HealthStacked

Privacy Policy

Last updated: April 2026

What we collect

When you create an account, we collect:

  • Your name, email address, and password (hashed)
  • Your username and public profile information (bio, practice name, social links)
  • The products you save to your stack
  • How you heard about us (referral source)

When you use the platform, we may also collect basic usage data — pages visited, clicks, and session information — to improve the product.

How we use it

  • To operate your account and display your public health stack page
  • To calculate and pay affiliate commissions
  • To send transactional emails (account confirmation, commission updates)
  • To improve the platform and understand how people use it
  • To contact you about your account or important policy changes

We do not sell your personal data to third parties.

What's public

Your stack page at healthstacked.com/yourname is public by default. This includes your name, bio, practice name, social links, and the products on your stack. Your email address and password are never public.

Cookies and tracking

We use cookies to keep you logged in and to track affiliate link clicks for commission attribution. We may use third-party analytics tools (such as Vercel Analytics or Plausible) that collect anonymized usage data. We do not use advertising cookies or sell data to ad networks.

Third-party services

We use Supabase for authentication and data storage, and Anthropic's Claude for our AI recommendation feature. Your queries to the AI assistant may be processed by Anthropic's systems. We recommend you do not share sensitive personal health information in chat.

Data retention and deletion

You can delete your account at any time from your account settings. This will remove your public profile and stack page. We may retain anonymized usage data and records required for accounting purposes (such as commission payment records) for up to 7 years.

Your rights

You have the right to access, correct, or delete your personal data. If you're in the EU or UK, you have additional rights under GDPR including data portability and the right to object to processing. To exercise these rights, email us at hello@healthstacked.com.

Children's privacy

Health Stacked is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has created an account, contact us and we will delete it promptly.

Changes to this policy

We may update this policy as the platform evolves. We'll notify you of significant changes via email. Continued use of Health Stacked after changes take effect means you accept the updated policy.

Contact

Privacy questions? Email hello@healthstacked.com.