Privacy Policy

The privacy policy that applies to every app in the Vault Engine portfolio.

Last updated: 2026-05-27

Peptide VaultPrivate peptide regimen tracker · iOS

TRT VaultTRT tracking for men on physician-prescribed therapy · iOS

GLP-1 CompanionPrivate GLP-1 dose + progress tracker · iOS

No Contact CompanionPrivate no-contact streak, urge, and journal support · iOS

SnapSafePrivate family photo vault · iOS

Offer BossPrivate job offer and raise negotiation toolkit · iOS

Tiny LegacyPrivate guided childhood memory camera · iOS

Mog LabPrivate selfie score and appearance read · iOS

Every app listed above is built by Jacob Teague. This page explains what data each app collects, how it is stored, and what rights you have. Most Vault Engine apps are local-first. Mog Lab is also local-first by default, but it includes optional AI photo features that can send a selected photo to a server-side AI provider only after you explicitly choose that option.

What we collect

Most app data stays locally on your iPhone. There is no account to create. We do not sell personal information, publish user scores, or share user-entered app content with other users.

Specifically, the following stays on your device only:

Regimen entries (compounds, doses, frequency, time)
Dose logs (timestamps, injection sites, notes)
Bloodwork entries (lab markers, values, dates, notes)
Journal entries
No-contact streaks, unsent letters, urge logs, trigger entries, check-ins, and reset history
Photos stored in SnapSafe
Offer comparisons, compensation inputs, walk-away numbers, negotiation notes, and copied scripts
Tiny Legacy child profiles, guided memory photos, kid quotes, notes, story cards, reminders, and timeline entries
Mog Lab scan history, saved scores, profile answers, progress history, and generated fix lists
Subscription status
Any preferences or settings

All of this is kept in iOS's local AsyncStorage or on-device file system, protected by your device passcode and Apple's app sandbox.

Mog Lab photo, face, and AI data

Mog Lab is a personal photo-coaching app. It generates a private Mog Score and appearance read for your own photos. Mog Lab does not identify you, verify identity, create a biometric template, unlock the app by face, or compare you to other users.

What face data Mog Lab collects

Live camera face grid: on supported iPhones, Apple Vision face landmarks may be used on-device to draw the live selfie grid. These landmarks are transient, are not saved, and are not sent to our server or to third parties.
Selected or captured photo: if you choose a selfie or photo, the app uses that image to create your requested scan result. The image may contain your face.
Local pixel evidence: the app may calculate non-identifying photo evidence such as brightness, contrast, sharpness, crop, approximate face position, and skin-read evenness proxies.
Generated scan result: the app stores the score, lever scores, notes, and fix list for your scan history on your device.

Optional AI photo read

Before any selected or captured photo is sent for AI analysis, Mog Lab shows an in-app permission screen. You can choose Use AI photo read or Use local scan only. If you choose local scan only, the photo is analyzed on-device and is not sent to the Mog Lab AI endpoint.

If you choose Use AI photo read, the app sends the selected or captured photo, its file type, and local pixel evidence to the Mog Lab endpoint at vault-privacy.vercel.app/api/mog-appearance-read. That endpoint forwards the request to the OpenAI API to generate the appearance read. OpenAI receives the image and prompt for the purpose of returning scores, evidence notes, a summary, and a fix list for that scan.

Optional Max Potential Preview

Mog Lab may offer a paid Max Potential Preview. This feature is not automatic. It requires paid access and an explicit tap on Generate Preview after a scan. The preview is an AI-edited photo concept showing how lighting, grooming, style, expression, camera distance, and background could improve the same person's presentation. It is not a guarantee, medical claim, surgery claim, identity verification feature, or a different person.

If you choose Generate Preview, the app sends the selected or captured photo, file type, scan score context, fix-list context, local face evidence, and a purchase/app account identifier to vault-privacy.vercel.app/api/mog-max-potential-preview. The endpoint uses OpenAI as the image service provider to return the requested preview. The app and endpoint reject no-face inputs before image generation. The app caches one generated preview for the account so repeated views can reuse the result instead of generating again.

