← Back to home

Privacy Policy

Last updated: April 1, 2026

1. Introduction

Pepped (“we,” “our,” or “us”) operates the Pepped mobile application (the “App”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App.

By using Pepped, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Account Information

  • Name (first name or display name you provide)
  • Authentication credentials (managed securely via Supabase Auth)

Conversation Data

  • Messages you send to Pepped and AI responses
  • Memories extracted from conversations (goals, events, preferences you share)

Usage Data

  • App usage patterns and feature interactions
  • Device type and operating system version
  • Crash reports and performance data

Pep Card & Sharing Data

  • Pep cards you create, including recipient names, messages, and themes
  • Card images captured and stored for sharing previews
  • When you share a pep card, the recipient name, sender display name, and AI-generated message are accessible via a public URL
  • Content reports and user blocks you submit

Subscription Data

  • Subscription status and plan type (managed via RevenueCat and Apple)
  • We do not store your payment information directly — all payments are processed by Apple through the App Store

3. How We Use Your Information

  • Provide personalized AI pep talks and remember context from past conversations
  • Send proactive notifications before events you’ve mentioned
  • Manage your subscription and message limits
  • Improve the App’s performance and features
  • Enable sharing of pep cards with others via links and preview images
  • Moderate shared content through automated filtering and user reports
  • Detect and respond to crisis situations with appropriate resources
  • Communicate with you about updates or support

4. AI Processing

Your messages are processed by AI language models (currently OpenAI) to generate responses. These providers process data according to their usage policies and do not use your conversations to train their AI models when accessed via their API.

We extract key memories (goals, events, preferences) from your conversations to personalize future interactions. You can view and manage these memories within the App.

5. Crisis Detection

Pepped includes local crisis detection to identify messages that may indicate a user is in distress. This detection runs entirely on your device. When crisis language is detected, we display mental health resources including the 988 Suicide & Crisis Lifeline. We may log anonymized crisis events to improve this safety feature.

6. Analytics

We use PostHog to collect anonymous usage data to improve the app experience. This includes events like app opens, feature usage, and error tracking. No personal conversation content is collected through analytics. PostHog data is used solely to understand how the App is used and to improve its features and performance.

You can opt out of analytics tracking in your device settings.

7. Third-Party Services

We use the following third-party services:

  • Supabase — Authentication, database hosting, and serverless functions
  • OpenAI — AI conversation and pep talk generation
  • RevenueCat — Subscription management
  • Apple App Store — Payment processing and app distribution
  • Expo — Push notification delivery
  • PostHog — Anonymous usage analytics

Each service processes data according to their own privacy policies.

8. Data Storage and Security

Your data is stored securely on Supabase’s infrastructure with row-level security policies. We use encryption in transit (TLS) for all data transfers. While we take reasonable measures to protect your information, no method of electronic transmission or storage is 100% secure.

9. Data Retention

We retain your conversation data and memories for as long as your account is active. You can delete individual memories from the Memories screen in the App. If you wish to delete your account and all associated data, contact us at support@getpepped.app.

10. Shared Content & Moderation

When you create and share a pep card, the following information becomes publicly accessible via the card’s unique URL: the recipient name, your display name, the AI-generated message, the card theme, and a preview image.

We filter user inputs for objectionable content before pep cards are created. Users can report inappropriate cards and block senders within the App. We review reports and may remove content or restrict accounts that violate our Terms of Service.

11. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Manage your notification preferences within the App
  • Manage or cancel your subscription at any time
  • Report inappropriate shared content
  • Block other users from sending you content

12. Children’s Privacy

Pepped is intended for users aged 13 and older. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will take steps to delete that information.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the “Last updated” date.

14. Contact Us

If you have questions about this Privacy Policy, contact us at:

support@getpepped.app