Privacy Policy
Effective: 28 May 2026 · Last updated: 28 May 2026
Nutripix ("we", "us", "our") is an iOS application provided by Bitforge that helps you track your nutrition by analyzing photos of your meals with AI. This Privacy Policy explains what data we collect, how we use it, who else sees it, and what choices you have.
1. Information we collect
We collect the following categories of data, all linked to your account:
- Email address — for account creation, sign-in, password reset.
- Name (optional) — provided when you sign in with Apple or update your profile.
- User ID — an internal account identifier we issue when you register.
- Device ID (IDFV) — sent with each authenticated API request inside an encrypted
X-Device-Infoheader for request signing and fraud prevention. We do not use it for advertising or cross-app tracking. - Health data — body metrics (weight, height, age, gender), water intake, nutrition history, AI-derived health score, micronutrient signals.
- Fitness data — your activity level and goal (lose / maintain / gain).
- Photos — meal photos you choose to upload for AI nutritional analysis.
- Purchase history — subscription state managed by Apple StoreKit. We never see your card data.
- Diagnostic data — iOS version, app version, device model (not linked to your identity alone).
2. How we use it
- To deliver core app functionality (logging meals, computing nutrition, hitting your goals).
- To personalize your daily calorie and macro targets to your body and goals.
- To authenticate API requests and prevent abuse.
- To validate your subscription with Apple StoreKit.
We do not run ads, do not perform cross-app or cross-website tracking, and do not sell your data.
3. Third parties
- OpenAI — meal photos you upload are sent to OpenAI's Vision API solely for nutritional analysis. OpenAI processes them under their commercial API terms and does not use them to train their models.
- Open Food Facts — when you scan a barcode, we query the public Open Food Facts database to look up product nutrition. We send only the barcode string — no personal data.
- Apple — Sign in with Apple, StoreKit subscription management, and TestFlight beta distribution.
4. Data we do NOT collect
- Location (precise or coarse).
- Phone number, physical address, contacts.
- Audio or microphone.
- Browsing or search history outside the app.
- Crash data or product analytics (no Sentry, Crashlytics, Firebase, etc.).
- Advertising identifiers (IDFA) — we do not prompt for App Tracking Transparency.
5. Retention
Your data lives in your account for as long as the account exists. Meal photos are kept so you can revisit them in your history; you can delete any meal at any time, which also deletes its photo on our servers within 30 days. AI analysis cache entries (image hashes) are kept for 30 days for performance.
If you delete your account from Settings → Profile, we remove your personal data and meal history within 30 days. Backups are purged within an additional 60 days.
6. Your rights
You can access, export, correct, or delete your data at any time from the app (Settings → Data Export, Profile). You can also email us at privacy@nutripix.io for any data-protection request, including objections under GDPR, CCPA, or other applicable law.
7. Children
Nutripix is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe we have such data, email us at privacy@nutripix.io and we will delete it.
8. International transfers
Our backend runs on servers in the European Union. Data sent to OpenAI is processed under their data-processing terms (which include EU–US transfers under the EU–US Data Privacy Framework).
9. Changes to this policy
If we change this policy materially, we will update the "Effective" date at the top and notify users in-app on next launch. Continued use of the app after the change constitutes acceptance.
10. Contact
Bitforge, the developer of Nutripix — reach us at privacy@nutripix.io for any privacy-related questions, or support@nutripix.io for general support.