1. Our Privacy Commitment
Your privacy is fundamental to our mission. We are committed to creating a safe and supportive environment. Our core privacy promises are:
- We will never sell your personal health data.
- We will never use your personal health data for advertising purposes.
- We do not share your health information with third-party data brokers or for the purposes of behavioral advertising.
We may use and share anonymized and aggregated data—which cannot be used to identify you—for research, analytics, and legitimate business purposes.
2. Introduction
Welcome to Glippy (the “App”), operated by Glippy LLC (“we,” “us,” or “our”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.
This policy is designed to help you understand:
- What information we collect and why we collect it.
- How we use that information.
- The choices you have regarding your information.
By using the App, you agree to the collection and use of information in accordance with this policy. Please read this Privacy Policy carefully. If you do not agree with the terms of this privacy policy, please do not access the application.
3. Information We Collect
We collect several different types of information to provide and improve our service to you.
A. Information You Provide to Us Directly:
- Account Information: When you create an account via Email, Apple, or Google, we collect your email address and a username.
- Health & Wellness Information: When you create an account, we provide secure cloud data backups. This means any information you provide will be backed up securely. This can include sensitive personal data about your health, such as:
- Medication Details: GLP-1 medication name (e.g., Semaglutide, Tirzepatide), dosage, and injection schedule.
- Tracking Logs: Injection dates, injection sites, side effects, and custom notes.
- Biometric Data: Weight, height, Body Mass Index (BMI), and logs for water and protein intake.
- Goals: Your stated wellness goals (e.g., weight loss targets).
- Community Content: Any information you voluntarily post in the community sections of the App, including your display name, text posts, photos, and comments. This information will be public to other users. You should exercise caution when sharing and avoid posting personal identifiers.
B. Information We Collect Automatically:
- Usage Data & Device Information: We automatically collect technical information about how you interact with the App, such as your IP address, app version, device platform, and features you use. We may also collect data when the app crashes to help us debug and fix issues.
C. Information from Third-Party Services:
- Apple Health & Google Fit: With your explicit consent, we may access and import data from Apple HealthKit and Google Fit. This data is used to enhance your analytics and reduce manual data entry. We only access the specific data categories you authorize, and this information is treated as sensitive health data under this policy.
4. How We Use Your Information
We use the information we collect for the following purposes:
- To Provide and Maintain the App: To operate the core tracking, analytics, and community features, including sending you dose reminders and tracking your progress.
- To Personalize Your Experience: To automatically assign you to milestone cohorts (e.g., “Week 3,” “-10 lbs”) and display interesting, anonymized statistics to provide motivation.
- For Research and Analytics: To analyze trends and usage patterns to improve the App's functionality and user experience.
- To Communicate With You: To send you service-related notifications, security alerts, and support messages.
- To Send Marketing and Promotional Communications: With your consent, we may use your email address to send you app updates, newsletters, and other information we think you may find interesting. You can opt out of these communications at any time.
- To Enforce Our Terms and Ensure Safety: To moderate the community, prevent spam, and protect the security of our users.
5. How We Share Your Information
Your privacy is paramount. We do not sell your personal health data. We share your information only in the following limited circumstances:
- With Other Community Members: Information you voluntarily post in the community feed will be visible to other users.
- With Service Providers: We use third-party companies to perform services on our behalf. We never share information beyond what is required to serve you. These include:
- Hetzner: Used as our secure data storage provider. You can view their privacy policy here: https://www.hetzner.com/legal/privacy-policy/
- Google Analytics: Used to help us analyze and improve the user experience. You can view their privacy policy here: https://policies.google.com/privacy
- Cloudflare Turnstile: Used to protect our provider directory forms (reviews and provider requests) from spam and automated abuse. Turnstile runs invisibly and may collect limited technical data (such as your IP address and browser characteristics) to distinguish humans from bots. Cloudflare processes this data in accordance with the Cloudflare Turnstile Privacy Addendum.
- For Legal Reasons: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).
- No Third-Party Marketing: We do not disclose any individual health-related data to third parties for their own marketing or promotional purposes.
6. Data Storage, Security, and Retention
A. Data Security:
We treat user data privacy as a primary concern. While Glippy LLC is not a “Covered Entity” as defined by HIPAA, we implement industry-standard administrative, physical, and technical safeguards designed to protect the confidentiality and integrity of your sensitive health data.
We use Hetzner as our cloud computing provider with servers located in the U.S. User data is encrypted in transit and at rest as it flows through the Hetzner infrastructure using TLS and AES-256 encryption. We strictly review modifications to our application code and infrastructure and monitor our systems to detect any potential attempt of unauthorized access.
