Privacy Policy

1. Information We Collect

1.1 Account Information

When you create an account or sign in, we collect:

• Email address: Used for account authentication and important service communications
• Display name: Provided through Apple Sign-In or Google Sign-In (optional)
• Profile photo: If provided through third-party authentication services
• Authentication tokens: Securely stored to maintain your logged-in session

1.2 Health and Nutrition Information

To provide our core calorie tracking functionality, we collect:

• Food entries: Descriptions of meals and foods you log
• Nutritional data: Calories, protein, carbohydrates, fat, and fiber information
• Weight logs: Your weight tracking history (if you choose to use this feature)
• Physical attributes: Height, weight, age, gender (used for calculating personalized goals)
• Dietary goals: Your daily calorie and macronutrient targets
• Dietary restrictions: Any dietary preferences or restrictions you specify
• Meal timing: Timestamps of when you log food entries

1.3 HealthKit Data (Optional)

With your explicit permission, we may access:

• Weight data: To automatically sync your weight logs
• Active energy burned: To provide more accurate calorie recommendations
• Dietary energy: To read and write nutritional information

Note: HealthKit data is processed entirely on your device and is never transmitted to our servers unless you explicitly enable cloud sync.

1.4 Location Information (Optional)

If you enable location services, we collect:

• Approximate location: Used to provide relevant local restaurant suggestions when analyzing food entries
• Timezone information: To accurately timestamp your entries when traveling

1.5 Device and Usage Information

We automatically collect:

• Device information: Device model, operating system version, unique device identifiers
• App usage data: Features used, screens viewed, time spent in app
• Performance data: Crash reports, error logs, and technical diagnostics
• Notification preferences: Your notification settings and frequency choices

1.6 Subscription Information

For premium features:

• Subscription status: Whether you have an active subscription
• Purchase history: Managed through Apple's App Store (we don't store payment information)
• Product IDs: The specific subscription plan you've purchased

2. How We Use Your Information

We use the collected information for the following purposes:

2.1 Core Functionality

• Provide and maintain our calorie tracking service
• Calculate and display nutritional information
• Generate personalized dietary recommendations
• Sync your data across your devices
• Enable AI-powered food recognition and analysis

2.2 Account Management

• Authenticate and verify your identity
• Manage your account settings and preferences
• Process subscription purchases and renewals
• Send important service notifications

2.3 Service Improvement

• Analyze usage patterns to improve app features
• Develop new features based on user behavior
• Fix bugs and optimize performance
• Conduct research and analytics

2.4 Communication

• Send reminder notifications (if enabled)
• Respond to your support requests
• Provide updates about new features or changes

3. Data Storage and Security

3.1 Where Your Data is Stored

Your data is stored in multiple locations:

• Local Device Storage: All data is initially stored on your device using Core Data and encrypted device storage
• Cloud Storage (Optional): If you enable cloud sync, your data is securely stored on Supabase servers (PostgreSQL database) with end-to-end encryption
• HealthKit (Optional): Health data shared with HealthKit is stored in Apple's secure Health app on your device

3.2 Security Measures

We implement industry-standard security measures to protect your data:

• Encryption in transit: All data transmitted between your device and our servers uses HTTPS/TLS encryption
• Encryption at rest: Your data is encrypted when stored in our database
• Access controls: Row-level security (RLS) policies ensure users can only access their own data
• Secure authentication: We use industry-standard OAuth 2.0 and JWT tokens for authentication
• Regular security audits: We regularly review and update our security practices

4. Third-Party Services

We use the following third-party services to provide and improve our app:

4.1 Supabase (Backend Infrastructure)

• Purpose: Authentication, database storage, and real-time data synchronization
• Data shared: User account information, food entries, weight logs, user preferences
• Privacy Policy: https://supabase.com/privacy

