Privacy Policy

The Metrdy mobile app is a bench-side antibody inventory tool. It helps authorized users sign in, review inventory, capture vial information, submit inventory transactions, reserve inventory, edit inventory amounts, run panels, generate flow protocols, and maintain an audit trail.

The app may collect and process the following information:

• Account information: your sign-in email address (Google, Apple, or another supported provider), display name, and the federated user identifier the provider issues to Metrdy. Users who choose Apple's "Hide My Email" option may share a private relay address; you can ask Metrdy support to link the relay to your lab.
• Authorization information: your user role, approved lab assignments, default lab, active lab selection, approval status, and related access-control information.
• Inventory information: vial identifiers, antibody names, vendors, catalog numbers, lot numbers, clone identifiers, fluorophores, storage locations, concentrations, inventory quantities (physical, reserved, and effective available amounts), units, low-stock thresholds, and optimal titers.
• Transaction information: inventory additions, uses, edits (absolute replacements of on-hand amounts), reservations, cancellation of reservations, bulk-use submissions, panel runs, reasons, idempotency keys, timestamps, and before-and-after inventory states.
• Audit information: actor identity, role at the time of action, lab context, transaction result, target inventory record, and timestamp. The mobile app can show you the most recent audit entries for a vial you have access to.
• Image information: when you use the Add Inventory camera flow, the app opens the operating system camera or photo library to capture a vial label, packing slip, receipt, or invoice. The image you choose is uploaded to the Metrdy backend over an authenticated HTTPS connection and then forwarded to Anthropic's Claude vision API to extract inventory fields. The extracted fields are returned for you to review and edit before any inventory record is created. Captured images are not retained by Metrdy after extraction; they are processed and discarded. Anthropic processes the image to produce the structured response and is subject to its own privacy and data handling practices.
• Local secure storage: to give you a usable experience on a slow or offline network, the mobile app keeps an encrypted on-device cache of your last successfully fetched inventory, panels, reservations, panel runs, and your lab selection. This cache is stored using the platform's standard secure storage (Keychain on iOS, EncryptedSharedPreferences on Android) and never leaves the device. Signing out or deleting the app removes the cache.
• Generated documents: when you tap a panel run in the View Protocols screen, the app builds the protocol PDF entirely on your device. The PDF is not uploaded; when you choose Share or Print from the preview, the file is handed to the operating system's share or print system.
• Device and diagnostic information: limited technical information needed to operate, debug, secure, and improve the app, including the app version, platform (iOS or Android), and authenticated request identifiers.

Barcode scanning was previously available in the app. As of the May 2026 release, barcode scanning has been removed: the camera is used only for label / receipt capture and the associated barcode-scanning library has been removed from the app.

To use certain features, the app may request:

• Camera— required to take a new photo for the Add Inventory or Scan Label flows. Used only when you tap a camera action.
• Photo Library— required if you choose to pick an existing photo or PDF rather than taking a new one. Metrdy only reads the file you select.
• Network— required to authenticate, sync inventory, submit transactions, and upload an image for field extraction.
• Notifications(future) — may be requested if Metrdy adds opt-in reminders for reservations or low-stock alerts.

The app does not access your contacts, calendar, microphone, precise or coarse location, health data, motion data, or advertising identifier.

The Metrdy website is used to review inventory, plan panels, inspect titration-related information, manage user approvals, and support lab or organization workflows.

The website may collect and process the following information:

• Login and access information: federated sign-in identity (Google, Apple, or another supported provider), user role, lab access, and approval status.
• Inventory and reservation data: inventory records, reservation records, panel runs, and related lab-level data made available to your account.
• Panel planning information: markers, antibodies, requested quantities, calculated availability, recommendations, and reservation actions.
• Uploaded or entered content: files (images, PDFs), text, or form entries you submit for analysis, planning, or review. Images uploaded to the Add Inventory tool are forwarded to Anthropic's Claude vision API for field extraction and are not retained by Metrdy after extraction.
• Protocol download history: when you download a protocol PDF from the panel planner, the website logs the event (panel name, panel snapshot, and your user id) to your protocol_download_log so you can re-open the PDF later. The logged snapshot is the same panel data you saw at download time.
• Usage and diagnostic information: basic information used to maintain, troubleshoot, and improve the website.

