Privacy Policy

Last Updated:  |  Effective:

Health and Beauty AI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application (the "App").

1. Information We Collect

1.1 Information You Provide Directly

• Account Information: When you sign in using Google or Apple Sign-In, we collect your email address and basic profile information.
• Health and Fitness Data:
  • Food tracking data (calories, macronutrients, micronutrients, meal photos)
  • Weight logs and body composition data
  • Activity and exercise logs
  • Water intake records
  • Sleep logs (duration, quality, factors)
  • Progress photos
  • Supplement logs and stack information
  • Menstrual cycle information (if applicable)
  • Mood, digestion, energy, and skin logs
  • Health goals and daily step progress
• Voice Data: Audio recordings when using voice chat features (Push-to-Talk, Realtime Voice). Audio is processed for transcription and discarded.
• User-Generated Content: Notes, descriptions, journal entries, and other information you enter into the App.

1.2 Information Collected Automatically

• Device Information: Device type, operating system, unique device identifiers, and mobile network information.
• Usage Data: How you interact with the App, features used, and time spent in the App.
• Health Data from Apple Health: Steps, sleep data, weight, and other health metrics you choose to sync (iOS only).

1.3 Information from Device Permissions

The App may request access to:

• Camera: To capture photos of food and supplements for AI analysis
• Photo Library: To select existing photos for food analysis and progress photos
• Microphone: For voice chat features (Push-to-Talk and Realtime Voice modes)
• Health Data (iOS): To sync steps, sleep, and weight data from Apple Health

2. How We Use Your Information

We use the information we collect to:

• Provide Core Services: Track your nutrition, fitness, supplements, and health goals
• AI Analysis: Analyze food photos and text to estimate nutritional content including macros and 20+ micronutrients
• Supplement Intelligence: Detect conflicts, synergies, and optimize supplement timing
• Voice Coaching: Process voice input for AI health coaching conversations
• Personalization: Provide personalized recommendations based on your goals, health conditions, and preferences
• Gamification: Track streaks, award badges, and unlock features based on usage
• Improve the App: Analyze usage patterns to improve features and user experience
• Customer Support: Respond to your inquiries and provide technical support
• Safety and Security: Detect and prevent fraud, abuse, and security issues

3. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Service Providers

We share information with third-party service providers who perform services on our behalf:

• AI Processing: OpenAI and Google (Gemini) for food analysis, supplement intelligence, and coaching. Data is processed per their API terms and not used for model training.
• Backend Services: Your data is stored and processed on secure servers (Vercel, PostgreSQL)
• Error Tracking: We use Sentry to track errors and improve app stability
• Payments: Stripe, Apple App Store, and Google Play for subscription management

3.2 Legal Requirements

We may disclose your information if required by law or in response to valid requests by public authorities.

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

4. Data Storage and Security

• Local-First Architecture: Your data is stored locally on your device first via WatermelonDB, then synced to our servers.
• Encryption: We use industry-standard encryption to protect data in transit and at rest.
• Authentication: We use Firebase Authentication for secure sign-in (email, Google, Apple).
• Single-Device Sessions: Only one active session per account for enhanced security.
• Offline Mode: The App can function fully offline, storing data locally until connectivity is restored.

No method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

5. Your Rights and Choices

You have the right to:

• Access Your Data: View all data associated with your account through the App
• Delete Your Data: Delete your account and all associated data
• Revoke Permissions: Adjust device permissions in your device settings
• Export Your Data: Request a copy of your data in a portable format

To exercise these rights, please contact us at privacy@healthbeauty.app.

5.1 Account Deletion

To request deletion of your account and all associated data, you can:

1. In-App: Go to Settings and tap "Delete Account"
2. By Email: Send an email to privacy@healthbeauty.app with the subject "Account Deletion Request"

What Gets Deleted

When you delete your account, we permanently delete:

• Your profile information (name, email, health data, goals)
• All food tracking data (meals, macros, micronutrients, photos)
• All health logs (weight, activity, water, sleep, mood, digestion, energy, skin, menstrual)
• All supplement data (library, check-offs, guru analyses)
• All AI chat conversations and voice interactions
• All goals, daily steps, and progress data
• All progress photos

Data Retention

After account deletion, personal information is permanently removed within 30 days, except where required for legal purposes.

6. Children's Privacy

The App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us immediately.

7. Third-Party Services

The App uses the following third-party services:

• OpenAI: AI food analysis, supplement intelligence, chat coaching, voice processing. See OpenAI's Privacy Policy
• Google Gemini: Alternative AI provider for analysis. See Google's Privacy Policy
• Firebase (Google): Authentication and backend services. See Google's Privacy Policy
• Apple Sign-In: Authentication service. See Apple's Privacy Policy
• Stripe: Payment processing. See Stripe's Privacy Policy
• Sentry: Error tracking. See Sentry's Privacy Policy

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. By using the App, you consent to the transfer of your information to these countries.

9. Data Retention

We retain your information for as long as your account is active or as needed to provide services. If you delete your account, personal information is removed within 30 days, except where legally required.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you by posting the new policy on this page, updating the "Last Updated" date, and notifying you through the App for material changes.

11. California Privacy Rights

California residents have additional rights under the CCPA:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of the sale of personal information (we do not sell your information)
• Right to non-discrimination for exercising privacy rights

12. Contact Us