Privacy Policy

MenoLisa
Macura Solutions LLC
Last Updated: March 31, 2026

1. Introduction

Macura Solutions LLC ("Company," "we," "us," or "our") operates MenoLisa, an educational menopause and perimenopause support application that includes a symptom tracker, AI-powered chatbot (Lisa), lifestyle suggestions, and downloadable health summary reports for you to share with healthcare providers. This Privacy Policy explains how we collect, use, disclose, store, and protect your personal and health-related information when you use our website (menolisa.com), our mobile application, and related services (collectively, the "Service").

MenoLisa is not a medical device and does not provide medical advice, diagnosis, prescription, or clinical decision support. We do not connect to HealthKit, Health Connect, or any external medical devices.

By using MenoLisa, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use our Service. This policy is a non-editable document; the same version is linked from our app, our website, and our store listings (Google Play and Apple App Store).

2. Information We Collect

2.1 Account and Registration Information

When you create an account or register, we collect:

  • Email address — used for authentication (magic link sign-in) and account communication
  • Display name or first/last name — if you provide it
  • Age or age band — for personalization and eligibility (e.g., 18+)

2.2 Health and Symptom Data

We collect health-related data that you voluntarily enter. This data is used only to provide and improve your experience (e.g., patterns, insights, doctor reports) and is not used for advertising or data mining, and we do not sell it. Types we collect include:

  • Symptom logs — Symptom type (including but not limited to: period, hot flashes, night sweats, fatigue, brain fog, mood swings, anxiety, headaches, joint pain, bloating, insomnia, weight gain, low libido, and "Good Day" or other user-defined symptoms), severity (mild, moderate, severe), time of day (morning, afternoon, evening, night), triggers (e.g., stress, poor sleep, alcohol, coffee, spicy food, skipped meal, exercise, hot weather, work, travel, hormonal, unknown), and any notes you add
  • Period and reproductive health data — to the extent you log it as a symptom or in notes
  • Daily mood data — mood ratings (e.g., rough, meh, good, great) and emotional wellness information
  • Sleep-related data — if you log sleep issues, insomnia, or related symptoms
  • Hydration data — water intake you choose to log
  • Onboarding/quiz data — main concerns (e.g., hot flashes, sleep issues, brain fog, mood swings, weight changes, low energy, anxiety, joint pain), severity, how long you've had symptoms, what you've tried, goals (e.g., sleep through the night, think clearly, feel like myself, understand patterns, data for doctor), and similar information you provide during setup

2.3 AI Conversation Data

When you use the Lisa chatbot, we collect and process:

  • Chat messages — your messages and full conversation history with Lisa
  • Health profile context — your age range, menopause stage, main concerns, and health goals
  • Symptom log summaries — recent symptom entries, severity, and triggers

This data is sent to our third-party AI provider, OpenAI, to generate your responses. See Section 5.1 for full details and your consent notice.

2.4 Usage Data and Analytics

When you use our Service, we may collect:

  • How you use the app (e.g., features used, screens visited, actions taken)
  • On our website only: analytics and performance data via Vercel Analytics and Vercel Speed Insights (see Section 5)

2.5 Device and Technical Information

We may collect:

  • Device type, operating system, browser type, and similar technical identifiers
  • Push notification tokens (e.g., Expo Push Token) so we can send you reminders and notifications you have opted into
  • IP address, access times, and log data for security and troubleshooting

3. How We Collect Information

  • Directly from you — when you register, log symptoms, set mood, chat with Lisa, complete the onboarding/quiz, or update preferences
  • Automatically — when you use the app or website (e.g., analytics on the website, device/log data)
  • From third-party services — authentication and session data from Supabase Auth; payment and subscription status from Stripe (see Section 5)

4. How We Use Your Information

  • Provide and operate the Service — run the symptom tracker, mood and hydration tracking, and account management
  • Generate AI (Lisa) responses — use your messages and relevant context (e.g., profile and symptom summaries) to personalize answers and suggestions
  • Generate doctor reports ("What Lisa Noticed") — create summaries of your tracked data for you to share with healthcare providers
  • Send communications — magic link emails, optional daily reminders, weekly insight summaries, trial and subscription notices, and important service announcements
  • Improve the Service — analyze aggregate, anonymized usage to fix issues and develop features
  • Security and compliance — protect against unauthorized access, enforce our Terms, and respond to lawful requests

5. How We Share Your Information

We do not sell your personal or health data. We do not use your health data for advertising or data mining. We share data only as follows:

5.1 Third-Party AI Service — OpenAI (Special Notice)

To generate personalised AI responses and health summaries through the Lisa chatbot, we send the following data to OpenAI, L.L.C. (188 Spear Street, Suite 1700, San Francisco, CA 94105, United States):

  • Your chat messages — the messages you send to Lisa and recent conversation history
  • Your symptom logs — recent symptom entries, severity, triggers, and timestamps
  • Your basic health profile — age range, menopause stage, main concerns, and health goals

How OpenAI uses this data: OpenAI processes this data solely to generate your responses. It is not sold to third parties. OpenAI's data handling is governed by our API agreement with OpenAI and meets equivalent privacy protection standards. You can review OpenAI's Privacy Policy at https://openai.com/policies/privacy-policy.

