Privacy & data use

Privacy Policy

Health and nutrition data are sensitive. NutritionIQ is built to collect only what we need, protect it as carefully as we can, and never sell it. This page explains what we collect, how we use it, and the choices you have.

Last updated: December 7, 2025

1. Who We Are & Scope

This Privacy Policy applies to the NutritionIQ iOS app and any related services that link to or reference this policy (collectively, the “Services”). By using NutritionIQ, you agree to the practices described here.

If you have questions about this policy or your data, you can contact us at:

Email: info@nutritioniq.app

2. Information We Collect

We group your data into categories to make this easier to read.

2.1 Account & Identification Data

We may collect:

  • Email address (for login, support, or account recovery)
  • Internal user IDs (e.g., Supabase user ID, CloudKit ID)
  • Authentication and refresh tokens
  • Subscription status (free vs. Pro)

Purpose: To create and secure your account, sync data across sessions, and manage your subscription.

2.2 Profile & Body Metrics

To personalize your targets, we may collect:

  • Biological sex / gender (as you define it in the app)
  • Age or date of birth
  • Height
  • Weight and weight history
  • Body fat %, if you choose to enter it
  • Activity level
  • Goal (lose, maintain, gain)
  • Pace (how quickly you want to change)

Purpose: To calculate calorie and macronutrient goals, show progress, and tailor guidance.

2.3 Meal Data & Photos

When you log meals, we may collect:

  • Meal photos you upload
  • Meal titles, descriptions, and notes
  • Nutrition estimates (calories, protein, carbs, fats, fiber, sugars, sodium, potassium, etc.)
  • Time and date of each meal
  • Derived insights such as streaks, daily summaries, and coach feedback

Storage: Meal data and photos are stored in our backend, currently using Supabase/Postgres and secure object storage. Files are kept in non-public buckets and accessed via signed URLs.

Purpose: To track your intake over time, show you patterns, and power features like daily ranges, streaks, and summaries.

2.4 Health Data (Apple Health / HealthKit)

If you choose to connect Apple Health/HealthKit, we may request permission to read specific health data types, such as:

  • Weight and weight history
  • Body fat percentage
  • Height

We can only access the data types you explicitly allow through the iOS Health permission screens. You can change these permissions at any time in the Health app.

Purpose: To automatically populate or update your profile metrics and reflect your actual progress without requiring manual entry.

We do not use HealthKit data for advertising, and we do not sell data obtained from HealthKit.

2.5 Subscription & Purchase Data

For in-app purchases and subscriptions, we may collect:

  • Product identifiers (e.g., monthly or annual Pro plans)
  • Purchase and subscription status (active, expired, trial)
  • Limited transaction metadata from Apple (e.g., transaction ID, country, currency)

We do not see or store your full payment card details; payments are processed via Apple’s App Store.

2.6 Usage & Analytics Data

To understand how NutritionIQ is used and improve it, we may collect:

  • Screens and features you interact with
  • Session duration and high-level interaction patterns
  • Timestamps for events like “app opened” or “meal logged”
  • Crash reports and performance diagnostics

Some analytics come from Apple (if you opt in at the system level); others are generated by our backend logs.

2.7 Device & Technical Data

We may collect:

  • Device model, OS version, and app version
  • Device language and region settings
  • IP address and approximate location (country/region)
  • Anonymous internal identifiers used to secure and operate the app

2.8 Support & Communication Data

If you contact us for support, we may collect your email address and any information you provide, such as screenshots or logs, solely to respond and troubleshoot.

3. How We Use Your Information

We use your data to:

  • Provide and maintain the Services
  • Personalize targets and insights to your body and goals
  • Analyze meals and generate nutrition estimates and coaching tips
  • Sync with Apple Health where you’ve granted permission
  • Monitor and improve performance and reliability
  • Protect against fraud, abuse, and security threats to you or the Service
  • Comply with legal obligations and enforce our terms

We do not use your personal data for third-party advertising networks.

4. How We Use AI Providers (OpenAI & Gemini)

NutritionIQ uses third-party AI services (OpenAI and Google Gemini) to analyze meals and generate insights.

