Privacy Policy

1. Introduction

WeightBuddy ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information when you use our mobile application.

2. Information We Collect

We collect the following information that you provide directly:

• Account Information: Email address and password when you create an account.
• Profile Information: Name, age, current weight, goal weight, and health conditions you choose to share.
• Food & Exercise Logs: Descriptions of food eaten and exercises performed, along with estimated calories.
• Weight Entries: Weight measurements you record over time.
• Voice Recordings: Audio recordings are processed for speech-to-text transcription and are not stored after processing.

3. How We Use Your Information

We use your information to:

• Provide and personalise the WeightBuddy service, including calorie tracking and progress reports.
• Process voice input into text using third-party transcription services.
• Generate spoken feedback using text-to-speech services.
• Parse food and exercise descriptions using AI services to estimate calories.
• Monitor app stability and fix crashes (via Sentry crash reporting).

4. Third-Party Services

We use the following third-party services to operate the app:

• Supabase: Authentication and secure database storage. Your data is stored in Supabase's infrastructure with row-level security.
• OpenAI: Food and exercise parsing, AI routing, and text-to-speech. Text data is sent to OpenAI's API for processing. Voice recordings are not sent to OpenAI.
• Groq: Voice transcription. Audio recordings are sent to Groq's Whisper API for speech-to-text conversion and are not retained.
• Sentry: Crash reporting and error monitoring. No personal health data is sent to Sentry, only technical error information.

5. Data Storage & Security

• Your data is stored securely in Supabase's cloud database with row-level security (RLS), meaning only you can access your data.
• API keys and credentials are stored server-side and never included in the app itself.
• All communication between the app and our servers is encrypted using HTTPS/TLS.
• Voice recordings are processed in real-time and not stored on our servers.

6. Your Rights (GDPR)

If you are located in the European Economic Area (EEA) or the United Kingdom, you have the following rights:

• Access: You can export all your data at any time using the "Export My Data" feature in Settings.
• Rectification: You can update your profile information and correct entries at any time.
• Erasure: You can delete your account and all associated data using the "Delete Account" feature in Settings.
• Portability: The data export feature provides your data in a standard JSON format.
• Objection: You can stop using the app at any time and request deletion of your data.

7. Data Retention

We retain your data for as long as your account is active. When you delete your account, all your personal data (profile, food entries, exercise entries, and weight entries) is permanently deleted from our servers.

8. Children's Privacy

WeightBuddy is not intended for children under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us to have it removed.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes through the app or via email. Continued use of the app after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

Email: privacy@weightbuddyapp.com