: Request your data in a portable format. You can export your health data (meals, workouts, bloodwork, supplements, check-ins) via Settings → Account → Export Data, or by emailing privacy@mallet.so
• Withdraw Consent: Withdraw consent at any time

California Residents (CCPA): You have additional rights including the right to know, delete, opt-out, and non-discrimination.

EU/UK Residents (GDPR): You have additional rights including the right to object, restrict processing, and lodge complaints with your local data protection authority.

Washington Residents: You have rights under the My Health My Data Act, including consent to collection, access, and deletion of consumer health data.

To exercise your rights: Use in-app settings (Settings → Account) or email privacy@mallet.so.

7. Health Data (HealthKit / Health Connect)

If you connect Apple HealthKit or Google Health Connect, we may read sleep, steps, heart rate, HRV, and workout data. This data is queried on-device and synced to our servers for use within the Service.

You can revoke access anytime in your device settings. Revoking access stops new syncing but doesn't delete existing data in Mallet. To delete synced data, use Settings → Account → Delete Account or contact us.

8. Cloud Wearable and CGM Integrations

In addition to on-device health SDKs, Mallet integrates with cloud-based wearable platforms and continuous glucose monitors via OAuth authorization:

• Oura: sleep stages, readiness score, activity, heart rate, HRV, body temperature
• WHOOP: recovery, strain, sleep performance, heart rate, HRV, respiratory rate
• Garmin: activities, body battery, stress, sleep, heart rate, steps
• Fitbit: sleep, heart rate, activity, steps
• Dexcom: continuous glucose readings, glucose trends

How Cloud Sync Works

When you connect a wearable or CGM, you authorize access through the provider's own OAuth consent screen. We never see your provider password. Our server stores an encrypted OAuth token and periodically fetches your data on a scheduled basis. Data is stored in aggregated form (daily min/max/avg) rather than raw samples.

How to Disconnect

You can disconnect any cloud wearable in Mallet via Settings → Integrations. We also recommend revoking access in the provider's own app or website (e.g., Oura app → Connected Apps). Disconnecting stops new data syncing but does not automatically delete previously synced data.

9. On-Device vs. Cloud Processing

We believe in transparency about where your data is processed:

10. Children's Privacy

Mallet is not intended for anyone under 18. We do not knowingly collect data from children. If you believe a child has provided us with data, contact us at privacy@mallet.so.

11. International Data Transfers

Your data may be transferred to the United States. For EU/UK users, we ensure appropriate safeguards including Standard Contractual Clauses.

12. Third-Party Services

The Service may contain links to third-party websites. We are not responsible for their privacy practices. When you connect third-party services, their privacy policies also apply.

13. Changes to This Policy

We may update this policy from time to time. Material changes will be notified through the app or email. Continued use after changes constitutes acceptance.

14. Contact Us

For privacy questions or to exercise your rights:

Email: privacy@mallet.so

We aim to respond within 30 days.