DoseDeck
DoseDeck
Deck BuilderDoseDeck+
HelpLoginSign Up

Privacy Policy

How DoseDeck collects, uses, and protects your personal information

Last Updated: December 2025 | Effective Date: December 2025

DoseDeck ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform at dosedeck.app.

Information We Collect

Information You Provide Directly

  • Account Information:Email address, name, and password when you create an account
  • Health Profile:Medications, supplements, allergies, health conditions, height, weight, and additional health notes you voluntarily enter
  • Deck Data:Substances, dosages, and notes you add to your decks
  • Chat History:Conversations with AI Jay (DoseDeck+ subscribers)
  • Payment Information:Processed securely by Stripe; we do not store full card numbers

Information Collected Automatically

  • Device Information:Browser type, operating system, device identifiers
  • Usage Data:Pages visited, features used, time spent on platform
  • Log Data:IP address, access times, referring URLs
  • Cookies:Session cookies for authentication and preferences

How We Use Your Information

  • Provide Services: To deliver drug interaction analysis, risk assessments, and personalized warnings based on your health profile.
  • AI Processing: Your deck data and health profile may be sent to AI services (OpenAI) for enhanced analysis. This is done in real-time and subject to OpenAI's privacy policy.
  • Account Management: To create and manage your account, process subscriptions, and provide customer support.
  • Improve Platform: To analyze usage patterns, fix bugs, and enhance features.
  • Communications: To send important updates, security alerts, and (with consent) promotional materials.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.

Information Sharing

We do not sell your personal health information. We may share information with:

  • Service Providers: Third parties that help us operate our platform (hosting, payment processing, analytics).
  • AI Services: OpenAI processes queries for AI Jay. Data sent is subject to their API data usage policy (not used for training).
  • Legal Requirements: When required by law, subpoena, or to protect our rights and safety.
  • Business Transfers: In connection with mergers, acquisitions, or asset sales, with notice to users.

Data Security

We implement industry-standard security measures to protect your data:

  • • HTTPS encryption for all data in transit
  • • Encrypted database storage for sensitive information
  • • Secure authentication with Supabase Auth
  • • Regular security assessments and updates
  • • Limited access to personal data on a need-to-know basis

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

Your Rights

GDPR Rights (EU/EEA)

  • • Right to access your data
  • • Right to rectification
  • • Right to erasure ("right to be forgotten")
  • • Right to restrict processing
  • • Right to data portability
  • • Right to object to processing
  • • Right to withdraw consent

CCPA Rights (California)

  • • Right to know what data we collect
  • • Right to delete personal information
  • • Right to opt-out of sale (we don't sell data)
  • • Right to non-discrimination
  • • Right to data portability

To exercise your rights: Contact us at customerservice@dosedeck.app or manage your data in Profile Settings. We will respond within 30 days.

Cookies & Tracking Technologies

Essential Cookies: Required for authentication, security, and basic functionality. Cannot be disabled.

Analytics Cookies: Help us understand how users interact with DoseDeck. Data is aggregated and anonymized.

Local Storage: Stores your deck data locally for convenience. Synced to your account if logged in.

Most browsers allow you to control cookies in settings. Disabling certain cookies may affect functionality.

Data Retention

  • Account Data: Retained while your account is active. Deleted upon account deletion.
  • Deck Data: Retained until you delete individual decks or your account.
  • Chat History: Retained until you delete chats or your account.
  • Analytics Data: Aggregated data may be retained indefinitely; personal identifiers removed after 26 months.
  • Legal Holds: Some data may be retained longer if required for legal compliance.

Children's Privacy (COPPA)

DoseDeck is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at customerservice@dosedeck.app and we will delete such information.

International Data Transfers

Your data may be transferred to and processed in the United States and other countries where our service providers operate. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses where applicable.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last Updated" date. For significant changes, we may also send email notifications. Your continued use of DoseDeck after changes constitutes acceptance of the updated policy.

Questions About Privacy?

If you have questions about this Privacy Policy or how we handle your data, please contact us.

Email Privacy TeamView Legal Terms