Privacy Policy
Last updated: February 2026
Your Privacy is Our Core Principle
GoodMyFood is designed from the ground up to be a privacy-first application. We believe your health and nutrition data is deeply personal and belongs to you alone. This policy explains in plain language exactly what data we collect, what we do not collect, and how every piece of information is handled.
1. Overview and Scope
This Privacy Policy applies to the GoodMyFood mobile application ("the App") available on iOS (Apple App Store) and Android (Google Play Store). It describes our practices regarding the collection, use, storage, and protection of information when you use the App.
By downloading, installing, or using GoodMyFood, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with this policy, please do not use the App.
GoodMyFood operates primarily as an offline, on-device application. The vast majority of the App's functionality -- including food tracking, nutrition calculations, A.I-based suggestions, report generation, and health insights -- runs entirely on your device without requiring an internet connection. However, certain optional features do require internet access, and we explain those separately and clearly below.
2. Data That Stays on Your Device (Never Uploaded)
The following categories of data are stored exclusively on your device's local storage. This data is never transmitted to our servers, any third-party servers, or any external service. We have zero access to this information.
Locally Stored Data (Device-Only):
Food & Nutrition Logs
- - All food entries and meal logs
- - Calorie and macronutrient tracking data
- - Micronutrient (vitamin and mineral) data
- - GI/GL (glycemic index/load) calculations
- - Caffeine and hydration tracking
- - Custom food entries and recipes
Health & Profile Data
- - Medical conditions and health ailments
- - Allergies and dietary preferences
- - Body measurements and weight
- - Health goals and targets
- - Mood and cycle/period tracker data
- - Exercise and activity logs
Also Stored Only on Device:
- - A.I-generated food suggestions and recommendations
- - Weekly, monthly, and betterment reports (PDF)
- - App preferences, theme settings, and visual mode selections
- - On-device A.I model data and personalisation parameters
None of the above data is ever uploaded, synced, backed up to our servers, or shared with any third party. If you uninstall the App or lose your device, this data cannot be recovered by us. We strongly recommend using your device's built-in backup features to safeguard your data.
3. Information We Collect and Why
While GoodMyFood is primarily an offline app, we do collect a limited set of information for specific, clearly defined purposes. Here is an exhaustive list of every piece of information we collect:
3.1 Email Address
REQUIRED FOR ACCOUNT CREATION
Your email address is collected during the account registration process. It is used for the following purposes and no other:
- Authentication: To verify your identity when you sign in to the App.
- Account recovery: To enable password reset functionality if you forget your credentials.
- Critical communications only: To notify you of essential account-related matters such as security alerts or significant changes to our terms. We do not send marketing emails unless you explicitly opt in.
3.2 Display Name
PROVIDED DURING REGISTRATION
Your name or chosen display name is collected during registration. It is used solely for:
- Displaying a personalised greeting within the App (e.g., "Hello, [Name]").
- Identifying your profile within the App interface.
- Your display name is never shared publicly, sold, or used for advertising purposes.
3.3 Phone Number (Optional)
COMPLETELY OPTIONAL
You may optionally provide your phone number. If provided, it is used exclusively for:
- Referral bonus-related communications: Sending you notifications or messages about referral rewards when you or someone you referred earns a referral bonus.
- Your phone number is never used for marketing calls, SMS marketing, sold to third parties, or used for any other purpose whatsoever.
If you choose not to provide a phone number, you can still use the App with full functionality. Referral bonus communications will be sent via email instead if a phone number is not available.
3.4 Advertisement Identifier
ANONYMOUS, NON-PERSONAL
We use an anonymous advertisement identifier (such as Apple's IDFA or Google's GAID) strictly for the purpose of serving relevant in-app advertisements. Here is exactly how this works:
- Only an anonymous, device-generated advertising ID is used. This is not your name, email, phone number, or any personally identifiable information (PII).
- We do not link or cross-reference this advertising ID with your email, name, phone number, health data, food logs, or any other personal information.
- The advertising ID is used solely to serve targeted advertisements within the App based on general interest categories -- not based on your health or nutrition data.
- You can reset or disable this advertising ID at any time through your device settings (Settings > Privacy > Advertising on iOS, or Settings > Google > Ads on Android).
- No PII (personally identifiable information) is ever shared with advertising partners. Only the anonymous advertising ID is used.
To be clear: Your food logs, health conditions, dietary preferences, medical data, and nutrition information are never used for advertising purposes and are never accessible to any advertising partner.