4.1 What We Send

Depending on the feature, we may send:

  • Meal photos you submit
  • Text you provide about the meal (e.g., “poke bowl with brown rice, salmon, avocado”)
  • Minimal contextual info needed to improve analysis (such as your daily calorie target)

We do not intentionally send your name, email address, or other direct contact details in standard AI calls.

4.2 Important Note About Photos & Text

Meal photos and notes can sometimes contain personal information (for example, faces, documents in the background, or your home environment). To protect your privacy, you should avoid including anything sensitive or unrelated to the meal in your photos or notes whenever possible.

4.3 Provider Practices

OpenAI and Google specify their own data-handling practices for API customers. In general, they may temporarily retain inputs and outputs to provide the service, monitor for abuse, and improve safety. We rely on their published terms and controls but do not operate their systems ourselves.

We configure these integrations to the most privacy-protective options that still allow NutritionIQ’s features to work.

4.4 Your Choices

  • If you are uncomfortable sending photos to AI providers, you can choose not to upload meal photos and log manually instead.
  • If you prefer not to use AI-powered features at all, you can limit your use to features that do not trigger AI analysis.

5. How We Share Your Information

We do not sell your personal data. We share it only with:

  • Service providers that help us run the app (e.g., Supabase for hosting and database, cloud storage, error reporting tools, email providers).
  • AI providers (OpenAI, Gemini) as described above.
  • Apple, for things like in-app purchases, App Store distribution, and platform analytics.
  • Legal and safety recipients when required by law or when necessary to protect our rights, our users, or the public.

Service providers are only allowed to use your data to perform services for us and must protect it appropriately.

6. Data Retention

We keep your personal data only as long as reasonably necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements.

  • Account and profile data: kept while your account is active and for a reasonable period after deletion (for backup and legal requirements).
  • Meal logs and photos: kept while your account is active unless you delete entries or request deletion of your account.
  • Health data copied from Apple Health: stored as part of your profile/history until you delete your account or we no longer need it for the stated purposes.
  • Analytics and logs: retained for a limited time to troubleshoot and understand usage trends.

We may keep de-identified or aggregated data (which does not identify you) for analytics and product improvement.

7. Data Security

We use technical and organizational measures to protect your information, including:

  • Encryption in transit (HTTPS/TLS)
  • Restricted access to production systems and least-privilege access controls
  • Secure storage for photos and files using signed URLs
  • Regular monitoring of logs and errors

No system is perfectly secure, but we work to minimize risk and respond promptly to issues.

8. International Data Transfers

Our infrastructure and some service providers may be located in the United States or other countries. If you access NutritionIQ from outside those regions, your information may be transferred and processed there, where data protection laws may differ from those in your country.

9. Your Rights & Choices

Depending on where you live, you may have rights such as:

  • Accessing the personal data we hold about you
  • Requesting corrections to inaccurate information
  • Requesting deletion of your account and personal data (subject to legal limits)
  • Objecting to or restricting certain types of processing
  • Requesting a portable copy of certain data

You can update most profile information from within the app. To request account deletion or exercise other rights, contact us at info@nutritioniq.app.

You can change Apple Health permissions and delete Health data directly in the iOS Health app; this is separate from any data stored in our backend.

10. Children’s Privacy

NutritionIQ is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided personal information, please contact us so we can delete it.

11. HIPAA and Medical Use

NutritionIQ is a personal wellness and nutrition tool. It is not intended to replace professional medical advice, diagnosis, or treatment, and it is not an electronic health record system.

We are not acting as a HIPAA “covered entity” or “business associate” in the ordinary use of the app. If you are a healthcare professional using NutritionIQ with patients, you are responsible for your own compliance with applicable laws.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date above and, where appropriate, provide additional notice in the app.

If you continue using NutritionIQ after changes are posted, you accept the updated policy.

13. Contact Us

If you have questions, concerns, or requests about this Privacy Policy, you can reach us at:

Email: support@nutritioniq.app

Back to NutritionIQ home →