PRIVACY POLICY

Injektor does NOT collect any of your data. We do not have access to: For Patients: • Treatment history and records • Before and after photos • Personal health information • Practitioner search history • Any other information you enter in the app For Practitioners: • Patient information • Clinic information • Product inventory data • Appointment data • Treatment records or photographs • Any other information you enter in the app All data you enter is stored locally on your device only. We have no servers that receive, process, or store your information.

Both Injektor apps process all data locally on your device: For Patients: • All treatment records, photos, and reminders are stored in your device's secure storage • The app functions entirely offline for your personal data • Finding practitioners requires internet to view the directory • No personal data is transmitted when searching for practitioners For Practitioners: • All patient records, appointments, and inventory are stored in your device's secure storage • The app functions entirely offline - no internet connection required for practice management • Optional practitioner directory listing requires internet to update your profile • No patient data is transmitted to our servers or any third parties The app code itself does not contain any analytics, tracking, or data collection mechanisms.

Your data is stored securely on your device: • All data is stored in your device's secure storage using industry-standard encryption • You can enable additional security with PIN Lock and Face ID/Touch ID • Your device's operating system security protects your data • No data leaves your device unless you explicitly initiate a backup

You can optionally backup your data to your own personal cloud storage: • Backups go directly to YOUR cloud account (iCloud, Google Drive, etc.) • All backup data is encrypted end-to-end before leaving your device • We never have access to your backup data or cloud credentials • You control when backups occur and can disable this feature anytime • Your cloud provider's privacy policy and terms apply to your backed-up data

You have complete control over your data: For Patients: • All data remains on your device - delete the app and all data is removed • You can export your data anytime through the Backup feature • You can delete individual treatment records or photos within the app • We cannot access, retrieve, or restore your data for you For Practitioners: • All data remains on your device - delete the app and all data is removed • You can export your data anytime through the Backup feature • You can delete individual records, patients, or appointments within the app • We cannot access, retrieve, or restore your data for you Note: As a healthcare practitioner, you are responsible for complying with your local medical records retention regulations (typically 7-10 years).

Since we do not collect your data, we cannot share it: • We do not sell data (we don't have any to sell) • We do not share data with third parties • We do not provide data to advertisers or analytics companies • We have no service providers who process user data • Law enforcement cannot request data from us because we don't have access to it

Our privacy-first design makes compliance simple: • GDPR (EU): Since we don't collect data, we're not a "data controller" or "data processor" • HIPAA (US): We don't access Protected Health Information (PHI) • UK Data Protection Act: No data processing by us means minimal compliance burden Important: As a healthcare practitioner using this app, YOU are the data controller. You're responsible for ensuring your use of the app complies with your local regulations.

The app may interact with third-party services only if you choose to use backup: • Your cloud storage provider (iCloud, Google Drive, Dropbox, etc.) • These services are subject to their own privacy policies • We recommend reviewing your cloud provider's privacy policy • You control which cloud service to use for backups The app does not use any third-party analytics, advertising, or tracking services.

We regularly update the app to maintain security and add features: • Security updates are provided through app stores • Updates do not access, modify, or transmit your existing data • You can review update notes before installing • Local data storage remains secure across updates We recommend keeping the app updated for the latest security improvements.

Age requirements and children's privacy: For Patients: • The app is intended for individuals 18 years and older • We do not knowingly collect data from anyone (including minors) • If you are under 18, please do not use the app For Practitioners: • The app is designed for healthcare practitioners, not children • The app is not directed to individuals under 18 • If you store patient records of minors, you're responsible for complying with local regulations regarding parental consent and data protection

We may update this Privacy Policy as regulations evolve or features change: • Updates will be posted in the app with app updates • The "Last Updated" date will reflect changes • Material changes will be highlighted in app update notes • Our commitment to zero data collection will not change

If you have questions about this Privacy Policy: Email: hello@injektor.app Support: support@injektor.com Please note: We cannot access, retrieve, or modify your data as it's stored only on your device. For technical support with the app, contact our support team.