Last updated: April 13, 2026
Your dog's health data, conversation messages, and uploaded images are sent to our AI provider's API to generate Hazel's responses. We may also use anonymized conversation data and health records to train and improve our own AI models, in order to provide better, more accurate insights for all users. Your data is never sold to third parties for their own model training. We may change AI providers; data sent to third-party AI providers is processed per-request and not retained by them beyond the immediate response.
Your data is stored securely on Supabase. All data is encrypted in transit (TLS) and at rest (AES-256). Row-level security ensures you can only access your own data.
We retain your data for as long as your account is active.
When you request account deletion, your account enters a 30-day grace period during which you can cancel the deletion by signing back in. After 30 days, your personal data is permanently removed (see Section 7 for details on what is retained in anonymized form).
Subscription and payment records are retained in anonymized form (with your user identifier removed) for up to 7 years to comply with tax and accounting laws.
We maintain a cryptographically hashed record of deletion requests (no personal data) for up to 3 years to demonstrate compliance with data protection laws.
We do NOT sell, rent, or share your personal data or your dog's health information with third parties for marketing purposes. Data is shared only with the following service providers, solely to operate Romp:
Romp may request access to:
You can revoke these permissions at any time in your device settings.
You can export all your data at any time from Profile → Account → Export Data.
You can request deletion from Profile → Account → Delete Account. Deletion follows a 30-day grace period before your data is permanently removed. To cancel, sign back into the app within the grace period.
You can also request account deletion from the web at pupinsight.com/delete-account without installing the app.
Anonymized data is no longer considered personal data under GDPR, CCPA, PIPEDA, and similar laws because it cannot be linked back to you.
We send push notifications for medication reminders, health check-ins, vaccination alerts, and pattern alerts. You can control which notification types you receive and set quiet hours in Profile → Notifications.
Depending on your location, you may have the following rights:
California residents (CCPA/CPRA): You have the right to know what personal information we collect, request deletion, correct inaccurate information, and opt out of the sale or sharing of personal information. We do not sell or share personal information. Retention of anonymized records is permitted under CCPA exceptions for transactions, security, and legal compliance.
EU/EEA/UK residents (GDPR): Our legal bases for processing are (a) performance of the contract you entered into when creating an account, (b) legitimate interest in improving the service via anonymized analytics, and (c) legal obligation for financial record retention. Anonymized records are no longer personal data under GDPR Article 4 and are outside the scope of erasure rights.
Canadian residents (PIPEDA): We destroy personal information when it is no longer needed for the purposes it was collected, subject to legal retention obligations.
Brazilian residents (LGPD): You have rights equivalent to those under GDPR. Anonymized data is outside the scope of LGPD per Article 12.
Romp is not intended for use by children under 13. We do not knowingly collect data from children.
For privacy questions, data requests, or concerns: pupinsight@outlook.com