← Back to Home

Privacy Policy

Last Updated: March 30, 2026

Effective April 1, 2026

1.Introduction

Bodydex ("the App") is operated by Daniel Bobunov ("we," "us," or "our"), an individual developer. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the App.

We are committed to protecting your privacy. Bodydex is built on a local-first architecture — the vast majority of your personal data is stored exclusively on your device and is never transmitted to our servers. We only process data remotely when you explicitly use features that require it (such as AI food scanning or the AI Coach).

By using the App, you consent to the data practices described in this policy.

2.Local-First Architecture

Your data belongs to you. Bodydex stores all core data in an encrypted local database on your device. We do not maintain a centralized user database, and we cannot access your personal data unless you explicitly initiate a feature that requires cloud processing.

The following data is stored exclusively on your device and never transmitted to our servers:

  • User profile information (name, email, physical attributes, goals)
  • All food logs, meal entries, and daily nutritional summaries
  • Weight logs, body measurements, and progress photos
  • Medication, supplement, and peptide schedules and adherence history
  • Recipes and custom food items
  • Exercise and workout logs
  • Dashboard layout preferences and app settings
  • AI Coach conversation history and memory
  • Notification preferences and schedules
  • Behavioral analytics data (food input patterns, feature usage frequency)

Note: As Bodydex evolves, we may introduce optional cloud backup and social features in the future. If and when such features are introduced, this Privacy Policy will be updated accordingly, and any cloud data storage will require your explicit opt-in consent.

3.Data We Collect

3.1 Data You Provide

When you use the App, you may voluntarily provide the following information, which is stored locally on your device:

  • Account Information: Name, email address (via Apple or Google Sign-In)
  • Physical Profile: Height, weight, age/date of birth, biological sex, activity level
  • Health Goals: Target weight, dietary goals, goal speed, diet type, motivations, obstacles, cooking frequency
  • Food Data: Food log entries, meal photos (for AI scanning only), recipes, custom food items
  • Health Tracking: Weight logs, body measurements, progress photos
  • Protocol Data: Medications (including optional prescribing doctor name), supplements, peptides, dosage schedules, adherence logs
  • User Content: Notes, recipe descriptions, coach conversation messages
  • Preferences: App theme, notification settings, dashboard layout, preferred units
  • Feedback: Feature requests, bug reports, and app satisfaction surveys (when voluntarily submitted)

Third-Party PII:The App allows you to optionally enter a prescribing doctor's name for medication records. This information is entered voluntarily, stored only on your device, and never transmitted to any server. We are not responsible for the accuracy of third-party information entered by users.

3.2 Data Collected Automatically

  • Device Identifier: A stable, anonymous device identifier (iOS Vendor ID or a generated UUID) used exclusively for server-side rate limiting to prevent abuse of free-tier AI features. This identifier is not linked to your personal identity and cannot be used to track you across apps or websites.
  • Subscription Status: Your subscription tier (Free, Pro, or AI) is verified through RevenueCat to determine feature access. We store a cached status locally; the server verifies it periodically.

3.3 Data from Third Parties

  • Apple / Google Sign-In:Your name and email address as provided during authentication. Apple's "Hide My Email" feature is supported.
  • Apple HealthKit / Google Health Connect: If you grant permission, we may read and/or write health data as described in Section 5.

4.How We Use Your Data

We use the data described above to:

  • Calculate personalized calorie and macronutrient targets
  • Track food intake, nutrition, and dietary adherence
  • Manage medication, supplement, and protocol schedules with reminders
  • Provide AI-powered food photo analysis and nutritional estimation
  • Deliver AI nutrition coaching responses (when initiated by you)
  • Sync nutrition and fitness data with Apple HealthKit or Google Health Connect (with your permission)
  • Deliver push notification reminders (meal logging, medications, etc.)
  • Verify subscription status and enforce tier-based feature limits
  • Prevent abuse of free-tier rate limits via anonymous device identifiers

We do NOT sell, rent, or share your personal data with advertisers, data brokers, or any third parties for marketing purposes. Our sole revenue model is subscription fees.