Metrdy uses information to:

• Authenticate users and verify access.
• Determine whether a user is approved to access a lab or organization workflow.
• Display current inventory and reservation information for the lab you have selected.
• Process inventory transactions (Use, Edit, Reserve, Cancel reservation, New stock, bulk Use, Run / Reserve a panel) and update inventory balances.
• Extract inventory fields from photos you choose to upload, so you can save new inventory rows without retyping them.
• Maintain an append-only audit trail for accountability and traceability.
• Generate flow protocols (PDFs) for panels and panel runs.
• Help users identify low stock, reserved inventory, invalid deductions, and items that may need to be ordered.
• Troubleshoot, secure, and improve the app and website.

The Metrdy website authenticates users via Supabase Authentication and federated sign-in (Google, Apple). The mobile app authenticates users via Firebase Authentication and the same federated providers. The backend accepts tokens issued by either provider.

Access to inventory and planning tools is controlled by user approval, role, and lab access settings. Being able to sign in does not automatically grant access to inventory data — you must also be approved in the Metrdy user access system.

Metrdy currently uses third-party services to operate the app and website, including:

• Supabase — primary database (inventory, reservations, panels, panel runs, audit log, protocol download log) and website authentication.
• Google Firebase — mobile app authentication and identity verification.
• Google OAuth and Apple Sign in with Apple — federated sign-in providers.
• Render — cloud hosting for the Metrdy backend API.
• Anthropic Claude— vision model used to extract inventory fields from images uploaded to the Add Inventory tool. Images are sent over HTTPS, processed, and not retained by Metrdy after extraction. Anthropic's own data handling applies during the extraction call.
• Google Drive — community-contributed titration dataset storage (TiterPubs).

Metrdy does not sell personal information.

Metrdy may share or make data available only as needed to:

• Operate the app and website (for example, sending an image to Anthropic for extraction when you choose to upload one).
• Provide authentication, hosting, database, and infrastructure services.
• Allow authorized users within a lab or organization to review inventory information, reservations, panels, panel runs, and audit history for vials they have access to.
• Comply with legal obligations or protect the security and integrity of the service.

Metrdy is designed with role-based access, lab-level authorization, authenticated backend requests over HTTPS, encrypted on-device storage for cached data, and audit logging. Inventory transactions are intended to be traceable through audit records.

No system can guarantee absolute security. Users should protect their sign-in accounts, use approved devices, and report suspected unauthorized access or incorrect inventory activity.

Metrdy retains inventory, reservation, transaction, panel run, and audit information for as long as needed to support lab operations, accountability, troubleshooting, and recordkeeping.

Because audit logs are part of the inventory control and traceability model, they may be retained even when current inventory records are updated, corrected, or when a user account is later deleted. Inventory rows you created remain in your lab so that historical transactions referencing them stay readable.

Images uploaded to the Add Inventory tool are not retained by Metrdy after extraction. The mobile app's on-device cache is cleared when you sign out of the app or delete it from the device.

Users may:

• Request access approval from a lab manager or Metrdy administrator.
• Request correction of profile or lab access information.
• Review inventory records associated with their lab and the audit history for vials they have access to.
• Delete their Metrdy accountfrom inside the mobile app (Settings → Delete account) or the website. Deletion removes your Metrdy profile and your row in the lab roster. Inventory, reservation, transaction, and audit records you created remain in your lab so transaction history is not rewritten, but they will no longer be linked to a signed-in user.

Some records, including transaction and audit records, may need to be retained for integrity, accountability, or operational reasons even after account deletion.

Metrdy is intended for use by researchers, lab personnel, administrators, and authorized organizational users. It is not intended for children.

Metrdy may update this Privacy Policy as the app, website, infrastructure, or data practices evolve. The updated version will be posted on this page with a revised "Last updated" date.

If you have questions about this Privacy Policy or Metrdy data practices, contact:

Richard McShinsky
Email: richard.mcshinsky@metrdy.com