NutriHealth AI

Legal

Privacy Policy

Last updated June 12, 2026

What we collect, why, and who can see it — in plain language. The short version: your health data is encrypted, never sold and never used for ads; sharing with a dietitian is strictly opt-in; and you can export or permanently delete everything, anytime.

What we collect

  • Account details — your name, email address, and plan.
  • Preferences & goals — dietary preferences, eating styles, health rules (such as low-sodium or gluten-free), and the targets you set.
  • Tracker entries — meals logged, water, weight, and supplement check-ins you record.
  • Connected services, only if you connect them — activity and health metrics from Apple Health or Fitbit. Each connection is optional and can be removed in your profile at any time. (Sharing your grocery list by email, text, or print happens entirely on your device — nothing is sent to us.)
  • First-party usage analytics — which pages are visited, cookie-free and self-hosted. We do not use third-party ad trackers.

How we handle health data

Your health rules, tracker history and synced metrics are the most sensitive data we hold, and we treat them accordingly. Health data is encrypted in transit and at rest, scoped to your account, and used for exactly one purpose: generating and adjusting your plans, targets and recommendations.

  • We never sell health data, and we never use it for advertising.
  • No health data leaves your account without your explicit, per-case consent (see sharing below).
  • Health data may be subject to additional regulations in your region; where stricter rules apply, we follow them.

How we use your data

To generate your meal plans, power your tracker, merge your grocery lists, and improve the recommendations the service makes for you. Aggregated, de-identified statistics (for example, “how many members follow a cardiac plan”) help us improve the product — they can never be traced back to you. We don’t sell your personal data.

Sharing with your dietitian — opt-in only

If you choose to work with a dietitian, nutritionist or coach through NutriHealth AI, you decide what they see. Sharing is off by default and only begins after you explicitly accept a connection with that professional.

  • A connected pro can view the profile, plans, tracker data and supplement regimen you’ve agreed to share — and nothing else.
  • You can revoke access at any time from your profile; the connection and their visibility end immediately.
  • Supplement and diet recommendations from a pro arrive as requests you accept or decline — nothing is applied to your plan without you.

Service providers

We share the minimum necessary data with processors that run the service: hosting infrastructure, payment processing (Stripe), transactional email, and — when you use them — the integrations you connected (Apple Health, Fitbit). Supplement orders are fulfilled by SHOP.COM / Market America, where you enter your own shipping details directly. Every processor is bound by contract to use your data only to provide their service to us.

Your rights

  • Access & export — download a complete copy of your data from your profile, anytime, as a portable file.
  • Correction — edit your account details, preferences and rules directly in the app.
  • Deletion — delete your account from your profile. Deleting your account removes your data permanently: plans, tracker history, recipes and regimen.
  • Regional rights — where GDPR, CCPA or similar laws apply, you may also exercise those rights by writing to us.

Data retention

We keep your data while your account is active. If you delete your account, personal data is removed from production systems immediately and from encrypted backups within 30 days. Billing records are retained only as long as tax and accounting law requires.

Security

Data is encrypted in transit (TLS) and at rest. Access inside our team is role-scoped and logged; passwords are stored only as salted hashes. If a breach ever affects your personal data, we will notify you and the relevant authorities as the law requires — promptly and plainly.

Children

NutriHealth AI is not directed at children and may not be used by anyone under 16. Family plan profiles for minors are created and managed by the account-holding adult, who controls that data.

Changes to this policy

If we change how we handle your data in any material way, we will tell you by email or in-app before the change takes effect — never retroactively. The “last updated” date at the top always reflects the current version.