5.Apple HealthKit & Google Health Connect

HealthKit and Health Connect data is handled with the highest level of privacy protection.Health data never leaves your device except through the native health platform's own sync mechanisms.

5.1 What We Read (with your permission)

  • Step count
  • Active energy burned (calories)
  • Body weight and height
  • Heart rate
  • Water intake
  • Biological sex and date of birth (iOS only, for profile auto-fill during onboarding)
  • Workout and exercise session data

5.2 What We Write (with your permission)

  • Dietary energy consumed (calories)
  • Dietary macronutrients (protein, carbohydrates, fat, fiber)
  • Body weight measurements

5.3 Health Data Commitments

We make the following commitments regarding your Apple HealthKit and Google Health Connect data:

  • Health data is stored exclusively on your device and is never transmitted to our servers
  • Health data is NOT used for advertising or marketing of any kind
  • Health data is NOT sold or disclosed to data brokers or any third party
  • Health data is NOT shared with third parties for purposes unrelated to providing core health functionality within the App
  • Health data is NOT used for any purpose other than providing health and fitness functionality directly to you within the App
  • You can revoke health data permissions at any time through your device's Settings

6.AI Feature Data Processing

Certain features use AI services that require transmitting limited data to our secure server infrastructure (Cloudflare Workers) for processing. No data is stored on our servers beyond temporary rate-limiting counters that automatically expire within 48 hours.

6.1 AI Food Photo Scanner

  • Data sent: Food photo (image data), scan mode type, anonymous device ID
  • Data NOT sent: Your name, email, profile details, or any personally identifiable information
  • Storage: Photos are processed in real-time and immediately discarded. We do NOT store food photos on our servers.

6.2 AI Nutrition Coach

  • Data sent: Your message text (limited to 300 characters), last 5 messages for context, and a compact anonymized nutritional summary (~280 tokens including today's macro totals, age, sex, goal type, and active medication names only)
  • Data NOT sent: Full conversation history, email address, full name, or complete profile data
  • Storage: Messages are processed in real-time and not stored server-side. Full conversation history is stored only on your device.

6.3 Voice-Assisted Food Logging

  • Data sent: Text transcript of your speech (limited to 2,000 characters)
  • Storage: Transcripts are processed and immediately discarded.

6.4 AI Training Data Usage

Free tier: AI-processed food images and nutritional queries may be used by our AI service providers for model improvement purposes, in accordance with their respective terms. No personally identifiable information is included with these submissions — only food imagery and nutritional text prompts.

Paid subscribers (Pro & AI tiers): Your data is processed with enhanced privacy controls that prevent its use for AI model training by our service providers.

7.Progress Photos, Camera & Microphone

7.1 Progress Photos

The App allows you to take and store body progress photos for personal tracking. These photos are:

  • Stored exclusively on your device in the App's local database
  • Never uploaded to our servers or any cloud service
  • Never shared with any third party
  • Permanently deleted when you use the "Delete All Data" feature

7.2 Camera Access

The App requests camera access to enable AI food scanning, barcode scanning, nutrition label scanning, and progress photos. The camera is only activated when you explicitly open a scanning or photo feature. Food photos captured for AI analysis are transmitted for processing and then discarded; they are not persisted locally or remotely.

7.3 Photo Library Access

The App may request access to your photo library to allow you to select existing food photos for AI analysis. Selected photos are processed identically to camera captures.

7.4 Microphone Access

The App may request microphone access for voice-assisted food logging. Speech is converted to text on-device, and only the resulting text transcript is transmitted for AI processing. We do not record, store, or transmit raw audio data.