4. Online Cloud A.I Features (Internet Required)
GoodMyFood offers two optional features that require an internet connection and involve temporarily sending data to our secure cloud servers for processing. It is important you understand exactly how these work:
4.1 Food Photo Scanning (Cloud A.I)
OPTIONAL FEATURE - REQUIRES INTERNET
When you choose to use the food photo scanning feature, the following process occurs:
- The photo you take or select is sent to our secure cloud A.I servers for food recognition and nutritional analysis.
- The photo is processed in real-time and is not permanently stored on our servers. Once the A.I analysis is complete and the results are returned to your device, the photo is automatically deleted from our servers.
- We do not retain, archive, or use your food photos for any other purpose beyond the immediate A.I analysis you requested.
- The nutritional results returned by the Cloud A.I are stored only on your device as part of your local food log.
- No metadata from the photo (such as location data, timestamps, or device information embedded in the image) is extracted, stored, or used by us.
4.2 Voice Description Logging (Cloud A.I)
OPTIONAL FEATURE - REQUIRES INTERNET
When you choose to describe your food using voice input, the following process occurs:
- Your voice recording is sent to our secure cloud A.I servers for speech-to-text conversion and food identification.
- The audio data is processed in real-time and is not permanently stored on our servers. Once the A.I analysis is complete and the results are returned to your device, the audio recording is automatically deleted from our servers.
- We do not retain, archive, or use your voice recordings for any purpose beyond the immediate A.I analysis you requested.
- We do not use voice recordings to create voice profiles, perform speaker identification, or for any machine learning training purposes.
- The nutritional results returned by the Cloud A.I are stored only on your device as part of your local food log.
Cloud A.I Privacy Summary
- Both photo scanning and voice logging are entirely optional. The App works fully without them using the on-device A.I and manual search.
- Data sent to Cloud A.I (photos and voice recordings) is processed in real-time and deleted immediately after processing. It is never stored permanently.
- Cloud A.I provides approximately 80%+ accuracy. The on-device A.I (which requires no internet) provides approximately 95% accuracy for manual food searches.
- All Cloud A.I communications are encrypted in transit using industry-standard TLS/SSL encryption.
- Cloud A.I processing does not access or use your health profile, medical conditions, food history, or any other locally stored data.
5. How We Use Your Information (Summary Table)
| Data | Purpose | Stored Where | Shared? |
|---|---|---|---|
| Authentication, account recovery, critical notices | Our auth server | Never | |
| Display name | In-app display and personalisation | Our auth server + device | Never |
| Phone (optional) | Referral bonus communications only | Our server (if provided) | Never |
| Ad ID (anonymous) | In-app targeted advertisements | Ad partner (anonymous) | Anonymous ID only |
| Food logs | Nutrition tracking | Device only | Never |
| Medical / health data | Personalised food suggestions | Device only | Never |
| Profile / body data | Calorie/nutrient calculations | Device only | Never |
| Food photos | Cloud A.I recognition (optional) | Temporarily on server, deleted after processing | Never |
| Voice recordings | Cloud A.I food logging (optional) | Temporarily on server, deleted after processing | Never |
6. Personally Identifiable Information (PII) Usage
We want to be very clear about how personally identifiable information (PII) is handled:
PII is used exclusively for in-app functionality:
- Your email address is used only for authentication (sign-in/sign-up), password recovery, and critical account-related notifications. It is never used for marketing (unless you opt in), never shared with third parties, and never sold.
- Your display name is used only to personalise your in-app experience (showing your name within the App). It is never shared externally.
- Your phone number (if provided) is used only for referral bonus communications. It is never used for telemarketing, never shared with third parties, and never sold.
- No PII is ever used in connection with advertising. Advertisements use only an anonymous, non-personal advertising ID.
- No PII is ever combined with health data, food logs, or nutritional information for any purpose.
7. Advertising and Ad Identifier
GoodMyFood may display advertisements within the App. Here is exactly how advertising works:
- We use your device's anonymous advertising identifier (IDFA on iOS, GAID on Android) to serve contextually relevant advertisements.
- This advertising ID is an anonymous, resettable identifier generated by your device's operating system. It is not your name, email, phone number, or any personal data.
- We do not create advertising profiles based on your health data, food logs, medical conditions, dietary preferences, or any data stored locally on your device.
- We do not share any PII with advertising partners. Only the anonymous advertising ID is shared.
