NutriWhisper Privacy Policy

Data We Collect

NutriWhisper collects the following categories of data:

• Profile data (weight, height, age, gender, activity level, calorie and macro goals) — stored locally on your device only
• Food diary entries (food descriptions, estimated calories and macros) — stored locally; text descriptions and food photos are sent to Google Gemini AI when you use AI-powered logging
• Habit tracking data (custom habits, check-ins) — stored locally on your device only
• Health data (steps, weight, sleep, workout activities) — optionally read from Apple Health or Health Connect with your explicit consent; stored and processed locally only
• Barcode numbers — transmitted to Open Food Facts solely to retrieve product nutritional information
• Subscription and purchase status — processed by RevenueCat to verify and manage your in-app subscription

How We Collect Your Data

Data is collected through the following means:

• Information you enter directly (food descriptions, weight, habits, profile settings)
• Photos you take or select for AI food analysis
• Barcode scanning for product lookup
• Integration with Apple Health or Health Connect, only when you explicitly grant permission
• In-app purchases via the App Store, processed by RevenueCat

How We Use Your Data

Your data is used exclusively for the following purposes:

• Providing core app functionality: calorie tracking, macro logging, habit tracking, and health insights
• Analyzing food descriptions and photos via Google Gemini AI to estimate nutritional values
• Retrieving product nutritional information via Open Food Facts when you scan a barcode
• Generating personalized weekly health summaries and AI-powered insights
• Managing your subscription status via RevenueCat

Local Data Storage

All personal data — including your food diary, weight history, habits, and settings — is stored exclusively on your device. No personal data is transmitted to or stored on our servers.

Health Data (Apple Health & Health Connect)

NutriWhisper can optionally be connected to the following health services:

• Apple Health (iOS)
• Health Connect (Android)

The following data types are read: weight, steps, sleep, and workout activities. Weight data can also be written back. These integrations are optional and require your explicit consent. All health data is processed and stored exclusively on your device.

AI-Powered Food Analysis (Google Gemini)

What data is transmitted:

• Food descriptions you type for calorie estimation
• Food photos you take or select for visual analysis
• Aggregated weekly health summaries for AI-generated insights

Who receives this data:

Data is transmitted to Google Gemini AI via the NutriWhisper server. It is processed in real-time to generate nutritional estimates and is not stored on Google's AI systems beyond the duration of the request.

Data protection: Google provides data protection equivalent to or exceeding applicable standards. Google is GDPR-compliant, maintains a Data Processing Addendum (DPA) for European users, and its AI services operate under Google's comprehensive privacy framework. For details, see Google's Privacy Policy: https://policies.google.com/privacy.

Barcode Scanner (Open Food Facts)

When you scan a barcode, only the barcode number is transmitted to Open Food Facts to retrieve nutritional product data. Open Food Facts is a non-profit, open-source food database that does not collect personal data and operates under principles equivalent to applicable data protection standards. Their privacy policy: https://world.openfoodfacts.org/privacy.

Subscriptions & Purchases (RevenueCat)

In-app purchases and subscription status are managed through RevenueCat. To verify your subscription, your anonymized App Store receipt is processed by RevenueCat. RevenueCat is GDPR-compliant and provides data protection equivalent to applicable standards. No personally identifiable information beyond your purchase receipt is shared. RevenueCat's Privacy Policy: https://www.revenuecat.com/privacy.

Data Deletion

Upon uninstallation of the app, all locally stored data is irrevocably deleted. You can disconnect your health data integrations at any time in the app settings.

Contact

For questions about privacy, you can reach us at h.buens03@gmail.com.

Status: February 2026