Privacy Policy

1. Introduction

Welcome to InsightBite ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services (collectively, the "Service").

By using InsightBite, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide when using our Service:

• Account Information: Email address, password (encrypted), and optional profile information such as name, age, height, weight, and fitness goals
• Meal Data: Meal descriptions, food items, nutritional information, and meal timing that you input into the app
• User Preferences: Dietary preferences, calorie goals, macro targets, and app settings
• Communications: Messages you send to us through support channels or feedback forms

2.2 Automatically Collected Information

When you use our Service, we automatically collect certain information:

• Device Information: Device type, operating system, unique device identifiers, and mobile network information
• Usage Data: App features used, time spent in the app, interaction patterns, and crash reports
• Analytics Data: We use Mixpanel to collect aggregated and anonymized usage statistics including screen views, button clicks, meal logging activity, feature usage patterns, and app performance data to improve our Service

2.3 AI Processing Information

When you use our AI-powered meal analysis feature:

• Your meal descriptions are processed by OpenAI's API to analyze nutritional content
• We send only the meal description text to OpenAI - no personal identifiers are included
• OpenAI processes this data according to their own privacy policy and data retention practices
• The nutritional analysis results are stored in our secure database associated with your account

3. How We Use Your Information

We use the collected information for the following purposes:

• Service Delivery: To provide, maintain, and improve the InsightBite app functionality
• Meal Analysis: To process your meal descriptions through AI and provide nutritional insights
• Personalization: To customize your experience based on your goals and preferences
• Account Management: To create and manage your account, including authentication and password resets
• Communication: To send you service-related notifications, updates, and respond to your inquiries
• Analytics: To understand how users interact with our app and identify areas for improvement
• Security: To detect, prevent, and address technical issues and potential security threats
• Compliance: To comply with legal obligations and enforce our Terms of Service

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

• Supabase: Our backend infrastructure provider that hosts our database and handles authentication. They process data according to their privacy policy and security standards
• OpenAI: AI service provider that processes meal descriptions to generate nutritional analysis. Only meal text is shared, without personal identifiers
• RevenueCat: Subscription management service that processes payment information and subscription status
• Mixpanel: Analytics service that collects usage data including email address (if you create an account), user ID, device information, and usage patterns to help us improve app features, fix bugs, understand user needs, and optimize performance. Your data is protected and not sold to third parties

4.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to:

• Comply with legal obligations
• Protect our rights, property, or safety, or that of our users
• Prevent fraud or security issues
• Respond to emergency situations

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and your options regarding your information.

5. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: All data transmitted between your device and our servers is encrypted using SSL/TLS protocols
• Password Protection: Passwords are hashed using secure algorithms before storage
• Secure Storage: Data is stored on secure servers provided by Supabase with strict access controls
• Regular Updates: We regularly update our security practices to address emerging threats
• Access Controls: Internal access to user data is restricted to authorized personnel only

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security but will notify you of any data breaches as required by law.

6. Your Rights and Choices

You have the following rights regarding your personal information:

6.1 Access and Portability

You can access and export your data at any time through the app settings. We will provide your data in a structured, commonly used format.

6.2 Correction

You can update or correct your account information and meal data directly in the app.

6.3 Deletion

You can delete your account and all associated data directly within the InsightBite app or by contacting us:

• Using the "Delete Account" feature in app settings (Profile → Settings → Delete Account)
• Contacting us at support@insightbite.info

Upon deletion, we will remove your personal information from our active databases within 30 days, except where retention is required by law.

6.4 Opt-Out

• Marketing Communications: You can opt out of promotional emails by following the unsubscribe link
• Push Notifications: You can disable notifications in your device settings
• Analytics: You can limit analytics data collection in app settings

6.5 Additional Rights (Depending on Your Location)

If you are in the European Union, California, or other jurisdictions with specific privacy laws, you may have additional rights such as:

• Right to object to processing
• Right to restrict processing
• Right to data portability
• Right to withdraw consent
• Right to lodge a complaint with a supervisory authority

7. Third-Party Services

7.1 OpenAI

We use OpenAI's API to analyze meal descriptions and provide nutritional information. When you submit a meal description, it is sent to OpenAI for processing. OpenAI's privacy policy governs their use of this data. We recommend reviewing OpenAI's privacy policy at https://openai.com/privacy.

7.2 Supabase

Our backend infrastructure is powered by Supabase, which stores your account information and meal data. Supabase implements enterprise-grade security and complies with industry standards. Learn more at https://supabase.com/privacy.

7.3 RevenueCat

We use RevenueCat to manage app subscriptions and in-app purchases. RevenueCat processes payment information through Apple App Store and Google Play Store. We do not store your payment card information. Review RevenueCat's privacy policy at https://www.revenuecat.com/privacy.

7.4 Mixpanel Analytics

We use Mixpanel, a third-party analytics service, to understand how you use our app and improve your experience. Mixpanel collects the following information:

• User Information: Your email address (if you create an account) and user ID
• Usage Data: Screen views, button clicks, meal logging activity, and feature usage patterns
• Technical Data: Device information and app performance data

Purpose: This data helps us improve app features, fix bugs, understand user needs, and optimize performance. Your data is protected and not sold to third parties.

For more information about how Mixpanel handles data, review their privacy policy at https://mixpanel.com/legal/privacy-policy/.

8. Children's Privacy

InsightBite is not intended for use by children under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children under 13. If we discover that we have collected information from a child under 13, we will delete it immediately.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at support@insightbite.info.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws than your jurisdiction.

When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

• Standard contractual clauses approved by regulatory authorities
• Data processing agreements with service providers
• Compliance with applicable data protection frameworks

Our primary service providers (Supabase, OpenAI, RevenueCat) are based in the United States and comply with applicable data protection regulations.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you through the app or via email for material changes
• Provide notice as required by applicable law

Your continued use of the Service after any changes indicates your acceptance of the updated Privacy Policy. We encourage you to review this policy periodically.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

• Email: support@insightbite.info
• Contact Form: insightbite.info/pages/contact
• Response Time: We aim to respond to all inquiries within 48 hours