Effective Date: March 27, 2026

Last Updated: April 29, 2026

1. Introduction

Glone is a personal tracker for people on GLP-1 medications. Almost all of your data stays on your iPhone and never leaves it. We do not sell your data. We do not show you ads. We built Glone to help, not to profit from your information.

Glone is not a medical app and does not provide medical advice, diagnosis, or treatment. It is a personal wellness tracker. Always consult your healthcare provider before making any medical decisions.

Glone (“we,” “us,” or “our”) is a health and wellness application designed to help users track GLP-1 therapy, including injections, weight, nutrition, water intake, and side effects.

Publisher: Glone App, Warsaw, Poland

Contact: support@glone.app

This Privacy Policy explains how we collect, use, store, and protect your information when you use the Glone mobile application (the “App”). By using the App, you agree to the practices described in this Privacy Policy.

You must be at least 18 years old to use Glone.

2. Data We Collect

Here is a simple overview of where your data lives. The vast majority stays on your iPhone.

Data	Where it is stored	Who can access it
Health data (weight, injections, meals, water, symptoms)	Your iPhone only (SwiftData, encrypted)	Only you
Personal info (name, email, Apple ID)	Your iPhone only (Keychain, hardware-encrypted)	Only you
App preferences and goals	Your iPhone + iCloud (if enabled)	Only you, across your devices
Usage analytics (which features you use)	Our server (Supabase)	Us, for product improvement only
Food photos (AI analysis)	In transit only, never stored	OpenAI (processes and discards)
Subscription status	Apple + RevenueCat	Apple, RevenueCat, us
Push notification tokens	Our server (Supabase)	Us, to deliver notifications
Meal schedule (times only)	Our server (Supabase)	Us, for Live Activity updates

2a. Account Data

When you sign in with Apple, we receive:

Apple User ID — a unique, anonymous identifier provided by Apple
Email address — which may be your real email or an Apple relay address, depending on your choice
Display name — your first and last name as provided by Apple

Your Apple User ID, display name, and email are stored securely in the device Keychain with hardware-level encryption. None of this data is sent to our servers.

2b. Health and Wellness Data

You may enter the following data within the App:

Injection records — medication name, dose, injection site, date, and time
Weight entries — body weight measurements
Water intake — daily water consumption
Food logs — meals, nutritional information, portion sizes
Side effects and symptoms — type, severity, duration
Personal goals — target weight, water goals, nutrition goals

All health and wellness data is stored locally on your device using SwiftData, an encrypted database provided by Apple. This data does not leave your device unless you specifically use the AI food analysis feature (see Section 9).

2c. Food Photos

When you use the AI food analysis feature, you may take or select a photo of your meal. This photo is:

Compressed on your device before transmission
Sent to our server, which forwards it to OpenAI's API for nutritional analysis
Not stored by Glone on any server
Not stored by OpenAI (OpenAI does not use API submissions for model training)

No personal information (name, email, health data) is sent along with the photo.

2d. Apple HealthKit Data

With your explicit permission, the App may:

Read the following data from HealthKit:

Body weight, height, body fat percentage, lean body mass
Active energy burned, basal energy, exercise time, step count
Resting heart rate, blood glucose, sleep analysis

Write the following data to HealthKit:

Body weight and Body Mass Index (BMI)
Dietary data: calories, protein, carbohydrates, fats, water
Symptoms: nausea, fatigue, and other tracked categories

HealthKit access requires your explicit authorization through the iOS permissions dialog. You can revoke access at any time in iOS Settings > Privacy & Security > Health > Glone.

3. How We Use Your Data

We use your App data to make the App work for you. We never use health data for advertising, never sell it, and never build profiles about you for sale.

We use your data solely to provide and improve the App's functionality:

Track your GLP-1 therapy — display injection schedules, history, and reminders
Monitor health metrics — show weight trends, nutrition summaries, and progress toward goals
AI food analysis — send food photos to OpenAI GPT-4o via our server to estimate nutritional content
Nutrient verification — query the USDA FoodData Central API to verify and supplement nutritional data
HealthKit synchronization — read health data and write weight, BMI, nutrition, and symptom data back to HealthKit
Personalize goals — adapt daily targets based on your profile and preferences
Send notifications — remind you about injections, water intake, and meals (only if you enable notifications)
Manage subscriptions — verify your subscription status through RevenueCat to provide access to premium features
Product analytics — understand usage patterns to improve the App (see Section 10 for full details)

We do not use your health data for advertising, marketing to third parties, or building user profiles for sale.

