Privacy Policy - Pepio

Privacy Policy

Last updated: May 4, 2026

This Privacy Policy describes how ZSTACK CAPITAL LLC (“Pepio,” “we,” “us,” or “our”) collects, uses, and shares information when you use the Pepio mobile application (“App”), our website at pepio.app, and related services (together, the “Services”). Pepio is a GLP-1 and peptide tracking app for logging doses, schedules, injection sites, and optional wellness data you choose to record.

Not medical advice. Pepio is for self-tracking and educational organization only. It is not a substitute for professional medical advice.

1. Information we collect

Depending on how you use the Services, we may collect:

  • Account and contact information — for example, name, email address, and authentication identifiers when you create an account or contact support.
  • App and tracking data you provide — for example, medication or peptide names, doses, injection sites, schedules, notes, photos you upload (if you choose), weight, symptoms, or other entries you log in the App.
  • Device and technical information — for example, device type, operating system version, app version, IP address, crash logs, and diagnostics.
  • Usage and analytics information — for example, how you navigate the App or website, feature usage, and campaign attribution data from analytics or advertising partners (as described in our App Store privacy disclosures and your device settings).
  • Purchase information — if you buy Pepio Plus or other offerings, Apple (or another payment provider) processes payment card data; we may receive limited transaction metadata (for example, subscription status).

2. How we use information

We use information to:

  • Provide, maintain, secure, and improve the Services (including sync, backup, reminders, and optional calculators or insights).
  • Authenticate users, prevent fraud and abuse, and troubleshoot errors.
  • Communicate with you about the Services, support requests, and important notices.
  • Analyze usage in aggregate or de-identified form to improve product experience.
  • Comply with law, enforce our terms, and protect rights, safety, and property.
  • Send marketing communications where permitted and with appropriate consent (you may opt out as described in those messages).

3. Legal bases (where applicable)

If the GDPR or similar laws apply, we rely on appropriate bases such as: performance of a contract with you; legitimate interests (for example, securing the Services and improving reliability); consent where required (for example, certain marketing cookies or optional analytics); and compliance with legal obligations.

4. How we share information

We may share information with:

  • Service providers and subprocessors who help us host, analyze, deliver email, process payments (where applicable), monitor errors, or operate the Services, subject to contractual obligations. See our Subprocessor List.
  • Apple and other app platforms for distribution, in-app purchases, and platform-required reporting.
  • Professional advisors (for example, lawyers or accountants) where necessary.
  • Authorities if required by law or to protect rights and safety.
  • Business transfers in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate safeguards.

We do not sell your personal information for money. Where “sale” or “sharing” is defined broadly under U.S. state privacy laws, we provide choices as required (including through platform controls where applicable).

5. Health-related data

Information you enter about medications, doses, weight, or symptoms may be considered sensitive or health-related in some jurisdictions. We treat such data with care and use it only to provide the Services you request. Do not use Pepio as your only medical record. Keep copies of important health information with your clinician as appropriate.

6. Retention

We retain information for as long as needed to provide the Services, comply with law, resolve disputes, and enforce our agreements. Retention periods may vary based on the type of data and your settings (for example, if you delete your account).

7. Security

We implement technical and organizational measures designed to protect information. No method of transmission or storage is 100% secure; we encourage strong passwords and device security.

8. International transfers

We are based in the United States and may process information in the U.S. and other countries where we or our service providers operate. If we transfer personal data from the EEA, UK, or Switzerland, we use appropriate safeguards such as Standard Contractual Clauses where required (see our Data Processing Addendum for business customers, where applicable).

9. Your rights and choices

Depending on your location, you may have rights to access, correct, delete, or export your personal information, or to object to or restrict certain processing. You may also have the right to lodge a complaint with a supervisory authority. To exercise rights, contact [email protected]. We may need to verify your request.

You can control certain cookies and analytics through your browser or device settings. For iOS, review Apple’s privacy controls and the App’s in-product settings.

10. Children

The App is not directed to children under 16 (consistent with our App Store age rating). We do not knowingly collect personal information from children under 16. If you believe we have collected such information, contact us and we will take appropriate steps to delete it.

11. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated policy on this page and revise the “Last updated” date. If changes are material, we will provide additional notice as appropriate.

12. Contact

ZSTACK CAPITAL LLC
Pepio — Privacy
Email: [email protected]
Website: https://pepio.app