PRIVACY POLICY

1. Introduction

NutriGo is a mobile application developed and operated by Iteration Labs LLC ("we," "us," or "our"). NutriGo collects data to personalize restaurant meal recommendations based on your health goals and dietary preferences. This Privacy Policy explains what information we collect, how we use it, and how we protect it when you use the NutriGo app (the "Service").

2. Information We Collect

Account Information

When you sign in with Apple, we receive your Apple ID, name, and email address (or an Apple-provided relay email). This is used to create and authenticate your account.

Health & Preference Data

To personalize your recommendations, we collect information you provide including: height, weight, health goal (e.g., lose weight, build muscle, maintain), dietary preferences, health strictness level, liked and disliked foods, favorite restaurants, and eating-out frequency.

Usage Data

We collect data about how you interact with the app, including meal views, saves, searches, and chat messages. Usage analytics are tracked via PostHog to help us improve the Service.

Device Information

We collect device model, operating system version, and crash reports via Sentry to diagnose technical issues and improve app stability.

3. How We Use Information

We use the information we collect to:

• Personalize meal recommendations based on your goals and preferences
• Power the AI nutrition chat assistant
• Analyze usage patterns to improve the Service (via PostHog)
• Diagnose and fix crashes and bugs (via Sentry)
• Respond to support requests
• Manage subscriptions and billing

4. Data Storage & Security

Your data is stored in Supabase (PostgreSQL) with Row Level Security (RLS) enabled, ensuring that users can only access their own data. All data is encrypted in transit using TLS and encrypted at rest. We implement reasonable technical and organizational measures to protect your information, though no system is 100% secure.

5. Third-Party Services

NutriGo integrates with the following third-party services, each with their own privacy policies:

• Apple Sign In — authentication
• Supabase — database and authentication infrastructure
• PostHog — product analytics
• Sentry — crash reporting and error tracking
• Superwall — subscription and paywall management
• OpenAI — powers the AI chat assistant. No user data is stored by OpenAI; data is sent only for real-time processing and is not used for model training.

6. Data Retention

We retain your account data for as long as your account is active. If you request account deletion, your data will be permanently deleted within 30 days of the request.

7. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and associated data

To exercise any of these rights, contact us at iterationlabs@proton.me.

8. Children's Privacy

NutriGo is not directed at children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected such information, we will take steps to delete it promptly. This policy is compliant with COPPA (Children's Online Privacy Protection Act).

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes, we will notify you via the app or by email. The "Last updated" date at the top of this page will be revised accordingly. Your continued use of the Service after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or your data, please contact us at iterationlabs@proton.me.