4.2 Perplexity AI (via CloudFlare Workers)

• Purpose: AI-powered food recognition and nutritional analysis
• Data shared: Food descriptions you enter (text only, no personal identifiers)
• Privacy Policy: https://www.perplexity.ai/hub/privacy
• Note: Food descriptions are processed anonymously and are not linked to your personal information

4.3 PostHog (Analytics)

• Purpose: App usage analytics, feature adoption tracking, and error monitoring
• Data shared: App events, screen views, feature interactions (pseudonymized)
• Privacy Policy: https://posthog.com/privacy
• Control: You can disable analytics in the app settings

4.4 Apple Sign-In

• Purpose: Secure authentication without needing to create a password
• Data shared: Apple provides us with a user identifier and optionally your name and email
• Privacy Policy: https://www.apple.com/legal/privacy/

4.5 Google Sign-In

• Purpose: Alternative authentication method
• Data shared: Google provides us with your email address and profile information you choose to share
• Privacy Policy: https://policies.google.com/privacy

4.6 Apple App Store (In-App Purchases)

• Purpose: Process subscription purchases
• Data shared: Apple handles all payment processing; we only receive subscription status information
• Privacy Policy: https://www.apple.com/legal/privacy/

5. Health Data and HealthKit

Our app integrates with Apple HealthKit with your explicit permission. Here's what you need to know:

5.1 What We Do With HealthKit Data

• Read your weight data to automatically populate weight logs
• Write nutritional information from your food entries to HealthKit
• Read active energy burned to help calculate daily calorie needs

5.2 HealthKit Data Privacy

5.3 HealthKit Compliance

In accordance with Apple's HealthKit policies:

• We do not use HealthKit data for advertising, marketing, or data mining purposes
• We do not disclose HealthKit data to third parties without your explicit consent
• We do not sell HealthKit data to third parties including data brokers

6. AI-Powered Food Analysis

Our app uses artificial intelligence to analyze food descriptions and estimate nutritional content.

6.1 How It Works

• When you enter a food description, it's sent to our AI service (Perplexity AI via CloudFlare Workers)
• The AI analyzes the text to estimate calories, protein, carbs, and fat
• Results are cached to improve performance for repeated queries
• Your location (if enabled) may be included to identify local restaurants

6.2 AI Data Privacy

• Anonymized: Food descriptions are sent without personal identifiers
• No account linking: AI requests are not directly linked to your account
• Cached responses: Results are cached locally on your device for faster access

6.3 Offline Functionality

When you're offline:

• Cached food analyses are available
• New entries are stored locally and can be analyzed when you reconnect
• Basic nutrition estimates are generated using on-device algorithms

7. Location Information

Location services are optional and are only used if you explicitly enable them.

7.1 How We Use Location

• Local restaurant identification: To help identify foods from restaurants near you
• Timezone detection: To accurately timestamp entries when you travel
• Regional food variations: To provide more accurate nutrition estimates based on your location

7.2 Location Data Privacy

• Location data is only collected when you're actively using the app
• We only collect approximate location (city/region level), not precise GPS coordinates
• Location data is not stored permanently or shared with third parties
• You can disable location services at any time in iOS Settings

8. Analytics and Usage Data

We use PostHog analytics to understand how users interact with our app and improve the user experience.

8.1 What We Track

• Screen views and navigation patterns
• Feature usage and button clicks
• App performance and error rates
• Time spent in different sections
• Subscription events (purchases, cancellations)

8.2 What We Don't Track

• The specific foods you log
• Your actual weight measurements
• Personal health metrics
• Personally identifiable information in event properties

8.3 Opting Out

You can disable analytics tracking in the app settings under Profile > Privacy. When disabled, we only track essential error reporting to maintain app stability.