8.Third-Party Services

The App integrates with the following third-party services. Each service has its own privacy policy governing their handling of data:

ServicePurposeData Shared
FatSecret Platform APIFood search & nutrition dataSearch queries, barcode numbers
AI Service ProvidersFood analysis, coaching, voice loggingFood photos, short text messages, anonymized nutritional context (see Section 6)
RevenueCatSubscription managementAnonymous app user ID, purchase transaction data
CloudflareSecure API proxy & infrastructureAll AI requests are routed through Cloudflare Workers; rate-limiting counters stored in Cloudflare KV (48h auto-expiry)
Apple / GoogleAuthentication, push notifications, health data syncSign-in credentials (managed by Apple/Google), push notification tokens
USDA FoodData CentralNutrition reference dataNone (public data)
Open Food FactsBarcode product dataNone (public data, used under ODbL license)

We encourage you to review the privacy policies of these third-party services. We are not responsible for the privacy practices of third-party service providers.

9.Data Retention

  • Local data:Stored on your device indefinitely until you choose to delete it (via "Delete All Data" or by uninstalling the App).
  • Rate-limiting counters: Anonymous device ID counters stored in our server infrastructure automatically expire and are deleted within 48 hours.
  • AI-processed data: Food photos, text messages, and voice transcripts submitted for AI processing are NOT stored on our servers. They are processed transiently and discarded immediately.
  • Subscription data: Managed by RevenueCat per their data retention policy. Cached subscription status on our server expires within 5 minutes.

10.Data Security

We take reasonable measures to protect your information:

  • Local encryption: All data stored on your device uses encrypted SQLite storage
  • Transport encryption: All data transmitted between the App and our servers uses TLS 1.3 encryption
  • Secure proxy: AI service requests are routed through our secure server infrastructure — API keys are never exposed on your device
  • Server-side verification: Subscription status and rate limits are verified server-side to prevent tampering
  • No plaintext secrets: No API keys, tokens, or sensitive credentials are stored in the App's client code

While we implement commercially reasonable security measures, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

11.Your Rights

Because your data is stored locally on your device, you have direct, immediate control over your information at all times:

11.1 Right to Access

All your data is visible and accessible to you directly within the App at any time.

11.2 Right to Delete

You can permanently delete all your data through the App (Profile → Delete All Data). This action is irreversible and removes all personal data from the local database. The anonymous device identifier used for rate limiting is preserved to prevent abuse but contains no personal information.

11.3 Right to Export (Data Portability)

You can export your data at any time through the App (Profile → Export Data). Data is exported in portable formats (JSON and CSV) that you can save, transfer, or use as you see fit.

11.4 Right to Revoke Permissions

You can revoke health data, camera, microphone, notification, and photo library permissions at any time through your device's Settings. Revoking permissions may disable certain features but will not affect your existing data.

11.5 California Residents (CCPA)

If you are a California resident, you have the right to: know what personal information is collected, request deletion of your personal information, and opt out of the sale of your personal information. We do not sell your personal information. You can exercise your rights using the Delete All Data and Export Data features within the App, or by contacting us at privacy@bodydex.app.

11.6 European Users (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including the rights of access, rectification, erasure, restriction, data portability, and objection. Since your data is stored locally on your device, you can exercise most of these rights directly. For any requests you cannot fulfill through the App, contact us at privacy@bodydex.app.

Data processed by our AI features is transmitted to servers located in the United States. By using AI features, you consent to this transfer.

12.Children's Privacy

Bodydex is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us at privacy@bodydex.app and we will take steps to delete such information.

Users between the ages of 13 and 18 may use the App only with the consent and supervision of a parent or legal guardian.

13.Website Privacy

The Bodydex marketing website (bodydex.app) does not use cookies, tracking pixels, or analytics services. We do not collect any personal information through the website. The website is a static informational site hosted on Cloudflare Pages.

14.Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes, we will update the "Last Updated" date at the top of this page. It is your responsibility to review this Privacy Policy periodically for changes.

Your continued use of the App after any modifications to this Privacy Policy constitutes your acceptance of the updated policy.

If we make material changes to the way we handle your data, we will make reasonable efforts to provide notice through the App or our website.

15.Contact Information

For questions, concerns, or requests regarding your privacy or this policy:

Privacy inquiries: privacy@bodydex.app

General legal inquiries: legal@bodydex.app

Developer: Daniel Bobunov

Terms of Service →Data Sources →