4. How We Share Your Data

We do not sell your data. Period. We only share limited, specific data with services that make the App work or measure website visits.

We share limited data with the following third parties for App functionality and website measurement:

OpenAI (United States) — compressed food photos only, for AI nutritional analysis via GPT-4o. Your phone sends the photo to our server, which then forwards it to OpenAI. The photo is never stored. No personal information accompanies the photo.

USDA FoodData Central (United States) — food item names only, for nutritional data verification. This is a public government database.

Apple (United States) — Apple ID authentication, HealthKit data exchange, and payment processing for sign-in, health data sync, and subscriptions.

RevenueCat (United States) — your Apple User ID and subscription transaction data (product purchased, purchase date, expiration, renewal status) are shared with RevenueCat, Inc. to manage subscription entitlements and enable cross-device subscription restoration. RevenueCat does not receive your health data, name, email, or any wellness information. RevenueCat's privacy policy: https://www.revenuecat.com/privacy/

Supabase (United States) — usage analytics events (feature usage, screen views, errors), device push notification tokens (APNs), and meal schedule data for server-driven Live Activity updates. Push notification tokens are device identifiers used solely to deliver notifications you have enabled. See Section 10 for details on what analytics include and what they do not include.

Google (United States) — website analytics events from glone.app through Google Analytics, if enabled, for aggregate website measurement. We do not send health data, App account data, or in-app tracking records to Google Analytics.

Meta Platforms (United States) — website PageView events from glone.app through Meta Pixel, for marketing measurement and attribution. We do not send health data, App account data, or in-app tracking records to Meta Pixel.

We may also disclose data if required by law, court order, or governmental regulation, or to protect our legal rights.

5. Data Storage and Security

Your health data is protected by Apple's hardware encryption on your iPhone. It never touches our servers. The small amount of data we do handle on our server (analytics and push tokens) is secured with signed requests and encrypted connections.

On-Device Storage

Keychain — Apple User ID, email, and display name are stored with hardware-level encryption (AES). This data is only accessible after your device is unlocked for the first time.
SwiftData — all health and wellness data (injections, weight, meals, water, symptoms) is stored in an encrypted local database. iOS Data Protection ensures this data is encrypted at rest when your device is locked.
UserDefaults — app preferences and settings (theme, goals, notification preferences)
App Group container — shared data for widgets and Live Activities (stays on the same device)

Server-Side Storage

Our server (Supabase) stores only:

Usage analytics events — what features are used, not what health data they contain
Error reports — crash and error details to help us fix bugs
Device push notification tokens — technical identifiers for delivering notifications
Meal schedule configurations — meal times (not meal contents) for Live Activity updates

No personally identifiable information (PII) such as names, emails, or Apple IDs is stored on our servers. No health data is stored on our servers.

Security Measures

Encrypted connections — all network communications use HTTPS (TLS 1.2+)
Signed requests — analytics requests are cryptographically signed (HMAC-SHA256) to prevent tampering
Server-side API keys — sensitive credentials for OpenAI and USDA are stored in server-side secrets, never in the app on your device
Server-side food analysis — your phone sends food photos to our server, which communicates with OpenAI. The app never talks to OpenAI directly, keeping API credentials secure.
iOS hardware encryption — Keychain uses your device's Secure Enclave; SwiftData uses iOS Data Protection

Account Deletion

When you delete your account (Settings > Delete Account), we perform a thorough cleanup:

Keychain entries (Apple ID, email, name) are erased
All UserDefaults keys are cleared
All SwiftData records (injections, weight entries, food logs, water intake, symptoms, activities, and favorites) are permanently deleted
App Group shared data (widgets, Live Activities) is cleared
iCloud synced settings are removed

This action is irreversible. If you simply delete the App from your device, iOS automatically removes all associated local data.

6. Data Retention

Your health data stays on your phone until you delete it. Analytics on our server are automatically deleted after 6 months.

On-device data is retained until you delete it within the App or delete the App itself.

Analytics events on our server are automatically deleted after 180 days (approximately 6 months).

Error logs on our server are automatically deleted after 365 days (1 year).

Onboarding analytics (anonymous, aggregate data with no user identifier) may be retained indefinitely as it cannot be linked to any individual.

Push notification tokens are removed when you log out or delete your account.

7. Your Rights

You are in control. Since almost all your data lives on your iPhone, you can already view, edit, and delete it directly in the App at any time.

