Privacy Policy

Last updated: December 13, 2024

Introduction

DiaBuddy ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our mobile application ("the App") and related services.

Information We Collect

Information You Provide

  • Account Information: Name, email address when you create an account via Google Sign-In or Apple Sign-In
  • Profile Data: Age, weight, height, activity level, and dietary preferences
  • Food Records: Photos and data about food you scan or log
  • Health Information: Diabetes status and related health metrics (optional, provided at your discretion)

Automatically Collected Information

  • Usage Data: How you interact with the App, including features used, session duration, and in-app actions
  • Device Information: Device type, operating system version, unique device identifiers, language settings
  • Camera Access: Only when you actively use the food scanning feature; images are processed and not stored permanently on our servers
  • Location Data: Approximate location (when permitted) to provide localized nutritional information for regional food products
  • Crash and Performance Data: Error logs and performance metrics to improve App stability

How We Use Your Information

We use your information to:

  • Provide personalized nutrition analysis and recommendations
  • Calculate calorie and nutrient intake using AI-powered analysis
  • Generate food insights and dietary suggestions
  • Track your nutrition history and generate analytics
  • Improve our services, AI models, and user experience
  • Send important updates about your account and the service
  • Send push notifications (meal reminders, progress updates) if you opt in
  • Process payments for premium subscriptions

Third-Party Services

We share data with the following third-party services, each of which provides protections consistent with this Privacy Policy:

  • Google Gemini (AI Analysis): Food images are sent to Google's Gemini API for nutritional analysis. Images are processed in real-time and are not permanently stored by Google for this purpose.
  • Supabase: Cloud database and authentication services for secure data storage and user account management.
  • RevenueCat: Subscription management and payment processing. RevenueCat processes transaction data through Apple App Store and Google Play Store.
  • Sentry: Error tracking and crash reporting service. Receives anonymized crash data and performance metrics.
  • Apple / Google: Authentication (Sign in with Apple, Google Sign-In) and payment processing for in-app purchases.

Data Storage and Security

  • All data transmission is encrypted using industry-standard TLS/SSL protocols
  • User data is stored in secure cloud infrastructure with access controls
  • Some data is cached locally on your device for offline access using encrypted storage
  • We regularly review our data collection, storage, and processing practices

Your Rights

You have the right to:

  • Access your personal data at any time through the App
  • Request deletion of your account and all associated data (see Account Deletion)
  • Export your data in a portable format
  • Opt out of analytics and non-essential data collection
  • Withdraw consent at any time by adjusting App permissions or contacting us
  • Revoke camera/location access through your device settings at any time

Data Retention

  • Account data is retained while your account is active and for a reasonable period thereafter
  • You can delete your account and all associated data at any time through the App (Settings → Account → Delete Account)
  • Deleted data is permanently removed from our servers within 30 days
  • Some anonymized, aggregated data may be retained for service improvement purposes

Health Data

DiaBuddy may collect health-related information such as diabetes status, dietary restrictions, and nutritional goals. This data is:

  • Provided voluntarily by you
  • Used solely to personalize your experience within the App
  • Never sold to third parties
  • Never used for advertising or marketing purposes
  • Deletable at any time through the App or by contacting us

Children's Privacy

DiaBuddy is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal data from a child under 13, we will promptly delete that information. If you believe a child has provided us with personal data, please contact us at support@diabuddy.app.

International Users

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with applicable data protection laws, including GDPR for users in the European Economic Area.

App Privacy Details (App Store Nutrition Labels)

In accordance with Apple's App Store requirements, we disclose the following data collection practices:

  • Data Used to Track You: None. We do not track you across other companies' apps or websites.
  • Data Linked to You: Contact info (email, name), health & fitness data, user content (photos), usage data, identifiers.
  • Data Not Linked to You: Crash data, performance data.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy in the App and updating the "Last updated" date. Your continued use of the App after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us:

Your privacy matters to us. We are committed to protecting your personal information and being transparent about how we use it.