Privacy Policy

Last updated: May 23, 2026

GeneMap is built around a single principle: your data stays yours. We collect the minimum needed to authenticate you and let you save a watchlist. We do not sell, share, or use your data for advertising. AI explanations run on your iPhone — they never leave your device.

This policy applies to the GeneMap iOS app (“Gene”) and genemap.app. The sections below mirror Apple’s App Privacy nutrition-label format so you can verify it against what the App Store shows.

Data we collect

Every item below is also declared in the iOS app’s privacy manifest and in the App Store privacy nutrition label.

Email Address

Contact Info

Linked to youNo tracking

Provided by Apple Sign-In or magic-link email so we can identify your account and authenticate you across sessions.

App FunctionalityAccount Management
Name

Contact Info

Linked to youNo tracking

Optionally provided by Apple Sign-In to personalize your profile. You can leave this blank.

App Functionality
User ID

Identifiers

Linked to youNo tracking

A Supabase-generated UUID tying your account to your watchlist and saved preferences.

App Functionality
Device ID

Identifiers

Not linkedNo tracking

An anonymous push-notification token used to send you optional therapy-development alerts. Never linked to your identity.

App Functionality
Purchase History

Purchases

Linked to youNo tracking

When you subscribe to GeneMap Plus or buy a Concierge Case File, Apple shares the transaction record with us via RevenueCat so we can grant access. We never see or store your card number, billing address, or any other payment detail — Apple handles all of that.

App Functionality
Health and medical data you provide

Health & Fitness

Linked to youNo tracking

When you create a Personal Case, the diagnosis, mutations, and notes you enter are stored against your account so the app can reshape itself around your situation. This data is row-level-security isolated to your user ID; no other user, sponsor, or third party can read it. It is never included in the open-data export and never sent to advertising or analytics networks.

App Functionality

Data we don’t collect

  • Location data
  • Photos, videos, or microphone recordings
  • Contacts or calendar entries
  • Health or fitness data from HealthKit (we never import HealthKit data)
  • Browsing or search history outside the app
  • Advertising identifiers (IDFA)
  • Cross-app or cross-site tracking signals
  • Payment card numbers or billing addresses (Apple handles all purchase data)

On-device AI

GeneMap uses Apple’s Foundation Models framework to generate plain-language explanations of therapies, claims, and trial criteria. These models run entirely on your iPhone’s Neural Engine. We do not see your questions, the model’s responses, or any input you provide to the AI assistant. No network request leaves your device for AI generation.

Eligibility matching

If you use the eligibility-matching feature with variant data, that submission is processed transiently to compute reference-trial overlap. The raw variant content is not persisted to our database and not cached on disk — only the eligibility summary (which trials overlap, at what confidence) is stored, linked to your user ID. You can delete it at any time by deleting your account.

Third-party services

We use the following services to operate GeneMap. None of them receive data for advertising or cross-app tracking.

  • Supabase— authentication and database storage. All data is hosted in Supabase’s US data center under their privacy policy.
  • Apple Sign-In — optional account-creation mechanism. Apple may share an opaque user identifier, your name (if you choose to share it), and either your real email or a private relay email. Apple does not share other Apple ID data with us.
  • ClinicalTrials.gov, FDA, MONDO, HGNC — public sources of the therapy and trial information shown in the app. We do not send any of your data to these sources; we only pull their published catalogs into our graph.

Your rights

  • Access & export. Email privacy@genemap.app to receive a copy of the data linked to your account.
  • Deletion. Open Settings → Delete Account in the iOS app to permanently remove your profile, watchlist, and eligibility records. The deletion is immediate and cannot be undone.
  • Correction. You can edit any optional profile field in Settings at any time.
  • Opt out of notifications. Toggle push permission in iOS Settings → Notifications → Gene.

Not medical advice

GeneMap aggregates and scores published research. It does not provide medical advice, diagnoses, or treatment recommendations. Always consult a qualified healthcare provider before making treatment decisions. We are not a HIPAA-covered entity and the service is not designed to handle protected health information.

Children

GeneMap is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us information, email privacy@genemap.app and we will delete it.

Changes to this policy

When we materially change how data is collected or used, we will update the “Last updated” date above and surface the change in the app. Historical versions of this policy are available on request.

Contact

Questions or requests under GDPR, CCPA, PIPEDA, or Quebec Law 25: email privacy@genemap.app. We respond within 30 days.

Also see our Terms of Service.