Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your data.

Last Updated: January 11, 2025
Effective Date: January 11, 2025

1. Introduction

Welcome to NutriNex, operated by ICT-Worx BVBA. We are committed to protecting your privacy and ensuring transparency about how we handle your personal information. This Privacy Policy explains our data practices for:

  • The NutriNex iOS mobile application
  • Our website at nutrinex.app
  • All related services and features

By using NutriNex, you agree to the collection and use of information in accordance with this policy.

2. Data Controller Information

Responsible Entity

Company Name: ICT-Worx BVBA

VAT Number: BE0839.116.613

Address: Ter waarde 45, 8900 Ieper, Belgium

Email: support@nutrinex.app

Website: nutrinex.app

3. Information We Collect

3.1 Personal Data Collection

  • Apple ID Authentication: Name and email address through Apple Sign In
  • Profile Photos: Optional profile pictures uploaded by users
  • Personal Information: Gender, age, height, weight, target weight
  • Diet Goals and Fitness Preferences: User-defined nutritional and exercise goals
  • Meal History and Calorie Data: Food consumption records and nutritional tracking

3.2 Camera & Photo Access

  • Camera Access: For food scanning and nutritional analysis
  • Photo Gallery Access: For profile photos and food analysis
  • Photo Processing: Photos are processed temporarily and NOT permanently stored
  • Data Transmission: Base64 image data is sent to AI service for analysis only

3.3 HealthKit Integration (iOS)

Apple Health Integration: With your explicit consent, we integrate with HealthKit to:

  • Read: Steps, weight, height from Apple Health
  • Write: Weight updates to Apple Health
  • Clinical Health Data: If enabled by user
  • Local Storage: HealthKit data remains on your device, not on our servers

You can revoke this permission at any time through your iOS Settings → Privacy & Security → Health → NutriNex.

3.4 Local Data Storage

On-Device Storage: All user data is stored locally on your device using AsyncStorage:

  • Authentication information
  • Onboarding progress and settings
  • Food history and nutritional records
  • Chat history with AI assistant
  • App preferences (language, theme)

Important: No cloud backup or synchronization between devices. Data remains on your device until the app is deleted.

3.5 Required App Permissions

  • Camera: Food analysis and scanning
  • Health: Integration with Apple Health data
  • Photo Library: Profile photos and food scanning

4. How We Use Your Information

We use the collected information for the following purposes:

4.1 Core App Functionality

  • Provide AI-powered food recognition and nutritional analysis
  • Generate personalized nutrition recommendations
  • Track your progress and display analytics
  • Synchronize data with Apple Health (with your permission)

4.2 Service Improvement

  • Improve AI accuracy through machine learning (data is anonymized)
  • Develop new features based on usage patterns
  • Optimize app performance and user experience
  • Conduct research to advance nutrition science (anonymized data only)

4.3 Communication and Support

  • Respond to your questions and provide customer support
  • Send important updates about the app or your account
  • Notify you about new features (if you've opted in)

5. Data Processing and Third-Party Services

5.1 AI Service & Data Transmission

Rork AI Processing (toolkit.rork.com):

  • Food Images: Sent to toolkit.rork.com/text/llm/ for nutritional analysis
  • AI Chat Messages: Processed via external API for personalized nutrition advice
  • User Context: Name, goals, and nutrition history sent to AI for personalization
  • No Permanent Storage: Images and data are not permanently stored on external servers
  • Temporary Processing: Data is processed for analysis and immediately discarded

Important: We cannot provide specific details about Rork AI's internal data practices as they are a third-party service. Food images and chat data are sent to toolkit.rork.com for processing but are not permanently stored by the service.

5.2 Apple Sign In & Authentication

Secure Authentication:

  • Uses Apple's secure authentication system
  • NutriNex only receives user-approved information
  • No passwords stored by NutriNex
  • Apple ID can be disconnected via Apple ID settings
  • Authentication managed entirely by Apple's secure infrastructure

5.3 Data Processing Purposes

We process your data for the following specific purposes:

  • Nutritional Analysis: Food analysis and calorie tracking
  • Personalized AI Advice: Customized nutrition recommendations
  • Macronutrient Calculations: Detailed nutritional breakdowns
  • Progress Tracking: Goal monitoring and achievement tracking
  • App Personalization: Language and theme preferences

5.4 External Services & Links

The app connects to the following external services:

  • AI Processing: toolkit.rork.com for food recognition
  • Support Links: nutrinex.app/#support, nutrinex.app/privacy, nutrinex.app/tos
  • No Other Analytics: No external data sharing or third-party analytics services

5.5 Website Infrastructure

Website Services (Separate from App):

  • Plerk Hosting: Website hosting with basic analytics
  • Hostinger: Domain name services
  • No Data Sharing: Website and app data are completely separate

6. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

6.1 Service Providers

  • Third-party services necessary for app functionality (Supabase, Rork AI)
  • Service providers are contractually bound to protect your data
  • Data sharing is limited to what's necessary for service provision

6.2 Legal Requirements

  • When required by law, court order, or government regulation
  • To protect our rights, safety, or property
  • To investigate potential violations of our Terms of Service

6.3 Business Transfers

  • In the event of a merger, acquisition, or asset sale
  • Users will be notified of any ownership changes
  • The same privacy protections will continue to apply

6.4 Anonymized Data

  • We may share aggregated, anonymized statistics for research purposes
  • This data cannot be used to identify individual users
  • Helps advance nutrition science and public health research

7. Data Security

We implement comprehensive security measures to protect your personal information:

7.1 Technical Safeguards

  • End-to-end encryption for data transmission
  • Encrypted storage of sensitive data
  • Regular security audits and updates
  • Secure authentication systems

7.2 Access Controls

  • Limited access to personal data on a need-to-know basis
  • Regular review of access permissions
  • Mandatory security training for team members

7.3 Data Backup and Recovery

  • Regular encrypted backups of your data
  • Secure disaster recovery procedures
  • Redundant storage systems to prevent data loss

Please Note: While we implement strong security measures, no system is 100% secure. We cannot guarantee absolute security but continuously work to maintain the highest standards.

8. Your Privacy Rights

Under GDPR and applicable privacy laws, you have the following rights:

8.1 Access and Portability

  • Right to Access: Request a copy of all personal data we hold about you
  • Data Portability: Receive your data in a structured, machine-readable format

8.2 Correction and Deletion

  • Right to Rectification: Correct inaccurate or incomplete personal data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")

8.3 Processing Control

  • Right to Restrict Processing: Limit how we process your data
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Revoke consent for data processing at any time

8.4 How to Exercise Your Rights

To exercise any of these rights:

  • Email us at support@nutrinex.app
  • Use the in-app settings to manage certain preferences
  • We will respond within 30 days of receiving your request
  • Identity verification may be required for security purposes

9. Data Control and Deletion

You have complete control over your data with the following options available in the app:

9.1 User-Controlled Data Deletion

In-App Data Management:

  • "Clear all food logs": Removes all food history and meal records
  • "Reset all settings": Resets app preferences to default
  • "Delete Account": Removes all local user data completely
  • Immediate Effect: All deletions are processed immediately

9.2 HealthKit Data Management

HealthKit Data Control:

  • HealthKit data can only be deleted through iOS Settings
  • Navigate to: Settings → Privacy & Security → Health → Data Access & Devices → NutriNex
  • You can revoke access or delete specific data types
  • NutriNex cannot delete HealthKit data on your behalf

9.3 Data Retention Periods

Since all data is stored locally on your device:

  • Local Storage: Data persists until you delete it or uninstall the app
  • No Cloud Backup: No data is retained on external servers
  • Complete Control: You have full control over data lifecycle
  • App Deletion: Uninstalling the app removes all local data permanently

9.4 External Service Data

  • Rork AI: Images and queries are processed temporarily and not stored
  • Apple Services: Governed by Apple's data retention policies
  • Support Communications: Email communications retained for customer service purposes

10. Children's Privacy

NutriNex is not intended for children under 13 years of age:

  • We do not knowingly collect data from children under 13
  • Users aged 13-17 must have parental consent
  • If we discover we have collected data from a child under 13, we will delete it immediately
  • Parents can contact us to review, modify, or delete their child's information

11. International Data Transfers

As we serve users globally, your data may be transferred to and processed in countries other than your own:

  • Our primary data storage is within the European Union (Supabase)
  • Some processing may occur in other countries with adequate protection levels
  • All transfers comply with GDPR requirements and include appropriate safeguards
  • Third-party services may have their own international transfer policies

12. Cookies and Website Analytics

Our website uses minimal tracking technologies:

12.1 Website Analytics

  • Basic analytics provided by Plerk hosting service
  • Tracks page views, visitor counts, and general usage patterns
  • No personal information is collected through website analytics
  • Data is used only for website performance optimization

12.2 Essential Cookies

  • Necessary cookies for website functionality
  • Session management for support forms
  • No advertising or tracking cookies

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements:

  • Material changes will be announced through the app or via email
  • The "Last Updated" date will reflect the most recent changes
  • Continued use of our services after changes constitutes acceptance
  • You can review the current policy at any time on our website

14. Contact Us

Privacy Questions or Concerns?

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: support@nutrinex.app

Company: ICT-Worx BVBA

Address: Ter waarde 45, 8900 Ieper, Belgium

VAT: BE0839.116.613

We aim to respond to all privacy-related inquiries within 48 hours during business days.

Data Protection Authority: If you believe we have not addressed your privacy concerns adequately, you have the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit) or your local supervisory authority.

Return to Home