Privacy Policy

Protocol (“the App”) is developed by TrendPulse Ventures (“we,” “us,” or “our”). This Privacy Policy explains how we handle information when you use the Protocol iOS application.

The fundamental architecture of Protocol is privacy-preserving by design: all user data is stored locally on your device. We have no backend servers that store your health or usage data.

We do not collect, transmit, or store:

• Personal identification information (name, email, phone number)
• Health data, dose logs, or protocol information
• Weight, body measurements, or check-in data
• Photos or progress images
• Location data
• Device identifiers or advertising IDs
• Usage analytics or behavioral data
• Crash reports sent to third-party services

All data you enter into Protocol — including dose logs, protocols, inventory, weight tracking, body measurements, check-ins, injection site history, and progress photos — is stored exclusively on your device using SQLite local storage. This data never leaves your device unless you explicitly choose to export it.

Protocol does not use iCloud, third-party cloud storage, or any remote database to store your personal or health information.

The App provides export functionality that allows you to generate CSV files and PDF reports of your data. When you choose to export, the resulting file is created locally on your device and shared through iOS’s native Share Sheet. We do not receive a copy of exported data.

If you choose to share exported data via email, AirDrop, or another service, that data is handled according to the policies of those services, not ours.

Protocol may request permission to send local push notifications to remind you of scheduled doses. These notifications are generated and delivered entirely on-device by iOS — no notification data is sent to our servers. You can disable notifications at any time in iOS Settings.

Protocol offers an optional Face ID / Touch ID lock feature. Biometric data is handled entirely by iOS’s LocalAuthentication framework. The App never accesses, stores, or transmits your biometric data.

Protocol does not integrate third-party analytics SDKs (such as Firebase, Amplitude, or Mixpanel), advertising networks, or crash reporting services that transmit data to external servers.

The App is distributed through Apple’s App Store. Apple may collect certain data as part of the App Store experience, including download and purchase information, subject to Apple’s own privacy policy.

Protocol is rated 17+ and is not intended for use by individuals under the age of 17. We do not knowingly collect data from minors. Because no data is collected server-side, there is no user data for us to delete.

Because all data is stored locally on your device, security is primarily governed by your device’s security features — including device passcode, Face ID, and iOS data protection. We recommend keeping your device updated and enabling device-level encryption.

The optional in-app biometric lock provides an additional layer of protection for the App itself.

Since all data is stored locally on your device, you have complete control:

• Access: All your data is visible within the App at any time.
• Export: Use the Export feature to download everything as CSV or PDF.
• Delete: Deleting the App from your device removes all associated data permanently.
• Portability: Exported CSV files are standard format, importable into any spreadsheet application.

We may update this Privacy Policy from time to time. Changes will be reflected with an updated “Last updated” date at the top of this page. We encourage you to review this policy periodically. Continued use of the App after changes constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy or the App’s data practices, contact us at:

support@protocolapp.health
TrendPulse Ventures
protocolapp.health