Privacy Policy

Last updated: April 22, 2026

Vial is built with privacy as a default. Your peptide tracking data lives locally on your device in an encrypted database. It never touches our servers, because we don't run any. This policy explains the small amount of data that does flow through third parties, why, and your rights.

1. Who we are

Vial is an iOS app made by Syed Arman, an independent developer. Contact for privacy questions: privacy@vialtracker.com.

2. Data we store on your device (never sent to us)

Everything you track in Vial is stored locally on your iPhone using Apple's SwiftData framework, backed by a SQLite database in the app's private sandbox. This includes:

• Vial inventory (peptide names, quantities, vendors, lot numbers, costs, expiration dates, reconstitution details)
• Dose logs (peptide, dose, injection site, time, notes, side effects you entered)
• Protocols (names, cycle lengths, dose schedules)
• Profile information you enter (goals, height, weight, biological sex, age, activity level, dose units)

None of this information is transmitted to us. We have no servers, no database, no ability to read it. If you delete the app, the data is deleted with it (iOS removes the app's sandbox automatically). If you tap Delete Account in Profile, all records are erased immediately.

3. Third parties we use (minimal, specific purpose)

3.1 Apple

When you purchase a Vial Pro subscription, Apple processes the transaction. Apple receives the same information it does for any App Store purchase: your Apple ID, payment method, and purchase history. This data is governed by Apple's Privacy Policy, not ours. We never see your payment information.

3.2 RevenueCat

We use RevenueCat to validate App Store receipts and manage subscription state across app sessions. When you make a purchase or restore purchases, a receipt is sent to RevenueCat for validation. RevenueCat receives an anonymous user identifier and your receipt data — no health tracking data, no personal profile information. RevenueCat's privacy practices are covered in their Privacy Policy.

4. What we don't do

• No analytics. We don't use Google Analytics, Firebase, Mixpanel, Amplitude, or any third-party analytics SDK. We have no idea how you use the app, which features you tap, or how often you open it.
• No tracking. We don't use advertising SDKs, don't request App Tracking Transparency permission, and don't share any identifier with advertising networks.
• No data sales. We do not sell your data. We have no data to sell.
• No cloud backup of health data. Your peptide logs, protocols, and inventory are on-device only.
• No account required. Vial does not ask you to create an account or sign in.

5. Your rights

You have the following rights regarding your data:

• Access: Use Profile → Export Data to get a JSON file of everything you've logged.
• Deletion: Use Profile → Delete Account to erase all records. This is immediate and irreversible.
• Portability: The exported JSON is yours to keep, migrate, or share.

These rights apply regardless of your location. If you are in California (CCPA/CPRA) or the European Union (GDPR), the same rights are granted because we don't actually hold your data — we built the app to make them trivial to honor.

6. Children

Vial is not directed at children under 17. Peptide research is an adult activity and the app's age rating reflects that. We do not knowingly collect data from children.

7. Security

Your local data is protected by iOS's standard app sandbox isolation and file-system encryption (on devices with a passcode set). Subscription data exchanged with Apple and RevenueCat is transmitted over TLS. We do not access or retain this data ourselves.

8. International users

Because Vial stores data on your device, there is no cross-border data transfer for tracking data. Subscription receipts may be processed by Apple and RevenueCat servers located outside your country. Both providers maintain compliance with applicable international frameworks.

9. Changes to this policy

If we make material changes to this policy, we'll update the "Last updated" date at the top and, if the change is significant, surface a notice in the app or on the App Store listing. Continued use of the app after changes constitutes acceptance.

10. Contact

Questions about this policy, data requests, or anything privacy-related: privacy@vialtracker.com.

The information in Vial is for educational and harm-reduction purposes only. Peptides are not FDA-approved for most uses listed in the app. Always consult a licensed physician before starting any peptide protocol. Vial does not sell peptides, recommend vendors, or provide medical advice.