← HormoneOS

Privacy Policy

Last updated: April 26, 2026

HormoneOS is built around one promise: your data belongs to you, and we collect as little of it as possible.

What we collect

  • Email address — to sign you in and send your weekly report.
  • Apple Health metrics — read-only. Cycle, sleep, HRV, resting heart rate, body temperature, active energy. Stored as daily aggregates on Supabase.
  • Daily check-in transcripts — the text of what you tell us. Audio is transcribed on your device by Apple's speech framework and is never uploaded.
  • Subscription status — to gate access to the app.

What we do not collect

  • Your audio recordings.
  • Anything Apple Health doesn't explicitly grant us read access to.
  • Tracking pixels, ad identifiers, or cross-app behavioural data.
  • Your data isn't sold, isn't licensed for AI training, and isn't shared with anyone outside our infrastructure providers.

How we use your data

Your weekly report is generated by sending the previous 28 days of metrics, check-ins, and cycle data to the AI models we use (see Sub-processors below). Under our agreement with that provider, this data is not retained for model training. We do not send personally identifying information (your name, email, etc.) alongside the data.

Where it lives

All persistent data is stored in our backend infrastructure in the United States. Payment information is handled by our payment processor; we never see your card details. Crash reporting and product analytics tools receive anonymized events tied to a stable random ID, not your email. The specific vendors are listed below.

Deleting your data

Settings → "Delete account" inside the iOS app erases your profile, every check-in, every report, and every HealthKit snapshot we've stored. The deletion is immediate and irreversible. Email hello@hormoneos.app if you'd rather we delete it manually.

Sub-processors

We use the following service providers to operate HormoneOS. Each one only receives the data described below, and we have data-processing agreements in place where applicable.

  • Anthropic (USA) — AI provider. Receives 28 days of your metrics, check-in data, and cycle data when generating your weekly report. Under our agreement, this data is not retained for model training. Privacy policy.
  • Supabase (USA) — Backend platform. Stores your profile, check-ins, HealthKit snapshots, cycles, and reports. Handles authentication and the email containing your sign-in code. Privacy policy.
  • Stripe (USA) — Payment processor. Receives your email and card details to handle subscription billing. We never see your card number. Privacy policy.
  • Sentry (USA) — Crash reporting. Receives anonymized error stack traces tied to a random session ID, not your email. Privacy policy.
  • PostHog (USA) — Product analytics. Receives anonymized usage events tied to a stable random ID, not your email. Privacy policy.
  • Vercel (USA) — Hosts hormoneos.app. Receives standard web request logs (IP address, browser user-agent, page accessed). No app data flows through this. Privacy policy.

If we add or replace a sub-processor, we'll update this list and email currently-active subscribers.

Contact

Questions, complaints, requests: hello@hormoneos.app. We answer everything within 48 hours.