Privacy Policy

Last updated: March 2026

1. Overview

Dossi is an open-source, DIY automated insulin delivery system. This privacy policy explains how Dossi handles your health data.

Critical: Dossi is not FDA approved or cleared. It is an open-source DIY system that you build, install, and operate yourself. You are responsible for your own diabetes management and use of Dossi.

2. What Data Dossi Collects

Dossi collects the following health data to function as an automated insulin delivery system:

3. Where Your Data Stays

By default, all your data stays on your iPhone. Dossi uses Apple's SwiftData framework to store everything locally. Your glucose, insulin, and health information never leave your device unless you explicitly authorize it.

4. Cloud Sync (Optional)

Dossi offers optional cloud sync via Supabase for:

Cloud sync is entirely optional. If you don't enable it, no data leaves your device. If you do enable it:

5. Authentication

If you use Supabase cloud sync, Dossi requires authentication (email/password or OAuth):

6. HealthKit Integration

Dossi integrates with Apple HealthKit to read:

Dossi requests explicit permission for each HealthKit data type. You control what Dossi can read. All HealthKit data stays on your device.

7. Learning & Personalization

Dossi learns your personal insulin sensitivity and patterns by analyzing your glucose outcomes. This learning:

8. Audit Logging

Dossi maintains an immutable audit log of:

This log is for your review and documentation. It never leaves your device unless you export it manually.

9. Data Sharing & Third Parties

Dossi will never sell, rent, or trade your health data. Ever.

The only way your data is shared:

10. Data Retention

You control your data retention:

11. Security

Local storage: Your iPhone's built-in encryption protects local data (Secure Enclave).

Cloud storage: Supabase uses industry-standard encryption in transit (TLS) and at rest.

Authentication: Passwords are hashed. Dossi uses biometric authentication (Face ID/Touch ID) for insulin delivery.

Open source: Because Dossi is open-source, anyone can audit the code to verify security practices.

12. Regulatory Status

Dossi is not FDA approved or cleared. It is open-source software created by the community. Users are responsible for:

13. Your Rights

You have the right to:

14. Changes to This Policy

Dossi may update this privacy policy as features or practices change. Changes will be posted here with a new "last updated" date. Your continued use of Dossi after changes constitutes acceptance of the updated policy.

15. Contact

Questions about your privacy or this policy? Contact us at team@hellodossi.com.

Remember: Dossi is a tool to assist with diabetes management. It is not a replacement for professional medical advice. Always consult your healthcare provider about your diabetes care.