Privacy Policy
NutriGL Insight
Overview
This Privacy Policy applies to the NutriGL Insight mobile application for Android (the “Application”), developed by Anass Mahmoudi operating under OUSHEN (the “Service Provider”), and provided as a Freemium service. By using the Application, you agree to the collection and use of information as described in this policy.
Information We Collect
Information you provide
- Google account details if you choose to sign in with Google, we collect your Google account name, email address, and a unique Google account identifier. Sign-in is entirely optional; the Application is fully functional without it.
- Health and nutrition data during onboarding and normal use, you may provide age, weight, height, gender, fitness goal, dietary preference, and activity level. This information is used solely to calculate personalised daily nutrition targets (calories, macros, glycemic load) and is synced to our servers only if you are signed in.
- Meal and food logs every food item, meal, and recipe you create is stored on your device and optionally synced to our servers if cloud sync is enabled.
- Marketing preference if you opt in to product updates and tips, your email address is registered with our backend for the purpose of sending occasional feature updates and nutrition tips. You can withdraw consent at any time in Settings.
Information collected automatically
- Device identifier a unique anonymous identifier (UUID) is generated at first launch and stored in encrypted secure storage on your device. This identifier is sent with every request to our servers to manage your account, usage limits, and subscription status. It is also used to generate a cryptographic request signature (HMAC-SHA256) to protect API requests against tampering.
- Usage and analytics if you opt in to analytics (disabled by default), Firebase Analytics collects information about which features you use, screens you view, and events such as food searches and meal saves. You can opt in or out at any time in Settings.
- Crash reports Firebase Crashlytics automatically collects crash logs and stack traces in release builds to help us diagnose and fix bugs. This data does not include your food logs or personal health data.
How We Use Your Camera
The Application uses your camera for two distinct purposes:
- 1Barcode scanning to identify packaged food products. The barcode number is sent to the Open Food Facts API to retrieve the product name. No image is captured or transmitted.
- 2AI photo recognition if you choose to use the “Snap & Log” feature, a photo of your meal is captured, encoded, and transmitted to our backend servers where it is processed by Google Gemini AI to identify the dish and generate a nutritional breakdown. The photo is processed ephemerally and is not stored beyond the duration of the analysis request.
Camera access is requested only when you choose to use these features and can be revoked at any time in your device settings.
Artificial Intelligence
The Application uses Google Gemini AI via our backend servers to:
- Analyse food descriptions entered as text and return nutritional data (calories, protein, carbohydrates, fat, fibre, sugar, potassium, glycemic load).
- Identify dishes from photos you take and generate a full nutritional breakdown.
- Suggest lower-glycemic-load food alternatives (Smart Swaps).
When you use these features, the relevant input (food name or photo) and your anonymous device identifier are sent to our servers and processed by the AI. No personal health information (age, weight, etc.) is included in AI analysis requests.
Third-Party Services
The Application uses the following third-party services, each governed by their own privacy policies:
| Service | Purpose | Data sent |
|---|---|---|
| Google Play Services | Platform services | Privacy Policy |
| Google Sign-In | Optional account authentication | Name, email, Google account ID |
| Firebase Analytics | Usage analytics (opt-in) | App events, device ID |
| Firebase Crashlytics | Crash reporting | Crash logs, stack traces |
| Firebase Cloud Messaging | Push notifications | Device push token |
| Google Play Billing | In-app Premium subscription | Purchase token |
| Google Gemini AI | Food analysis, photo recognition, Smart Swaps | Food descriptions, meal photos (ephemeral) |
| USDA FoodData Central | Food name validation | Food name only |
| Open Food Facts | Barcode product lookup | Barcode number only |
Data Stored on Your Device
The Application stores the following data locally in an encrypted application sandbox inaccessible to other apps:
- Food search history and nutritional data (for offline access)
- Saved meals, favourite meals, and recipe templates
- Daily nutrition goals and macro targets
- Notification preferences and reminder schedules
- Sign-in details (name, email) if signed in
- Anonymous device identifier
- Subscription status cache
- Analytics and marketing consent preferences
Cloud Sync
If you sign in with Google and enable cloud sync, your meals, recipes, goals, streak data, and profile are synced to our backend servers hosted on Heroku. All data is transmitted over HTTPS (TLS). You can delete all synced data at any time via Settings → Delete cloud data or by submitting a request at nutriglinsight.com/delete-data.
Delete My DataPermissions
Camera
Barcode scanning and AI photo meal recognition
Notifications
Meal reminders and nutrition alerts you enable
Exact Alarms
Scheduled meal reminders at times you set
Internet
Retrieve nutritional data, sync data, validate subscription
Boot Completed
Restore scheduled reminders after device restart
Billing
Process in-app Premium subscription purchases
Your Rights & Opt-Out Options
- Analytics disable in Settings → Product updates & tips at any time.
- Marketing emails opt out in Settings → Product updates & tips or via the unsubscribe link in any email.
- Notifications disable in Settings or revoke permission in device settings.
- Camera deny or revoke in device settings at any time.
- Cloud data deletion use the in-app Delete cloud data option or submit a request at nutriglinsight.com/delete-data.
- Complete opt-out uninstall the Application using the standard process for your device.
Data Retention
We retain your data for as long as your account is active and for a reasonable period thereafter. Crash logs and analytics data are retained for up to 24 months. To request deletion of all data associated with your account, contact us at contact@nutriglinsight.com or use the self-service form at nutriglinsight.com/delete-data. We will respond within 30 days.
Children’s Privacy
The Application is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us at contact@nutriglinsight.com and we will delete it promptly.
Security
All data transmitted between the Application and our servers is encrypted using HTTPS (TLS). The device identifier is stored in encrypted secure storage on your device. Request integrity is protected with HMAC-SHA256 signatures. No security system is impenetrable; we are committed to using industry-standard protections.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you by updating the effective date at the top of this page. Continued use of the Application after changes constitutes acceptance of the updated policy.
Contact
For privacy questions, data deletion requests, or any concerns:
Social Features
If you choose to enable the optional social/leaderboard features (“Momentum League”), your chosen display name, streak data, and weekly nutrition progress scores are shared with friends you connect with and displayed on a leaderboard. Social features are entirely optional and can be disabled at any time in Settings.