Consent:By using MenoLisa's AI chat features (Lisa), you consent to your chat messages, symptom logs, and basic health profile being sent to OpenAI for AI processing as described above. You may stop using the AI chat feature at any time to prevent further data sharing with OpenAI.

5.2 Other Service Providers

  • OpenAI — as described in Section 5.1 above.
  • Supabase (Supabase, Inc.) — We use Supabase for authentication (magic links, sessions), database storage (profiles, symptom logs, mood, conversations, preferences, etc.), and server-side logic. Data is stored and processed according to Supabase's infrastructure and privacy practices.
  • Stripe — We use Stripe for subscription billing and payment processing. Stripe receives payment-related data (e.g., payment method, billing details) as needed to process payments. Stripe does not use your health data.
  • Resend — We use Resend to send transactional emails (e.g., magic links, notifications). Resend receives the email address and message content necessary to deliver these emails.
  • Vercel — Our website is hosted on Vercel. Vercel Analytics and Vercel Speed Insights may collect usage and performance data on the website (e.g., pages visited, performance metrics). This applies to website use, not in-app use.
  • Expo (Expo Push Notifications) — We use Expo's push notification service to send reminders and in-app notification content to your device. We send your push token and notification content to Expo's servers so they can deliver the notification.

We require these providers to protect your data under contracts and to use it only for the purposes we specify. We may also disclose information when required by law, to protect rights or safety, or in connection with a merger or sale of assets (with notice and, where required, consent).

5A. Medical Disclaimer

MenoLisa provides wellness and educational information only. Nothing in the app or generated by the Lisa AI assistant constitutes medical advice, diagnosis, or treatment. The AI-generated responses are informational in nature and are not a substitute for professional medical advice.

Always consult a qualified healthcare provider before making any decisions about your health, medications, or treatment. Do not disregard professional medical advice or delay seeking it because of something you read or receive from MenoLisa.

6. Data Storage and Security

  • Encryption — Data in transit is encrypted (e.g., TLS/HTTPS). Data at rest in our database is encrypted using industry-standard measures.
  • Access controls — Access to personal and health data is limited to authorized personnel and systems that need it to operate the Service.
  • Authentication — We use passwordless sign-in (magic links) via Supabase Auth to reduce risks from passwords.

We store data on infrastructure provided by our service providers (e.g., Supabase), which may be located in the United States or other regions. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

7. Data Retention and Deletion

  • Active accounts — We retain your data for as long as your account is active and you use the Service.
  • Account deletion — You may request deletion of your account at any time (e.g., via app settings or by contacting us). When you delete your account, we delete your personal and health data from our systems (including symptom logs, mood, conversations, profile, preferences, push tokens, etc.) and remove your auth account. Deletion is typically completed promptly; some data may remain in backups for a limited period before being overwritten, or as required by law.
  • Legal retention — We may retain certain data longer when required by law, regulation, or legal process.
  • Anonymized data — We may retain anonymized, aggregated data that cannot identify you.

8. Your Rights

Depending on where you live, you may have the right to:

  • Access — Request a copy of the personal data we hold about you
  • Correction — Correct inaccurate or incomplete data (you can edit many items in the app, e.g., symptom entries, mood logs)
  • Deletion — Request deletion of your data; deleting your account accomplishes this
  • Data portability — Receive your data in a portable format (e.g., you can use the health summary / doctor report feature to export a summary of your tracked data)
  • Withdraw consent — Where we rely on consent, you may withdraw it at any time (e.g., disable notifications, delete account)

To exercise any of these rights, contact us at the details in Section 12. We will respond within a reasonable time and in line with applicable law.

8.1 GDPR (European Union / EEA / UK)

If you are in the European Union, European Economic Area, or United Kingdom, we process your data on the basis of contract (providing the Service), consent where applicable, and legitimate interests (security, improvement). You have the right to access, rectify, erase, restrict processing, object, and data portability, and to lodge a complaint with a supervisory authority.

8.2 CCPA / CPRA (California)

If you are a California resident, you have the right to know what personal information we collect and how it is used and shared, to delete your personal information, to correct inaccuracies, and to limit use of sensitive personal information. We do not sell your personal information or use your sensitive health information for advertising. To exercise your rights, contact us at the details in Section 12.

9. Children's Privacy

MenoLisa is not intended for users under 18. We do not knowingly collect personal information from anyone under 18. If you believe we have collected information from a minor, please contact us and we will delete it promptly.

10. International Data Transfers

Your information may be transferred to and processed in the United States or other countries where our service providers operate. By using the Service, you consent to such transfer. We take appropriate safeguards (e.g., contracts, standard contractual clauses where applicable) to protect your information in line with this policy and applicable law.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last Updated" date at the top and, where required or appropriate, notify you via the app or email. Your continued use after the effective date constitutes acceptance of the updated policy. Where the law requires, we will obtain your consent to material changes.

12. Contact Information

For questions, requests, or complaints about this Privacy Policy or our privacy practices:

Macura Solutions LLC
30 N Gould St, Ste N, Sheridan, WY 82801, United States
Email: support@macurasolutions.us

We will respond within a reasonable timeframe.