B. Platform-Specific Data Storage:
To provide a seamless cross-platform experience with cloud backup, your data is stored securely with our cloud provider (Hetzner). The method you use to sign in can affect how your account is managed:
- Sign in with Apple/Google: These services provide authentication. Your core health data is stored on our secure servers, not within your personal iCloud or Google Drive accounts, allowing you to access it from any device.
- Sign in with Email: Your email is used for authentication, and your data is stored on our secure servers in the same manner.
C. Data Retention:
We retain your data for the duration of any period in which you have expressed an interest in our services, for as long as you actively use our application, and for six years thereafter to respond to any future legal proceedings. Your data may be anonymously aggregated during and beyond this time to help us improve our services.
7. Your Rights and Choices
You have control over your personal information. Your rights include:
- Access and Correction: You can review and change your account and health information at any time through the App's settings.
- Data Portability: You have the right to request an export of your personal health and account data in a structured, machine-readable format (e.g., CSV or PDF). This right applies to the information you have directly provided and does not include community content such as your posts or comments.
- Account and Data Deletion: You can delete your tracked data, or your entire account, at any time directly from the Glippy mobile app — no link or web form is required. See Section 8 “How to Delete Your Data or Account” below for step-by-step instructions, including the email-based alternative if you can no longer access the app.
- Marketing Communications: You can opt out of receiving promotional emails from us by following the unsubscribe link provided in those emails. You can opt out of receiving push notifications through your device's settings.
- Third-Party Integrations: You can revoke access to Apple Health or Google Fit at any time through the settings in those respective applications.
8. How to Delete Your Data or Account
You can permanently delete your tracked data, or your entire account, at any time directly from inside the Glippy mobile app. No external link, web form, or support request is required for the standard flow. The app offers two separate options so you can choose how much you want to remove.
A. Delete your data (keep your account active)
This option clears your tracked health information so you can start fresh, while keeping your sign-in and community identity intact.
- Open the Glippy app and sign in if you are not already signed in.
- Go to Settings → My profile → Delete data.
- Review the on-screen explanation, tap Continue, and confirm by tapping Delete my data in the confirmation dialog.
Once you confirm, the following information is permanently removed from our servers and cannot be recovered:
- Injection / dose history (dates, sites, doses, notes).
- Side-effect logs.
- Biometric and body-metric logs (weight, BMI, water and protein intake, and other measurements).
- Prescription and medication entries.
- Other personal tracking data attached to your profile.
Your account itself, your username, your email, and any community posts or comments you have made are not removed by this option. If you want to remove everything, use option B below.
B. Delete your account (and all data)
This option permanently closes your Glippy account and removes everything associated with it. You will be signed out automatically once deletion completes.
- Open the Glippy app and sign in if you are not already signed in.
- Go to Settings → My profile.
- Scroll to the bottom of the screen and tap Delete account.
- Review the on-screen explanation, tap Continue, and confirm by tapping Delete account in the confirmation dialog.
Once you confirm, the following information is permanently deleted:
- Your account record and profile information (name, username, avatar, goals, preferences).
- Your email address and authentication credentials tied to Glippy (Email, Apple, or Google sign-in linkage).
- All health and tracking data described in option A.
- All reminders and notification schedules.
- Your community posts, comments, and reactions.
C. Alternative: request deletion by email
If you no longer have access to the app (for example, you have uninstalled it, lost access to your sign-in method, or are unable to open the app for any reason), you can request account deletion by emailing us at [email protected] from the email address associated with your account. To help us verify your identity, please include your account email and, if known, your username. We will confirm your request and complete the deletion within 30 days of verification.
D. What we may retain after deletion
After your account and data are deleted, we may retain a limited amount of information where required by law or for legitimate business purposes, such as: records needed to comply with legal, tax, or accounting obligations; logs used to detect and prevent fraud, abuse, or security incidents; and aggregated or anonymized statistics that can no longer be associated with you or any individual. Routine backup copies that contain your data are purged from our systems within 30 days of deletion.
E. Irreversibility
Deletion is permanent. We are not able to recover an account or data once either of the flows above has completed. If you only want to take a break, you can stop using the app instead — your data will remain untouched until you choose to delete it.
9. Children’s Privacy
Our services are not directed to individuals under the age of 18. Most GLP-1 medications are only FDA-approved for use in adults, and our community is designed for adults. By using the app, you confirm to us that you are at least 18 years of age. If we become aware that we have collected personal data from a child, we will take steps to remove that information from our servers.
10. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy within the App and updating the “Effective Date” at the top of this policy.
11. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at:
Glippy LLC522 W Riverside Ave, Suite N
Spokane, WA 99201
[email protected]