- You have full control over this identifier. You can reset it or opt out of personalised advertising entirely through your device settings at any time.
- On iOS: Go to Settings > Privacy & Security > Tracking to manage app tracking permissions.
- On Android: Go to Settings > Google > Ads to reset your advertising ID or opt out of ad personalisation.
8. Data Security
We take the security of your information seriously:
- All data transmitted to our servers (during authentication, Cloud A.I processing, etc.) is encrypted in transit using industry-standard TLS 1.2+ / SSL encryption.
- Authentication credentials are managed through secure, industry-standard authentication protocols. We never store your password in plain text.
- Data stored on your device benefits from your device's built-in encryption and security features (such as iOS Data Protection and Android encryption).
- Cloud A.I data (food photos and voice recordings) is processed in isolated, secure environments and is automatically purged after processing.
- Our servers are hosted in secure, certified data centers with appropriate physical and digital security measures.
- We conduct regular security assessments and follow industry best practices for data protection.
9. Data Retention
On-device data (food logs, health data, profile data, reports, etc.): Retained on your device for as long as you keep the App installed. We have no access to this data and cannot delete or modify it. When you uninstall the App, this data is deleted by your operating system.
Account data (email, display name, phone number if provided): Retained on our authentication servers for as long as your account is active. If you request account deletion, we will permanently delete all account data from our servers within 30 days of your request.
Cloud A.I data (food photos, voice recordings): Not retained. This data is automatically deleted from our processing servers immediately after the A.I analysis is complete and results are returned to your device. Typical processing time is seconds.
Ad identifier: The anonymous advertising ID is not stored by us. It is provided by your device's operating system to the advertising SDK in real-time and can be reset or disabled by you at any time.
10. Third-Party Services
GoodMyFood may integrate with the following categories of third-party services:
Authentication Provider
We use a secure authentication service to manage user accounts. This service only has access to your email, display name, and password hash. It does not have access to any of your health or nutrition data.
Advertising Partners
Our advertising partners receive only your device's anonymous advertising ID for the purpose of serving relevant ads. They do not receive your name, email, phone number, health data, or any PII. Advertising partners are contractually required to comply with applicable data protection laws.
Cloud A.I Processing
Our Cloud A.I service processes food photos and voice recordings for nutritional analysis. Data sent to this service is processed in real-time, not stored permanently, and not used for any purpose beyond the immediate analysis requested.
11. Children's Privacy
GoodMyFood is not directed at children under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us and we will take steps to delete such information from our servers.
Since the vast majority of the App's data is stored only on the device, any locally stored data would need to be removed by deleting or resetting the App on the child's device.
12. Your Rights
Depending on your location and applicable laws (including GDPR, CCPA, and other data protection regulations), you may have the following rights:
- Right to Access: You may request a copy of the personal data we hold about you (limited to email, display name, and phone number if provided, since all other data is on your device).
- Right to Rectification: You may update your email, display name, or phone number through the App's settings at any time.
- Right to Deletion: You may request deletion of your account and all associated data from our servers. On-device data can be deleted by uninstalling the App.
- Right to Data Portability: Since your health and nutrition data is stored on your device, you already have full control and access to it.
- Right to Opt Out of Advertising: You can disable personalised advertising through your device settings at any time.
- Right to Withdraw Consent: You may withdraw consent for optional features (Cloud A.I, phone number) at any time without affecting your ability to use core App features.
To exercise any of these rights, please contact us using the information provided in the Contact section below. We will respond to your request within 30 days.
13. International Data Transfers
If you are using the App from outside the country where our servers are located, please be aware that your account information (email, display name) and any data sent to Cloud A.I features may be transferred to and processed in a different country. We ensure that appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.
14. Permissions We Request
The App may request the following device permissions. All are optional and the App functions without them:
Camera
Only used if you choose to scan food using the photo feature. Never accessed in the background.
Microphone
Only used if you choose to log food via voice description. Never accessed in the background.
Internet / Network
Required for authentication, Cloud A.I features, and ad display. Core features work offline.
Notifications
Optional. Used for meal reminders and health tracking prompts if you enable them.
15. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:
- The "Last updated" date at the top of this policy will be revised.
- For significant changes, we will provide notice within the App.
- Your continued use of the App after changes to this policy constitutes your acceptance of the updated policy.
- We encourage you to review this policy periodically.
16. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us through the support options available on our website or within the App. We are committed to resolving any privacy-related concerns promptly and transparently.