Skip to content

Privacy Policy

Privacy Policy

Effective Date: [Month Day, Year]
Last Updated: [Month Day, Year]

This Privacy Policy explains how [Legal Company Name] ("MacroIndex," "we," "us") collects, uses, discloses, and protects information when you use MacroIndex (the "Service").

1) Information We Collect

A) Information you provide

  • Account information: email address, password (stored as a secure hash), and authentication data for OAuth sign-in.
  • Nutrition and tracking information: foods you create, foods you log, macro totals, goals, weight entries and goals, water entries and goals, supplements and supplement logs.
  • Images for scanning: if you upload a nutrition label image, we process it via OCR to extract nutrition values.
  • AI inputs: if you use AI-powered features, we process your text input to generate a response.

B) Information collected automatically

  • Device and usage data: IP address, user agent, timestamps, and basic logs for security and reliability.
  • Cookies/session data: used to keep you signed in and to protect against security threats such as CSRF.

2) How We Use Information

We use information to: - provide the Service (logging, goals, scanning, and AI features), - secure accounts and prevent abuse, - send essential emails (e.g., password reset), - maintain and improve reliability, quality, and user experience, - comply with law and enforce our Terms.

3) AI and OCR Processing

OCR

OCR may be performed locally on our servers (e.g., Tesseract) and/or via configured OCR providers (e.g., Google Cloud Vision if enabled). OCR can be inaccurate; you are responsible for verifying extracted values.

AI

AI features may send your input text to an AI provider to generate responses. AI output may be inaccurate or incomplete. You should verify nutrition values against official sources.

4) How We Share Information

We share information only as needed to operate the Service, including: - Service providers (processors): - Email delivery (e.g., Resend) for password reset emails. - OAuth providers (e.g., Google, Apple) for sign-in. - AI providers (e.g., OpenAI) for AI features. - OCR providers (e.g., Google Cloud Vision, if enabled). - Legal and safety: if required by law or to protect rights, safety, and security. - Business transfers: if we are involved in a merger, acquisition, or asset sale.

We do not sell your personal information.

5) Data Retention

We retain information for as long as needed to provide the Service and for legitimate business purposes such as security and compliance, unless a longer period is required by law.

Suggested default retention: - Account + logs: retained until you delete your account. - Security logs: retained for a limited period. - AI/OCR diagnostics: retained only as long as necessary for debugging and abuse prevention.

6) Your Choices and Rights

Depending on where you live, you may have rights to: - access your information, - correct inaccurate information, - delete your information, - obtain a copy of your information, - object to or restrict certain processing.

To request these, contact us at [support@yourdomain.com].

7) Security

We use reasonable administrative, technical, and organizational safeguards designed to protect information. However, no method of transmission or storage is 100% secure.

8) Children's Privacy

MacroIndex is not directed to children under 13, and we do not knowingly collect personal information from children under 13.

9) International Users

If you access the Service from outside the United States, you understand your information may be processed in the United States and other locations where our service providers operate.

10) Changes to This Policy

We may update this Privacy Policy from time to time. We will update the "Last Updated" date and may provide additional notice within the Service.

11) Contact

[Legal Company Name]
Email: [support@yourdomain.com]
Address: [Address]