Privacy Policy

Effective date: February 11, 2026

1. Introduction

NutriLogic Pro ("we," "us," or "our") operates the NutriLogic Pro web application (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. By accessing or using the Service, you agree to this Privacy Policy. If you do not agree, please do not use the Service.

2. Information We Collect

We collect the following types of information:

Personal Information

• Name and email address (provided via Google OAuth sign-in)
• Profile picture URL (from your Google account)
• Billing information (processed securely by Stripe; we do not store your card details)

Food & Nutrition Logs

• Food items you log, including descriptions and nutritional data
• Dietary preferences, health goals, age, weight, height, and activity level
• Personalized meal plans generated from your profile

Automatically Collected Information

• Browser type, device type, and operating system
• IP address and approximate geographic location
• Pages visited and time spent on the Service
• Push notification subscription endpoints (if you opt in)

3. How We Use Your Information

• Provide, maintain, and improve the Service
• Calculate personalized nutrition targets (TDEE, macros) based on your profile
• Generate personalized weekly meal plans
• Send daily nutrition insight notifications (if you opt in)
• Process subscription payments and manage your account
• Respond to support requests
• Comply with legal obligations

4. Third-Party Services

We integrate with the following third-party services:

• Google OAuth — for authentication. Google Privacy Policy
• Stripe — for payment processing. Stripe Privacy Policy
• FatSecret Platform API — for food and nutrition data lookup. FatSecret Privacy Policy
• Cloudflare — for hosting, CDN, and edge computing. Cloudflare Privacy Policy

These services have their own privacy policies. We encourage you to review them.

5. Data Retention

• Free tier: Food logs are automatically deleted after 24 hours. Profile data is retained while your account is active.
• Premium tier: Food logs and all associated data are retained indefinitely while your subscription is active.
• Account deletion: If you request account deletion, we will remove your personal data within 30 days. Some anonymized or aggregated data may be retained for analytics.

6. Data Security

We take reasonable measures to protect your information, including:

• All data transmitted over HTTPS (TLS encryption in transit)
• Data encrypted at rest in our database
• JWT-based session management with secure, HTTP-only cookies
• Stripe webhook signature verification to prevent tampering

No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Your Rights

You have the right to:

• Access — Request a copy of the personal data we hold about you
• Correction — Request correction of inaccurate personal data
• Deletion — Request deletion of your account and personal data
• Export — Request an export of your data in a portable format
• Opt-out — Opt out of push notifications at any time via your browser settings

To exercise any of these rights, contact us at [email protected].

8. Cookies and Local Storage

• Authentication cookies: We use secure, HTTP-only cookies to manage your session after sign-in.
• Local storage: We use browser localStorage to remember your push notification preference (dismissed or accepted).
• No tracking cookies: We do not use advertising or third-party tracking cookies.

9. Children's Privacy

The Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal data, please contact us and we will delete it promptly.

10. International Users

If you are accessing the Service from outside the United States, please be aware that your data may be transferred to and processed in the United States. By using the Service, you consent to this transfer. We endeavor to comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) for users in the European Economic Area and the California Consumer Privacy Act (CCPA) for California residents.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised effective date. Your continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

12. Contact

If you have questions or concerns about this Privacy Policy, please contact us at:
[email protected]