For Users in the European Economic Area (GDPR)

Under the General Data Protection Regulation, you have the right to:

Access — request a copy of your personal data
Rectification — correct inaccurate personal data
Erasure — request deletion of your personal data (“right to be forgotten”)
Data portability — receive your data in a structured, machine-readable format
Restriction — request that we limit processing of your data
Object — object to processing of your personal data, including analytics based on legitimate interest
Withdraw consent — withdraw consent at any time where processing is based on consent

Since virtually all your data is stored on your device, you already have direct access to view, edit, and delete your data within the App.

Supervisory Authority: You have the right to lodge a complaint with the Polish Data Protection Authority (UODO), ul. Stawki 2, 00-193 Warsaw, Poland. Website: uodo.gov.pl

Legal Basis for Processing (Art. 6 GDPR)

Consent (Art. 6(1)(a)) — for HealthKit access and AI food analysis
Contract performance (Art. 6(1)(b)) — for providing the App's core functionality, including subscription management
Legitimate interest (Art. 6(1)(f)) — for usage analytics to improve the App and fix bugs. You have the right to object to this processing at any time by contacting us at support@glone.app

For Users in California (CCPA)

Under the California Consumer Privacy Act, you have the right to:

Know what personal information we collect and how we use it
Delete your personal information
Opt-out of sale — we do not sell personal information, so no opt-out is necessary
Non-discrimination — we will not discriminate against you for exercising your rights

For Users in Washington State (MHMDA)

Under the Washington My Health My Data Act, you have the right to:

Consent before collection of health data
Access your health data
Delete your health data
Withdraw consent for health data processing

To exercise any of these rights, contact us at support@glone.app.

8. Apple HealthKit

HealthKit data is treated with the highest level of protection. It stays on your device, is never used for ads, and is never sold or shared.

HealthKit data displayed in Glone is for personal wellness tracking only. It is not a medical measurement and should not be used as a substitute for medical devices or professional health assessments.

This section specifically addresses Apple's requirements for HealthKit data.

Data types we access:

Read: body weight, height, body fat percentage, lean body mass, active energy, basal energy, exercise time, step count, resting heart rate, blood glucose, sleep analysis
Write: body weight, body mass index, dietary calories, protein, carbohydrates, fats, water, symptom categories

Our commitments regarding HealthKit data:

HealthKit data is not used for advertising or marketing
HealthKit data is not sold to data brokers or any third parties
HealthKit data is not stored in iCloud or on any external server
HealthKit data is not shared with third parties except as required to provide core App functionality (writing data back to HealthKit)
HealthKit data is used solely to display health metrics within the App and to write calculated values back to HealthKit
Access to HealthKit requires your explicit opt-in and can be revoked at any time through iOS Settings

9. AI Food Analysis

When you snap a photo of your meal, we analyze it with AI to estimate calories and nutrients. The photo is processed and immediately discarded. We never see or store it.

AI-generated nutritional estimates are approximate and are provided for general informational purposes only. They should not be used for medical dietary requirements, allergy management, or any health condition that requires precise nutritional tracking. Always consult a healthcare professional or registered dietitian for medical nutrition needs.

Technology used: OpenAI GPT-4o (via OpenAI API), called from our server.

How it works: Your phone compresses the food photo (reduced resolution and quality), sends it to our server, and our server forwards it to OpenAI for analysis. The result comes back to your phone. The photo is never stored at any point in this chain.

What is sent to OpenAI:

A compressed photo of your food
A structured prompt requesting nutritional analysis

What is NOT sent to OpenAI:

Your name, email, or Apple ID
Your health data (weight, injections, symptoms)
Your location or device identifiers

Data handling by OpenAI: OpenAI's API data usage policy states that data submitted via the API is not used to train their models. Photos are processed in real-time and are not stored by OpenAI after processing.

Nutrient verification (USDA): After AI analysis, food item names may be sent to the USDA FoodData Central public API to verify and supplement nutritional values. Only food names are sent — no personal information.

Your control: AI food analysis is entirely optional. You can always enter food data manually. You can edit AI-generated nutritional estimates at any time.

10. Usage Analytics

We collect information about which features you use and when, so we can find bugs and build a better product. We never see your actual health data (your weight, meals, symptoms, or injections). Think of it like this: we can see that you tapped “Record Water,” but we cannot see how much water you drank.

