Privacy Policy
Last updated: June 28, 2026
PCOSPlan ("we", "us") provides personalized meal planning and symptom tracking for people with PCOS. This page explains what we collect, why, and what choices you have. This page is maintained by PCOSPlan and is not a certification.
1. Information we collect
- Account data: email, name, authentication identifiers (including Google sign-in).
- Health & lifestyle data you provide: PCOS symptoms, dietary preferences, allergies, goals, daily energy/mood logs.
- Generated content: meal plans created on your behalf.
- Billing data: handled by Stripe; we receive subscription status and customer ID, not full card details.
- Technical data: basic logs (IP, browser, errors) for security and debugging.
2. How we use it
- Generate personalized meal plans and insights.
- Operate, secure, and improve the service.
- Process subscriptions and send account/transactional emails.
We do not sell your personal or health data.
3. Subprocessors
- Lovable Cloud (Supabase): database, authentication, storage.
- Google: optional sign-in.
- Stripe: payment processing and subscription management.
- AI providers (via Lovable AI Gateway): generation of meal plans from the profile data you submit.
4. Health data
PCOSPlan is a wellness tool, not a medical device or healthcare provider. We are not a HIPAA-covered entity. The information you log is used to personalize your plan and is visible only to you and our service operators.
5. Retention & deletion
We retain account and health data until you delete your account. You can request deletion at any time by emailing hello@pcosplan.app; we will remove your data within 30 days, except where retention is required for legal or billing reasons.
6. Your rights
Depending on your location (e.g., GDPR/EEA, UK, California) you may have rights to access, correct, port, or delete your data, and to object to processing. Contact us to exercise these rights.
7. Security
Data is encrypted in transit (HTTPS) and at rest via our infrastructure provider. Access controls and row-level security restrict who can view your records. No system is 100% secure.
8. Cookies
We use strictly necessary cookies/local storage for authentication and session management. We do not currently use advertising cookies.
9. Children
PCOSPlan is not intended for users under 16. Do not use the service if you are under this age.
10. Changes
We may update this policy; material changes will be announced in-app or by email.