Your Privacy Matters

Information We Collect

Account Data

When you create a Metriqon account, we collect information through Clerk authentication:

• Full name and email address
• Google account information (if you sign up with Google)
• Account creation and login activity

Body Metrics & Health Data

When you use the metabolic calculator, you voluntarily provide:

• Age, gender, and height
• Current weight and goal weight
• Activity level
• GLP-1 medication status (if applicable)

This is sensitive health data, and we treat it with the highest level of care and confidentiality.

Metabolic Analysis Results

Our system calculates and stores:

• Basal Metabolic Rate (BMR) and Total Daily Energy Expenditure (TDEE)
• Lean mass risk scores and metabolic age
• Personalized protein targets and nutrient recommendations
• Historical analysis records for progress tracking

Payment Data

For subscription billing, we collect:

• Subscription tier and billing frequency
• Billing name and address
• Payment processing through Stripe

Stripe handles all payment card details securely. We never store, process, or have access to your credit card numbers.

Usage Data

We automatically collect:

• Number of analyses performed
• Feature usage patterns
• Report generation and exports
• Timestamps and frequency of login

Technical Data

Our servers and CDN collect:

• IP address and location data
• Browser type and version
• Device information (OS, screen size)
• Cookies and session tokens (for authentication)

How We Use Your Data

Core Service Delivery

We use your data to:

• Perform accurate metabolic calculations personalized to your body and activity level
• Generate science-backed health insights and recommendations
• Create AI-powered meal plans tailored to your metabolic profile
• Generate PDF reports you can share with healthcare providers
• Track your metabolic progress over time via your dashboard

Account Management

• Authenticate and manage your account securely
• Process and manage your subscription and billing
• Send you important account notifications (password resets, billing updates)

Product Improvement

• Analyze usage patterns to improve our metabolic algorithms
• Identify and fix bugs and technical issues
• Develop new features based on user feedback and behavior
• Improve the accuracy and relevance of our calculations

Legal & Security

• Comply with applicable laws and regulations
• Prevent fraud and detect security threats
• Enforce our Terms and Conditions

We do not use your data for direct marketing, advertising, or spamming without your explicit consent.

Third-Party Services

Metriqon uses carefully selected third-party services to deliver our platform. These vendors process limited data on our behalf:

Clerk (Authentication)

• Manages secure user authentication and login sessions
• Handles Google OAuth connections
• Processes: name, email, authentication tokens
• Clerk Privacy Policy

Stripe (Payment Processing)

• Processes all subscription payments securely
• Manages billing and payment method storage
• Processes: billing name, address, subscription tier
• Credit card data is never accessible to Metriqon
• Stripe Privacy Policy

Cloudflare (CDN & Hosting)

• Delivers our website and application globally
• Provides DDoS protection and firewall security
• Processes: IP address, request logs, performance metrics
• Cloudflare Privacy Policy

Neon PostgreSQL (Database)

• Stores user profiles, metabolic analyses, and health data
• Provides database backups and recovery services
• Processes: all user account and health information
• Neon Privacy Policy

Data Sharing Policy

We strictly limit data shared with third parties to only what is necessary for them to provide their services. We do not sell or share your personal data with other companies for marketing, advertising, or any other purpose. All third parties are contractually bound to protect your data.

Data Storage & Security

Where Your Data Is Stored

• User profiles and metabolic analyses are stored on Neon PostgreSQL
• Application code and static assets are served through Cloudflare Workers
• Session tokens and authentication data are managed by Clerk
• Payment information is processed and stored by Stripe

Encryption & Protection

• All data in transit is encrypted using HTTPS/TLS 1.2 or higher
• Database connections use encrypted tunnels
• Session authentication tokens are securely generated and managed
• Health data receives additional security attention due to its sensitive nature

Access Controls

• Only authorized Metriqon team members can access data management systems
• All access is logged and monitored
• You can only access your own account data

Security Practices

• Regular security updates and patches
• Vulnerability scanning and penetration testing
• Secure coding standards and code reviews
• Data backups with encryption and recovery procedures

While we implement industry-standard security measures, no system is 100% secure. We encourage you to use a strong password and enable two-factor authentication (if available) on your account.

Your Rights

Universal Rights

You have the right to:

• Access: Request a copy of all data we hold about you
• Rectification: Correct inaccurate or incomplete information
• Deletion: Request deletion of your account and all associated data
• Export: Download your analysis history and reports in PDF format
• Opt-out: Unsubscribe from non-essential communications

Regional Regulations

Depending on your location, additional rights may apply:

GDPR (EU & UK Users)

• Right to data portability - receive your data in a structured format
• Right to restrict processing - limit how we use your data
• Right to object - opt out of certain types of processing
• Right to withdraw consent - revoke consent at any time
• Right to lodge a complaint with your data protection authority

PDPA (Singapore Users)

• Right to know if your personal data has been collected and used
• Right to withdraw consent
• Right to correct inaccurate data
• Right to request we stop collection or disclosure

Australian Privacy Act (Australian Users)

• Right to access and correct personal information
• Right to complain about privacy violations
• Right to request not to receive marketing communications

Exercising Your Rights

To exercise any of these rights, contact us at metriqon.support@thinkrium.ai. We will respond to your request within 30 days or as required by applicable law.

Cookies

Essential Cookies

We use minimal, essential cookies for authentication and functionality:

• Clerk Session Cookies: Maintain your authenticated login session
• CSRF Tokens: Protect against cross-site request forgery attacks

No Tracking or Advertising Cookies

We do not use:

• Advertising or third-party tracking cookies
• Google Analytics or similar tracking pixels
• Behavioral tracking or retargeting cookies

Your Cookie Choices

You can control cookies through your browser settings. However, disabling essential cookies may prevent you from logging in or using Metriqon.

Data Retention

While Your Account Is Active

• Account data (name, email) is retained to maintain your account
• Metabolic analyses and health data are retained for your progress tracking and dashboard
• Subscription and billing history is retained for accounting and legal purposes

Account Deletion

When you request to delete your account:

• Your personal data will be permanently deleted from our systems
• You will no longer be able to access your analyses or reports
• This action cannot be undone - we recommend exporting reports before deletion
• Deletion may take up to 30 days to complete across all systems

Legal & Compliance

We may retain certain data longer if required by law, such as:

• Billing and tax records (typically 7 years)
• Security logs for fraud prevention
• Data needed to resolve disputes or legal claims

Children's Privacy

Metriqon is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a user under 18, we will delete it immediately and notify the parent or guardian. If you believe a child's data has been collected, please contact us immediately at metriqon.support@thinkrium.ai.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Post the updated policy on this page
• Update the "Effective Date" below
• Notify you via email if the changes are significant

Your continued use of Metriqon after changes become effective constitutes your acceptance of the updated policy. We encourage you to review this policy periodically to stay informed about how we protect your data.

Contact Us

If you have questions, concerns, or requests related to this Privacy Policy, our data practices, or your personal information, please reach out:

Email

metriqon.support@thinkrium.ai

Support & Resources

Visit our Support Page for FAQs and additional assistance.

Company

Thinkrium (Singapore)
Metriqon is an AI-powered metabolic intelligence platform by Thinkrium.

Effective Date: March 31, 2026