Skip to content
Regimio

Privacy posture

Your stack is your business.

Regimio is built privacy-first. Not as a marketing line · as an architectural precondition. Protocol data is sensitive. Trust is the foundation, not a tab.

Local-first storageNo account requiredNo analytics on dosesOne-tap erase

Principles

What we promise, and what it actually means.

Local by default

Your stack, dose logs, check-ins, labs, weight, body measurements, and settings live in app-local storage on your device. Regimio does not run a cloud database for user health data in the MVP.

No account required

Free and Pro tiers work without a Regimio login. Apple App Store and Google Play handle billing, with RevenueCat used only for subscription entitlement status.

One-tap erase

Settings -> Danger zone -> Erase everything clears the local Regimio app store and in-memory state. Final. There is no hidden Regimio recovery copy.

No analytics on values

Sentry is opt-in and scrubbed of compound names, doses, and lab values. We track crash signatures, not what you logged.

Visible in the UI

A 🔒 Local indicator stays on the Home screen so you never have to dig into a settings panel to confirm where your data lives.

Where your data lives

Every category, every destination.

No hand-waving. Here is the literal data map.

Data kindWhere it livesSent off-deviceEncryption
Compounds, doses, schedulesApp-local device storageNever by Regimio by defaultProtected by OS sandbox and device encryption when enabled
Symptom check-insApp-local device storageNever by Regimio by defaultProtected by OS sandbox and device encryption when enabled
Lab values, PDFsApp-local storage and user-controlled filesNever by default. Imports and exports stay user-controlled.Protected by OS sandbox and device encryption when enabled
Wearable data (HRV, sleep, weight)Roadmap integrations, opt-in onlyNot collected in the MVPNot applicable in the MVP
Reconstitution mathComputed on-device (pure module)Never. No remote calculation.n/a · computed only
Crash signatures (Sentry)Sentry (opt-in only)Only stack traces, scrubbed of valuesTLS in transit
Subscription statusApple / Google / RevenueCatStandard in-app purchase entitlement flowTLS in transit and store-provider controls
Support emailYour email app and Regimio support inboxOnly if you email supportTLS in transit where supported by mail providers

What we will never do

The forever list.

  • ×Sell your data to anyone. Period.
  • ×Share data with research partners by default.
  • ×Show 'consult your doctor' pop-ups before you log a compound.
  • ×Restrict which compounds you log.
  • ×Build features that require an account before you can use the app.
  • ×Auto-enroll you in cloud sync.
  • ×Auto-write doses or symptoms back to HealthKit.
  • ×Send analytics events that include compound names, doses, or lab values.
  • ×Make the privacy policy harder to read than a settings page.
  • ×Send you marketing email without explicit opt-in.

One-tap erase

The button is always there.

No dark patterns. Settings -> Danger zone -> Erase everything.

App data

Local Regimio app storage is cleared and the app returns to a fresh state.

Local preferences

Settings, trial state, stack state, and local tracking preferences are cleared.

Cached files

Regimio-generated local export files and caches are cleared where the OS permits.

Erase is final. We do not keep a hidden recovery copy. This is the trade we make for being a privacy-first app.

Steady is a strategy

The privacy posture is the product.

If we ever weaken it, you'll find out from the changelog · not from a press release.