Privacy Policy

What Data Is Collected

Anonymous submissions: Compound selection, dosing details, reported effects, and optional bloodwork data. A hashed version of your IP address is stored for rate limiting only. The raw IP address is never stored.

Vendor accounts: Email address, password (encrypted by Supabase Auth), business name, license number, and contact email. Submitted quality data including batch numbers, purity percentages, and certificates of analysis.

How Data Is Stored

All data is stored in Supabase (PostgreSQL), hosted in the United States. Data is encrypted in transit (TLS) and at rest. Anonymous submissions are stored in a private table with no public read access. Vendor data is accessible only to the vendor who submitted it and to Peply administrators.

How Data Is Used

Submission data may be used in aggregate to improve compound reference information and identify data quality patterns. Individual submissions are never published. Vendor identities are never disclosed without explicit consent.

What We Do Not Do

• We do not sell or share individual submission data
• We do not track users beyond rate-limit IP hashing
• We do not use third-party analytics or advertising trackers
• We do not correlate anonymous submissions with identities

Cookies and Sessions

Peply uses a theme preference cookie (localStorage) for dark/light mode. Vendor accounts use Supabase Auth session cookies for authentication. No third-party cookies are used. The calculator and compound reference pages function without any cookies.

Data Requests

To request deletion of vendor account data or to inquire about data practices, contact: privacy@peply.bio

Anonymous submissions cannot be traced to individuals and therefore cannot be individually deleted.