How Mog Lab uses face data

To draw the live selfie guide on your face while the camera is open.
To calculate your private Mog Score, 8-part appearance read, Glow-Up Potential, and 7-day fix list.
To generate a paid Max Potential Preview only when you explicitly request it.
To save your own local scan history and compare your latest scan to your own past scans.

Mog Lab does not use face data for advertising, ad attribution, identity verification, surveillance, user-to-user ranking, public voting, or sharing with other users.

Sharing and storage

Other users: Mog Lab does not share photos, scores, ratings, or scan results with other users.
Ad networks: TikTok App Events and any other ad attribution events are sent only after App Tracking Transparency consent, and never include photos, image URIs, scores, profile answers, face landmarks, biometric templates, names, emails, phone numbers, contacts, or scan content.
Mog Lab server: the AI photo-read endpoint is stateless for the photo read, uses Cache-Control: no-store, and does not intentionally store uploaded photos. The Max Potential Preview endpoint may keep a temporary in-memory generated-preview cache for account reuse, but no durable server database is used for uploaded photos.
OpenAI: OpenAI processes optional AI photo-read and Max Potential Preview requests as our AI service provider. The photo-read request is sent with store: false. OpenAI states that API data is not used to train models by default unless the API customer opts in, and API abuse-monitoring logs may be retained for up to 30 days unless a different retention control applies.
Your device: scan history, scores, generated notes, local photo references, and cached Max Potential Preview output stay on your device until you delete the app or clear app data.

OpenAI data information: OpenAI API data controls.

Attribution and app analytics

Some Vault Engine apps may use App Tracking Transparency-gated attribution tools, including AppsFlyer and TikTok App Events, to understand which marketing campaigns lead to installs and where people stop in the app flow. When enabled, these tools may receive device identifiers and privacy-safe product interaction events such as app open, onboarding step, paywall view, purchase attempt status, or feature start.

Tiny Legacy uses AppsFlyer for install attribution and sanitized funnel measurement. Tiny Legacy does not send AppsFlyer child names, child birth years, quotes, notes, photos, photo URIs, memory text, story-card content, reminder text, contacts, email addresses, phone numbers, or account information. Tiny Legacy has no account system and no cloud sync in the current app version.

In-app purchases and subscriptions

Paid subscriptions and one-time purchases are processed by Apple through the App Store. The app receives a purchase status signal from RevenueCat, the purchase management provider, which relays purchase receipts from Apple. RevenueCat does not receive any of your regimen, health, bloodwork, photo, negotiation, childhood memory, quote, or personal journal data.

The data flow for a subscription purchase is:

Apple processes your payment and returns a purchase receipt.
RevenueCat validates the receipt on our behalf and tells the app whether your purchase or subscription is active.
We learn that you purchased — not what you entered in the app.

Health app disclaimer

These apps are passive tracking tools. They are not medical devices and do not provide medical advice, diagnosis, or treatment. Only use them to log regimens, doses, or activities that have been directed by a licensed healthcare provider or that you have independently chosen to track for personal reference. Always consult a qualified healthcare provider before starting, changing, or stopping any protocol.

No Contact Companion disclaimer

No Contact Companion is a private behavior-support and journaling utility. It is not therapy, mental-health treatment, diagnosis, crisis support, relationship counseling, or emergency support. The app does not import contacts, read messages, monitor social accounts, or track another person.

Offer Boss disclaimer

Offer Boss is an educational negotiation preparation tool. It does not provide legal, financial, tax, employment, recruiting, or career advice and does not guarantee salary increases, job offers, promotions, raises, or employment outcomes.

Your rights

Delete your data: delete the app from your device — everything goes with it. You can also clear data without deleting the app (Settings → Data → Wipe All).
Export your data: each app supports CSV/JSON export from Settings → Data → Export.
Opt out: in Mog Lab, choose Use local scan only to skip AI photo upload for a scan. Do not tap Generate Preview if you do not want a photo sent for Max Potential Preview generation.

Children

These apps are not directed to children under 13. We do not knowingly collect information from children.

Changes to this policy

If this policy changes, we will update the "Last updated" date at the top of this page and publish the change history in the changelog. Material changes will also be surfaced in the app on next launch.

Contact

For any question about privacy, data handling, or data deletion requests: jacobteague50@gmail.com.

On X: @thatdadjacob