9. Your Rights and Choices

You have the following rights regarding your personal information:

9.1 Access and Download

• View your data: Access all your stored information within the app
• Export your data: Download a copy of your data (contact us to request)

9.2 Correction and Updates

• Edit entries: Update or correct any food entry or weight log
• Update profile: Modify your profile information, goals, and preferences at any time

9.3 Deletion

• Delete entries: Remove individual food entries or weight logs
• Delete account: Request complete account deletion, which will permanently remove all your data from our servers within 30 days

9.4 Opt-Out Options

• Notifications: Disable reminder notifications in app settings
• Cloud sync: Use the app in offline-only mode
• Analytics: Disable usage tracking in privacy settings
• Location: Disable location services in iOS Settings
• HealthKit: Revoke HealthKit permissions in iOS Settings

9.5 Account Deletion Process

To delete your account:

1. Go to Profile > Account Settings
2. Tap "Delete Account"
3. Confirm your decision (this action is irreversible)
4. All your data will be permanently deleted within 30 days

10. Data Retention

We retain your information for as long as necessary to provide our services:

10.1 Active Accounts

• Your data is retained as long as your account is active
• Food entries and weight logs are kept indefinitely to maintain your history
• Cached AI responses are kept for 90 days to improve performance

10.2 Inactive Accounts

• Accounts inactive for 3 years may be archived or deleted
• We'll send email notifications before deleting inactive account data

10.3 After Account Deletion

• Personal data is permanently deleted within 30 days
• Anonymized analytics data may be retained for statistical purposes
• Legal and financial records may be retained as required by law

10.4 Backup and Recovery

• Backups are retained for 30 days for disaster recovery
• Deleted data is permanently removed from backups after 30 days

11. Children's Privacy

Our app is not intended for children under the age of 13 (or 16 in the European Union).

• We do not knowingly collect personal information from children
• If you believe we have collected information from a child, please contact us immediately
• Upon verification, we will promptly delete such information

If you are a parent or guardian and discover that your child has provided us with personal information without your consent, please contact us at the email address below.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

12.1 Your California Privacy Rights

• Right to Know: Request information about the personal data we collect, use, and disclose
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt-out of the sale of your personal information (Note: We do not sell personal information)
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

12.2 Categories of Information Collected

We collect the following categories of personal information:

• Identifiers (email, user ID)
• Personal information (name, physical characteristics)
• Protected classification characteristics (age, gender)
• Internet or network activity (app usage, interactions)
• Geolocation data (if enabled)
• Sensory information (voice input, if used)
• Health information (weight, dietary data)

12.3 Do Not Sell My Personal Information

12.4 Exercising Your Rights

To exercise your California privacy rights, contact us at: privacy@kodaapp.com

13. GDPR Rights (European Users)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

13.1 Legal Basis for Processing

We process your personal data based on:

• Contract: To provide the services you've requested
• Consent: When you've given explicit permission (e.g., HealthKit, location)
• Legitimate Interest: To improve our services and ensure security

13.2 Your GDPR Rights

• Right to Access: Obtain a copy of your personal data
• Right to Rectification: Correct inaccurate personal data
• Right to Erasure: Request deletion of your personal data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time (without affecting prior processing)

13.3 Data Transfers

Your data may be transferred to and processed in countries outside the EEA. We ensure appropriate safeguards are in place through:

• Standard Contractual Clauses approved by the European Commission
• Service providers certified under relevant data protection frameworks

13.4 Supervisory Authority

You have the right to lodge a complaint with your local data protection authority if you believe we have not complied with GDPR requirements.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons.

14.1 How We Notify You

• Material changes will be communicated via email or in-app notification
• The "Last Updated" date at the top will be revised
• You may be asked to review and accept the updated policy

14.2 Your Continued Use

By continuing to use the app after changes become effective, you accept the updated Privacy Policy. If you disagree with changes, please discontinue use and contact us about account deletion.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

15.1 Privacy Inquiries

When contacting us about privacy matters, please include:

• Your registered email address
• A description of your request or concern
• Any relevant details that will help us address your inquiry

15.2 Account Deletion Requests

To delete your account, you can:

• Use the "Delete Account" option in the app (Profile > Account Settings)
• Email us at privacy@kodaapp.com with your request

Summary