← Back to MetabolicOS

This Privacy Policy describes how [MetabolicOS Company Name] ("Company," "we," "us," or "our") collects, uses, stores, and protects your information when you use the MetabolicOS application and related services (the "Service").

1. Information We Collect

1.1 Information You Provide Directly

Account Information: Email address and password (stored hashed). Optionally: name, date of birth, and profile preferences.

Health and Wellness Data: The health data you voluntarily enter, including:

• Blood pressure readings (systolic, diastolic, heart rate)
• Body weight and composition measurements
• Food and nutrition logs (calories, protein, carbs, fat, sodium, potassium, magnesium, sugar, fiber, micronutrients)
• Water intake
• Lab results (A1C, cholesterol panels, other biomarkers)
• Exercise and workout logs
• Medications and supplements
• Sleep data
• Custom health goals and targets

Payment Information: Payments are processed by our third-party payment processor. We do not store your full credit card number or bank account details. We receive only a transaction ID and subscription status.

1.2 Information Collected Automatically

• Device Information: Device type, OS, browser type, screen resolution, unique device identifiers
• Usage Data: Features used, pages visited, time spent, crash reports, performance data
• Log Data: IP address, access times, referring URLs
• Barcode Scan Data: Barcode numbers sent to Open Food Facts API for nutritional lookup. We do not store scan history beyond your food diary entries.

1.3 Information from Third Parties

We may receive data from third-party services you connect (fitness trackers, health device APIs, SSO providers). We only access data you explicitly authorize.

2. How We Use Your Information

Purpose	Data Used	Legal Basis (GDPR)
Provide core tracking features	Health data, account info	Contract performance
Generate predictions & insights (Pro/Elite)	Health trends, logged data	Contract performance
Sync data across devices	All user data (encrypted)	Contract performance
Process payments	Transaction ID, subscription status	Contract performance
Improve the Service	Aggregated, de-identified usage data	Legitimate interest
Send service communications	Email, account info	Legitimate interest
Ensure security & prevent fraud	Log data, device info, IP	Legitimate interest
Comply with legal obligations	As required by law	Legal obligation

3. Data Storage and Security

3.1 Local Storage (Free Tier)

By default, MetabolicOS stores your data locally on your device using browser local storage. Your data never leaves your device and is not transmitted to any server. This means complete privacy, but data can be lost if browser data is cleared.

3.2 Cloud Storage (Pro/Elite Tiers)

If you opt into cloud sync, your data is:

• Encrypted in transit using TLS 1.3
• Encrypted at rest using AES-256 encryption
• Stored on servers in the United States
• Backed up with redundancy to prevent data loss
• Accessible only with your authenticated credentials

3.3 Security Measures

• Password hashing using bcrypt with appropriate salt rounds
• Rate limiting on authentication endpoints
• Regular security audits and vulnerability assessments
• Principle of least privilege for internal data access
• Incident response procedures for potential data breaches

3.4 Data Breach Notification

In the event of a data breach, we will notify you via email and in-app notification within 72 hours, in accordance with applicable laws including GDPR.

4. Data Sharing and Disclosure

4.1 Service Providers

• Cloud infrastructure: Hosting and data storage (Pro/Elite cloud sync)
• Payment processing: Subscription billing
• Analytics: Aggregated, de-identified usage data only
• AI/ML providers: Prediction and coaching features (no persistent storage by provider)

All service providers are contractually obligated to protect your data.

4.2 Legal Requirements

We may disclose information if required by law, regulation, legal process, or governmental request.

4.3 Business Transfers

If the Company is involved in a merger or acquisition, your data may be transferred. We will notify you before your data becomes subject to a different privacy policy.

4.4 With Your Consent

We may share data with your explicit consent, such as when using Provider Export to generate a health report for your doctor.

5. Your Rights and Choices

5.1 Rights for All Users

• Access: View all data we hold about you
• Export: Download all your data in portable format (JSON) at any time, from any tier
• Delete: Request deletion of your account and all associated data
• Correct: Update or correct any inaccurate data
• Opt-out: Opt out of promotional communications at any time

5.2 Additional Rights for EEA/UK/Swiss Users (GDPR)

• Right to Restriction: Limit processing in certain circumstances
• Right to Portability: Receive data in structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time
• Right to Lodge a Complaint: File with your local data protection authority

Data Transfers: We use Standard Contractual Clauses (SCCs) for EEA/UK to US data transfers.

5.3 California Residents (CCPA/CPRA)

• Right to know what personal information we collect, use, and disclose
• Right to delete personal information
• Right to opt out of sale of personal information (we do not sell your data)
• Right to non-discrimination for exercising privacy rights
• Right to correct inaccurate personal information
• Right to limit use of sensitive personal information

To exercise any rights, contact us at privacy@metabolicos.app.

6. Cookies and Tracking

• Essential Cookies: Required for authentication and basic functionality. Cannot be disabled.
• Analytics Cookies: Used to improve the Service. You may opt out in account settings.

We do not use advertising cookies, tracking pixels, cross-site tracking, or behavioral advertising.

7. Children's Privacy

The Service is not directed to individuals under 18. We do not knowingly collect data from children. If we become aware of such data, we will promptly delete it.

8. Data Retention

• Active accounts: Data retained while account is active
• Deleted accounts: Data deleted within 30 days, except where legally required
• Local-only data: Not retained by us; under your sole control
• Aggregated data: De-identified data may be retained indefinitely

9. Health Data — Special Provisions

Despite this, we apply strong protections to your health data:

• Health data is encrypted both in transit and at rest (cloud sync)
• Strict internal access controls — only authorized personnel, only when necessary
• We never share individual health data with insurers, employers, or advertisers
• We do not use your health data to train general-purpose AI models
• AI features process your data only to generate your personal insights

10. International Data Transfers

MetabolicOS is operated from the United States. If you access from outside the US, your data will be transferred to and processed in the US with appropriate safeguards including Standard Contractual Clauses, data processing agreements, and technical encryption measures.

11. Changes to This Policy

We may update this Privacy Policy from time to time with at least 30 days' notice for material changes. Notification will be provided via in-app notice and email.

12. Contact Us

[MetabolicOS Company Name]
Privacy Inquiries: privacy@metabolicos.app
General Support: support@metabolicos.app
Website: www.metabolicos.app

For EEA/UK users, you may also contact your local data protection authority.