What we collect

We use our own analytics system (hosted on Supabase) to understand how the App is used. Each analytics event includes:

Event name (for example: “app opened,” “recorded water,” “viewed settings”)
Screen context (which part of the App you were using)
App version and device session identifier
Timestamp

When you are signed in, events are associated with a user identifier derived from your Apple Sign In. This allows us to understand usage patterns across sessions (for example, to identify if a bug affects specific accounts).

Before you sign in, events use an anonymous device-based identifier.

What we do NOT collect

Analytics events never include:

Your weight, height, or body measurements
Your meal contents, calories, or nutritional data
Your injection details, medication, or dosage
Your symptoms or side effects
Your name, email, or any text you entered
Your food photos
Your HealthKit data

Why we collect analytics

Fix bugs — error reports help us identify and resolve crashes and issues
Improve the product — understanding which features are used helps us prioritize development
Identify needs — seeing where users spend time tells us what matters most

Analytics data is used solely for product improvement. It is never sold, never shared with advertisers, and never used to build marketing profiles.

Onboarding analytics

During onboarding (before you create an account), we collect fully anonymous data about your selections — such as your health goal, medication type, and common symptoms. This data contains no user identifier whatsoever and cannot be linked to any individual. It helps us understand who uses Glone so we can build features that matter.

Data retention

Analytics events are automatically deleted after 180 days. Error logs are deleted after 365 days. You can request early deletion of your analytics data by contacting support@glone.app.

11. iCloud Sync

If you use multiple Apple devices, your app settings and goals sync between them via iCloud. This is controlled by Apple and encrypted by Apple. No health data is synced this way.

Glone uses Apple's iCloud Key-Value Storage (NSUbiquitousKeyValueStore) to sync your app preferences across your Apple devices. This includes:

Profile settings (display name, goals, preferences)
Treatment settings (medication type, schedule, target dosage)
Nutrition goals (calorie, protein, carbohydrate, fat targets)
Activity goals and notification preferences

This sync does not include your health records (weight entries, injection logs, meals, symptoms, or water intake).

iCloud sync is managed by Apple, encrypted by Apple, and governed by Apple's privacy policy. You can disable iCloud sync for Glone at any time in iOS Settings > [Your Name] > iCloud.

12. International Data Transfers

Glone is based in Poland (EU). Some data is processed in the United States by the services that power specific features. No raw health data ever leaves your device.

Glone App is based in Warsaw, Poland (European Union). Some data may be transferred outside the EEA:

Food photos (AI analysis) — transferred to OpenAI in the United States. Legal basis: your explicit consent (Art. 49(1)(a) GDPR), as you initiate each analysis.
Food item names — transferred to USDA in the United States. These are not personal data; they are public food database queries.
Subscription data — Apple User ID and transaction data are transferred to RevenueCat in the United States. Legal basis: contract performance (Art. 6(1)(b) GDPR), as subscription management is necessary to provide paid App features.
Analytics and push tokens — transferred to Supabase in the United States. Analytics are processed under legitimate interest (Art. 6(1)(f) GDPR). Push tokens are technical device identifiers.

No raw health data, no account data (name, email), and no personally identifiable health information is transferred outside your device to non-EU countries.

13. Children's Privacy

Glone is intended for users aged 18 and older. We do not knowingly collect personal information from children under 18. Glone tracks GLP-1 medications, which are prescribed to adults.

If we learn that we have inadvertently collected data from a child under 18, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us at support@glone.app.

14. Cookies and Tracking

The iOS app does not use advertising SDKs or cross-app tracking. The website may use analytics pixels for visit measurement.

The App does not use cookies, web beacons, or pixel trackers. The App does not use any advertising SDKs or tracking frameworks. The App does not participate in cross-app tracking (App Tracking Transparency is not requested because we do not track).

Our website (glone.app) may use Google Analytics for aggregate website measurement and uses Meta Pixel to measure PageView events for marketing attribution. Google and Meta may process browser and device information under their own policies. We do not send health data, App account data, or in-app GLP-1 tracking records to these website analytics tools.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the App before the changes take effect. We encourage you to review this Privacy Policy periodically.

The “Last Updated” date at the top of this page indicates when this Privacy Policy was last revised.

16. Contact Us

Questions? Concerns? We are happy to explain anything in more detail. Just email us.

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us:

Glone App

Warsaw, Poland

Email: support@glone.app

For data protection complaints in the EU, you may also contact the Polish Data Protection Authority (UODO):

ul. Stawki 2, 00-193 Warsaw, Poland

Website: uodo.gov.pl