Privacy Policy

1. Data We Collect

Account Data: Email and name via Apple Sign In, Google OAuth, or email signup. When you use Apple Sign In with the "Hide My Email" option, Apple provides a private relay address instead of your real email — we store only the address Apple supplies.

Health Data: Meal logs, photos submitted for scanning, and weight logs.

Usage Data: Timezone (used for daily quota resets) and subscription status.

AI Usage Data: A log of AI scan requests (timestamp, scan count) used to enforce daily usage limits.

2. Third-Party Services

We share limited data with the following providers to maintain the service:

• Apple: Authentication via Sign in with Apple. Apple may share a private relay email address on your behalf. Apple's privacy policy governs data handled on their side: apple.com/legal/privacy.
• Supabase: Secure database and authentication storage.
• Google Gemini API: Receives images/descriptions for AI nutritional estimation.
• RevenueCat: Manages subscription status and receipts (we do not store your raw payment info).

3. Data Deletion

In compliance with global app store standards, we provide a "Delete Account" feature within the app. Upon initiating deletion, all personal identifiers, meal logs, and weight data are permanently removed from our active databases.

4. Security

We do not sell your health or personal data. We utilize industry-standard encryption and Supabase Row Level Security (RLS) to ensure that only you can access your personal logs.

5. Data Retention

Upon account deletion, your personal data is permanently removed within 30 days, including any database backups.

6. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and data (via in-app Settings → Delete Account)

Questions?

If you have any questions about this Privacy Policy, please contact us at support@firecal.io.