Privacy Policy

1. Data Controller

Vanessa Heizmann
Email: hi.nourishme@gmail.com

2. What the app does

NourishMe helps mothers during pregnancy and breastfeeding track their nutrition and receive evidence-based coaching feedback on each meal. The app is a personal wellness tool, not a medical device.

3. What data is processed

3.1 Stored locally on your device

• Profile information: Age, height, weight, activity level, pregnancy / breastfeeding status, trimester, number of children being nursed, estimated daily milk volume.
• Meal entries: Description, portion, calories, macros, timestamps, optional food-safety flags.
• Photo entries: Photos are sent once to the coaching API for analysis (see 3.2); the photo itself is not retained in the app, only the structured results.
• Coach history: Per-meal coach responses and Q&A turns.
• Favorites: frequently used meals.
• Settings: theme choice, optional custom macro split.

3.2 Transmission to third parties

When you log a meal or ask the coach a question, the following is sent to our API proxy (Cloudflare Worker), which forwards it to the Anthropic Claude API:

• The text of your input
• Optional: the photo of your meal
• Your profile (age, weight, height, activity, phase, children, milk volume)
• Today's context (running kcal and macro totals)

Anthropic uses these data only to generate the coaching response and stores API requests for up to 30 days for safety review (Anthropic Privacy Policy).

The proxy forwards without storing payloads. Cloudflare retains connection metadata (IP, timestamp) for abuse prevention only.

3.3 Anonymous usage statistics

To improve the app we collect anonymous usage events via PostHog (servers in the EU). We record only technical events such as "meal logged", "coach question sent" or screen views, each without personal data and without the contents of your meals or coach messages. A random, anonymous per-install identifier is used, no advertising ID (IDFA) and no cross-app tracking. You can turn statistics off anytime in Settings under "Privacy".

Beyond that, no other trackers: no Firebase, no Google Analytics, no ad networks.

3.4 Crash and error reports

If the app crashes or hits an error, we send the stack trace, app version and basic device info (model, iOS version) to Sentry (servers in the EU, Frankfurt). We do not transmit IP address, advertising ID, meal content or personal profile fields. This lets us fix bugs without a user having to report them.

3.5 No user accounts

NourishMe has no login. No email, no password. All data is anonymous and stays on your device.

4. Legal basis (GDPR)

Processing is based on your consent (Art. 6(1)(a) GDPR) and contract performance (Art. 6(1)(b) GDPR).

Health-related data is processed for your personal wellness purposes. NourishMe does not provide medical diagnosis or treatment.

5. Data retention

• Local data: until uninstall or "Reset App" in Settings.
• Anthropic API: up to 30 days.
• Cloudflare: connection metadata typically 24 h.
• PostHog (anonymous stats): aggregated events, no personal identity. Can be disabled anytime via the opt-out in Settings.
• Sentry (crash reports): 90 days, technical error information only, no personal identifiers.

6. Your rights

• Access (visible directly in the UI).
• Rectification (profile and entries editable).
• Erasure via "Reset App" or uninstall.
• Portability: data is local-only; export available on request via email.
• Object to processing and lodge a complaint.

Requests: hi.nourishme@gmail.com

7. Data security

All API connections use HTTPS / TLS. Local data is stored in the OS-standard app sandbox.

8. Changes

We may update this policy as the app evolves. Material changes will be surfaced on app update.

9. Contact

Vanessa Heizmann · hi.nourishme@gmail.com