Privacy Policy

GhostSign (“GhostSign,” “we,” “us,” or “our”) operates a mobile application that enables structured self-experimentation. This Privacy Policy explains how we collect, use, store, and protect your information when you use our services. By using GhostSign, you agree to the practices described in this policy.

We may collect the following categories of information:

• Account information: Email address, first name, and any profile data you provide on registration or in the waitlist.
• Experiment data: Your selected performance objectives, generated experiment briefs, protocol parameters, and experiment configurations.
• Check-in and log data: Manual daily check-ins, self-reported metrics, and experiment notes you enter within the app.
• Usage data: App interactions, feature usage patterns, session timestamps, and diagnostic data to help us improve the service.
• Device information: Device type, operating system version, and anonymised identifiers used for diagnostic and analytics purposes.

We do not collect passive biometric data from wearables or health platforms unless you explicitly connect such services in a future integration.

We use the information we collect to:

• Provide, operate, and improve the GhostSign application.
• Generate tailored experiment protocols and performance reports.
• Store and retrieve your check-in data across sessions.
• Send transactional communications such as waitlist confirmations.
• Diagnose and fix technical issues.
• Understand aggregate usage patterns to improve product quality.

We do not sell your personal data. We do not use your data for advertising targeting.

GhostSign uses artificial intelligence to generate experiment protocols, performance reports, and related content (“AI-Generated Content”). You acknowledge and agree that:

• AI-Generated Content may be inaccurate, incomplete, or not appropriate for your specific circumstances.
• AI-Generated Content is provided for informational and self-experimentation purposes only.
• GhostSign does not guarantee the accuracy, completeness, or suitability of any AI-Generated Content.
• You are solely responsible for how you use, interpret, and act on AI-Generated Content.

GhostSign is not a medical product. GhostSign does not provide medical advice, diagnosis, or treatment. For medical advice or diagnosis, consult a qualified healthcare professional.

We may use third-party analytics tools to collect aggregate, anonymised usage data. This data helps us understand how users interact with the app and improve product quality. We may also collect crash reports and performance metrics for diagnostic purposes. Where possible, this data is anonymised or pseudonymised before processing.

GhostSign uses Supabase as its primary backend infrastructure provider. Your data is stored on Supabase servers. By using GhostSign, you acknowledge that your data may be processed and stored on infrastructure operated by Supabase and its sub-processors.

We may engage additional third-party service providers to help operate our infrastructure, analytics, or AI capabilities. Such providers are contractually obligated to protect your data in accordance with applicable law.

We retain your data for as long as your account is active or as needed to provide services. If you request deletion of your account and data, we will process that request in accordance with applicable law, subject to legal retention obligations.

Depending on your jurisdiction, you may have rights to access, correct, export, or delete your personal data. To exercise these rights, contact us at [support@ghostsign.io]. We will respond to verified requests within applicable legal timeframes.

We implement reasonable technical and organisational measures to protect your data against unauthorised access, loss, or alteration. However, no system is completely secure. You use GhostSign at your own risk and acknowledge that we cannot guarantee absolute security.

GhostSign is not directed to children under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us immediately at [support@ghostsign.io].

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the effective date at the top of this page or by in-app notification. Continued use of GhostSign following such changes constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy or your data, contact us at: