Privacy Policy
Last updated: July 7, 2026
SnipSmart is a local-first app. The design goal is simple: we collect as little as possible, and none of your health information ever reaches us. This is the same policy shown inside the app. Questions? Email privacy@snip-smart.com.
Last updated: July 7, 2026
SnipSmart is an app that guides you through the vasectomy journey, from deciding to fully recovered. It is made and operated by ArchnaCode LLC, a Missouri (United States) limited liability company ("SnipSmart," "we," "us," or "our"). This policy explains what information the app handles, where that information lives, and the choices and rights you have. It is written in plain English on purpose. If anything here is unclear, contact us at privacy@snip-smart.com.
1. The one thing to know first
Your health journey stays on your device. Everything personal you enter into SnipSmart, your dates, appointments, check-ins, pain and symptom logs, notes, clearance progress, gut-check answers, your name, and your profile details, is stored only on your phone. It is never uploaded to our servers, we never receive it, and it never leaves your device unless you choose to export or share it, or your phone includes it in your own device backup (section 3). Because we do not collect this information, we cannot read it, sell it, lose it in a breach of our servers, or hand it to anyone.
The only information that reaches us is a small amount of app-usage analytics, described in section 4. It never includes anything you typed, any health value, or which health topic you read.
2. Who this policy covers
This policy applies to the SnipSmart mobile app on iOS and Android, and to the SnipSmart marketing website. SnipSmart is intended for adults 18 and older and is not directed to children (section 12).
3. Information that stays on your device (we never receive it)
The app stores the following only on your device, in an app-private database protected by your device's security and, optionally, by App Lock (section 9):
- Profile: your first name (optional), age band, relationship status, number of children, and a coarse region (the country your device reports, noted automatically; you never type a location and we never collect precise location).
- Journey data: your current stage, procedure date, and appointments (consult, procedure, semen test, follow-up, and any details, locations, or notes you add).
- Health logs: daily check-ins (pain, swelling, activity, and free-text notes), recovery-care activity, semen-test and clearance progress, and your gut-check answers.
- Preferences: notification toggles, reminder settings, App Lock on or off, and analytics choice.
This is your consumer health data and, under some laws, special category data. We treat it as sensitive by design: it is processed entirely on your device, by you. We provide on-device tools to export a copy (to keep or share with your doctor) and to erase everything ("Start over"). There is no account and no server-side copy for us or anyone else to access.
If you use your phone's own backup (iCloud on iOS, Google backup on Android), an encrypted copy of the app's data is included in that backup, under your control and tied to your own Apple or Google account. That is how your journey survives a lost or upgraded phone; we never receive it. You can manage backups in your device settings.
If you export or share a copy yourself (for example, by AirDrop, email, or a saved file), that copy leaves the protection of the app and is governed by wherever you send it.
4. Information we do receive: app-usage analytics
To understand whether the app is working and where people get stuck, we operate our own, first-party analytics. We do not use third-party advertising or analytics SDKs (no Google Analytics, no Meta, no PostHog, no ad networks). There are two tiers.
4a. Anonymous counts (always on, not personal data)
The app sends simple, aggregate counters, for example "the app was opened" or "a screen was viewed," with no identifier attached. These counts cannot be linked to you, your device, or your other activity. We aggregate them and apply a minimum-group-size suppression so no small group can be singled out. We do not retain your IP address alongside these counters or use it to profile you. Because this data is not reasonably capable of identifying you, it is not personal data and is on for everyone.
4b. Usage flow (on by default, opt out anytime)
To see where people get stuck, the app shares a more detailed, health-free picture of how you move through the screens (which steps you reach, where you drop off). In the United States this is on by default; you can turn it off at any time in You, Privacy and security. It is tied to a random, pseudonymous ID that we generate on your device and that is not connected to your name, email, phone number, or any account (there is no account).
This clickstream deliberately excludes:
- anything you typed or selected as a value (dates, pain scores, notes, names, and so on);
- which specific health topic, article, FAQ, or event you viewed;
- your precise location, contact details, or advertising identifiers.
Along with the flow, we attach only coarse session context: app version, platform (iOS or Android), your current journey phase (exploring, pre-procedure, or recovery), the coarse profile bands you may have entered (age band, number-of-children band, relationship), and your device's country-level region.
You can turn this off at any time. Turning it off deletes your analytics thread from our servers (sections 8 and 11). We also automatically purge any inactive thread after 12 months. Where the law requires opt-in consent for this kind of analytics (for example, in the EU/UK), it is off until you turn it on, rather than on by default.
5. Other data interactions
- Content delivery. The app downloads its reading content (articles, FAQ, the Snip-o-Meter event calendar, the Essentials list, and this policy) from our content delivery network. These are ordinary requests for public content; we do not send your personal or health data in them.
- Notifications. Reminders (appointments, check-ins, next steps) are scheduled locally on your device by the operating system. No reminder content is sent to a server, and we do not collect a push token. You control notifications in You, Push notifications and in your device settings.
