Legal
Privacy Policy
Effective date: 2026-05-07
Summary
DoseStack is local-first. Your protocols, dose logs, schedules, and notes are stored on your device. We do not operate a backend, do not run an account system, do not sync your records to our servers, and do not sell or share your data with advertisers or data brokers. We use Apple's StoreKit and RevenueCat to process subscriptions, and Apple's standard developer tools for crash diagnostics. Nothing else.
Who we are and your data controller
DoseStack is a hobbyist project built and operated by Jake Warburton, an individual developer based in the United Kingdom ("we", "us", "our"). For the purposes of the UK GDPR and EU GDPR, we act as the controller of the limited personal data described below. Contact: jakewarburton37@gmail.com.
Data stored on your device
The following stays on your iPhone (and the iOS Home Screen widget extension) only. We do not see it, do not have access to it, and have no copy of it on any server we operate.
- Protocols you create (compound name, dose, schedule, notes, start and end dates)
- Dose log entries (date, time, injection site, notes, status)
- App preferences (privacy mode, units, reminder lead time)
- Notification schedules used by iOS to fire local reminders
Some of this data is also written to a shared App Group container so the iOS Home Screen widget can render your next dose without opening the app. The container is sandboxed to your device.
Data that leaves your device
Subscription processing (Apple and RevenueCat)
Subscriptions are sold through Apple's StoreKit. Apple processes the payment and provides us with a receipt token. We do not see your name, email, payment method, or billing address.
To verify entitlements and restore purchases across reinstalls, we use RevenueCat, a subscription infrastructure provider. RevenueCat receives an anonymous user identifier generated on-device (not your Apple ID, name, or email), the App Store receipt, and basic device metadata (device model, OS version, app version, locale). RevenueCat does not receive any of your protocol or dose data.
- RevenueCat privacy policy: revenuecat.com/privacy
- Apple's privacy policy: apple.com/legal/privacy
Crash reports and basic diagnostics (Apple)
Apple's standard developer tools (TestFlight and App Store Connect) provide aggregated crash data and basic performance metrics tied to anonymous device identifiers. We do not run our own crash reporting SDK. You can opt out of sharing this with developers in iOS Settings → Privacy & Security → Analytics & Improvements → Share With App Developers.
Data we do not collect
- Apple Health / HealthKit data
- Precise or coarse location
- Contacts
- Photos beyond what you explicitly attach
- Microphone or camera audio/video
- Advertising identifiers (we do not use IDFA)
- Browsing history or device usage data
Third-party services
We rely on the following third-party services. Each has its own privacy policy linked below.
| Service | Purpose | Data shared | Policy |
|---|---|---|---|
| Apple StoreKit | Processes subscription purchases | Apple ID account info (handled by Apple, not by us) | apple.com/legal/privacy |
| RevenueCat | Validates subscription entitlements and supports restore | Anonymous user ID, App Store receipt, device model/OS/app version, locale | revenuecat.com/privacy |
| Apple App Store Connect | Crash diagnostics and aggregate performance metrics | Anonymous device identifiers, crash logs (if you opt in via iOS Settings) | apple.com/legal/privacy |
Apple privacy nutrition label
For transparency, the data categories declared in our App Store Connect Privacy questionnaire are:
- Data used to track you: None.
- Data linked to your identity: None.
- Data not linked to your identity: Purchases (via Apple/RevenueCat) and Diagnostics (via Apple, opt-in).
Notifications
If you enable reminders, iOS schedules and fires local notifications on your device. We do not operate a push notification server. You can revoke notification permission at any time in iOS Settings → Notifications → DoseStack.
Data retention and deletion
On-device data is retained for as long as the app is installed. To delete it, use the in-app Delete all data control or uninstall DoseStack — uninstalling clears the app's local storage and the App Group container the widget reads from.
Subscription receipts held by Apple and RevenueCat persist according to their respective retention policies. To request deletion of any RevenueCat-side data tied to your anonymous user ID, email us and we will forward the request to RevenueCat.
Your rights
Because we do not maintain user accounts or server-side records of your protocol data, there is generally no personal data on our servers to access, export, or delete. Specific regional rights:
- United Kingdom (UK GDPR / Data Protection Act 2018): You have the right to access, rectify, erase, restrict processing of, port, and object to processing of your personal data. You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk/concerns. Because the only personal data we control is an anonymous subscription identifier, most requests will be referred to Apple or RevenueCat.
- European Union / EEA (GDPR): The same rights apply, and you may lodge a complaint with the data protection authority in your country of residence.
- California (CCPA/CPRA): We do not sell or share your personal information for cross-context behavioural advertising, and we have not done so in the preceding twelve months.
- Everywhere: You may withdraw notification permission and delete all on-device data at any time using iOS Settings or the in-app control.
To exercise any right, email jakewarburton37@gmail.com.
International data transfers
RevenueCat and Apple are headquartered in the United States and may process data in the U.S. and other jurisdictions where they operate infrastructure. Where personal data of UK or EU/EEA users is transferred outside the UK or EEA, those transfers rely on appropriate safeguards put in place by Apple and RevenueCat (such as Standard Contractual Clauses or the UK International Data Transfer Addendum). By using DoseStack you acknowledge that anonymous subscription metadata may be processed in these locations.
Children
DoseStack is not directed at children under 13 (the digital consent age in the United Kingdom). In jurisdictions that set a higher digital consent age — for example several EU member states set it at 16 — DoseStack should only be used with the consent and supervision of a parent or legal guardian where required. We do not knowingly collect personal information from anyone below the applicable age. If you believe a minor has used the app, contact us and we will assist with deletion of any associated subscription identifier.
Security
On-device data is protected by iOS's standard application sandbox and the device's encryption. We recommend setting a device passcode and enabling automatic iOS updates. No system is perfectly secure; please consider this when entering sensitive notes.
Changes to this policy
We may update this policy. Material changes will be reflected here with a new effective date. Continued use of the app after a change constitutes acceptance of the updated policy.
Contact
Questions about this policy or your data? Email jakewarburton37@gmail.com.