- Essentials and affiliate links. The Essentials tab is a hand-picked Amazon storefront. Deciding which items to show you is computed on your device from your local profile and recovery day; we do not send that profile to Amazon or any advertiser. If you tap an item, you leave SnipSmart and open Amazon (or another retailer), and we may earn a small affiliate commission. Once you leave, that retailer's own privacy policy governs.
- App stores. The Apple App Store and Google Play distribute the app under their own privacy policies. We receive only aggregate, anonymized store statistics.
6. How we use information
We use the limited analytics we receive (section 4) to understand overall usage and reliability, see where people abandon a flow so we can simplify it, and decide what to build next. We do not use any information to advertise to you, to build an individual profile, to make automated decisions with legal or similarly significant effects, or to determine your insurance, credit, or employment.
7. How information is shared
We do not sell your personal information or your consumer health data, and we do not share it for cross-context behavioral advertising, as those terms are defined under US state laws. We have no advertising trackers.
We rely on Amazon Web Services (AWS) as a service provider for hosting, content delivery, and storage of the aggregate and pseudonymous analytics described in section 4, in the United States, under contract.
We may disclose information if required by law, or to protect the rights, safety, and security of our users and the service. Because your health journey data never reaches us, we cannot disclose it; there is nothing on our side to produce.
8. How long we keep information
- On-device data: kept on your device until you delete it (per item, or all at once with "Start over"). We hold no copy.
- Anonymous counts (4a): retained in aggregate, indefinitely. They are not linked to you.
- Usage flow (4b): deleted when you turn it off, and automatically purged after 12 months of inactivity.
9. Security
- All network traffic uses encryption in transit (HTTPS/TLS).
- Data we store (the section 4 analytics) is encrypted at rest and protected by network controls, access limits, and abuse protection.
- Your on-device data is protected by your device's own security and, if you enable it, by App Lock, which requires your device biometrics or passcode to open the app. App Lock uses your operating system's authentication; we never receive or store your biometrics.
- We practice data minimization: the strongest protection for sensitive data is not collecting it, and we do not.
No system is perfectly secure, but keeping health data off our servers removes an entire category of risk.
10. Consumer Health Data notice (Washington My Health My Data Act, and similar laws)
This section meets the Washington My Health My Data Act (MHMDA) and comparable consumer-health-privacy laws.
- What consumer health data is involved. Information about a vasectomy and your reproductive and recovery health is consumer health data. In SnipSmart, all of it is the on-device data in section 3.
- We do not collect, use, store, share, or sell consumer health data. It is created and kept on your device and never transmitted to us. The analytics in 4b exclude consumer health data by design.
- No sale, no sharing, no targeted advertising of consumer health data. We will never sell it.
- No geofencing. We do not use geofences around any health-care facility, and we do not collect precise location at all.
- Consent. Because we do not collect consumer health data, no collection consent is required. The usage-flow analytics (4b) are separate and health-free (they contain no consumer health data), so MHMDA consent is not triggered; you may still turn them off at any time.
- Your consumer-health-data rights. You may confirm whether we hold such data (we do not), access it (it is on your device, and you can export it), delete it (use "Start over," which we cannot undo), and withdraw any consent. To exercise a right or appeal a decision, contact privacy@snip-smart.com. Washington residents may also contact the Washington State Attorney General.
11. Your choices and rights
Everyone, regardless of location, can:
- Access and export their data: it all lives on your device, and the app can export a full copy.
- Delete their data: "Start over" erases everything on the device and asks our server to erase your anonymous analytics thread; turning off the 4b usage-flow analytics deletes your server-side thread.
- Turn the 4b usage flow on or off at any time in You, Privacy and security.
- Control notifications in-app and in device settings.
California (CCPA/CPRA): you have the right to know what we collect, to delete it, to correct it, and to opt out of sale or sharing. We do not sell or share personal information. The 4b usage-flow analytics are health-free and not sold or shared; you can turn them off at any time. We will not discriminate against you for exercising a right.
EU and UK (GDPR), for future EU availability: if the GDPR applies to you, you have the rights of access, rectification, erasure, restriction, portability, objection, and to withdraw consent, and to lodge a complaint with your local supervisory authority. In the EU/UK the 4b usage flow is opt-in: our legal basis there is your consent, so it stays off until you turn it on; for anonymous counts, our legal basis is our legitimate interest in understanding aggregate usage. Our infrastructure is in the United States; where required, transfers rely on appropriate safeguards such as the EU Standard Contractual Clauses.
12. Children
SnipSmart is for adults 18 and older. A first-run age confirmation gates entry. We do not direct the app to children and do not knowingly collect information from anyone under 18. If you believe a minor has used the app, note that no data leaves the device; deleting the app removes it.
13. Changes to this policy
If we change this policy, we will update the "Last updated" date above and, for material changes, provide a clear in-app notice in your Inbox. Continued use after an update means you accept the revised policy.
14. Contact us
SnipSmart is operated by ArchnaCode LLC, Missouri, United States.
Questions, requests, or appeals: privacy@snip-smart.com. We aim to respond within the time required by applicable law (generally 45 days in the US, and one month under the GDPR).