Privacy Policy

Effective March 28, 2026

1. Introduction

Plateify ("we," "us," "our") is a personal wellness app that helps you understand how food affects your body. This Privacy Policy explains what information we collect, why we collect it, how it is stored and protected, and the rights you have over your data.

By using Plateify, you agree to the collection and use of information as described in this policy.

2. Information We Collect

Account Information: When you create an account, we collect your email address through Firebase Authentication. This is used solely for account access and recovery.

Wellness & Health Data (voluntary): To provide personalized insights, you may provide wellness goals, symptoms you experience (e.g., bloating, fatigue, headaches), dietary information (allergies, preferences, sensitivities, foods to avoid), symptom frequency, meal logs (text or photos), mood and energy check-ins, and physical symptom logs.

Device-Local Data: Your display name is stored only on your device using AsyncStorage and is never transmitted to our servers.

App Usage: We do not collect analytics, advertising identifiers, crash reports, or behavioral telemetry beyond what is necessary to operate core features.

3. How We Use Your Information

  • Account Management: Your email authenticates your account.
  • Personalized Insights: Health data is analyzed to detect behavioral patterns and generate wellness insights.
  • Experiment Analysis: Meal, mood, and symptom logs are compared across time windows to measure the effects of behavioral experiments you choose to run.
  • Recommendations: Detected patterns are used to suggest personalized wellness interventions.
  • AI-Powered Meal Analysis: Meal photos and descriptions are sent to Google Gemini AI for real-time ingredient extraction. Photos are then stored in Firebase Storage under your account so they appear in your meal history. They are retained until you delete the associated meal log or your account.

We do not sell, rent, or share your personal information with third parties for advertising or marketing.

4. How Your Data Is Stored & Protected

Authentication: Email credentials are managed by Firebase Authentication (Google LLC) using industry-standard security.

Health Data: Your wellness data is stored in Google Cloud Firestore, encrypted in transit (TLS 1.2+) and at rest (AES-256). Firestore security rules ensure only you can read or write your own data. Backend services (Cloud Functions) access your data server-side solely to generate your insights, recommendations, and experiment results.

Local Storage: Your name and app preferences are stored on-device (AsyncStorage) only.

Meal Images: Photos you submit for meal analysis are sent to Google Gemini AI for ingredient extraction, then stored in Firebase Storage under your account for display in your meal history.

5. Third-Party Services

Plateify uses the following services to operate:

  • Firebase Authentication (Google LLC) — account login & security
  • Cloud Firestore (Google LLC) — health data storage
  • Cloud Functions (Google LLC) — AI analysis & pattern detection
  • Gemini AI (Google LLC) — meal ingredient extraction from photos

All services are operated by Google LLC. Google's Privacy Policy applies: https://policies.google.com/privacy

No other third-party SDKs for advertising, analytics, or tracking are present in the app.

6. HIPAA Notice

Plateify is a general wellness application and is not a HIPAA-covered entity. It does not provide medical services, clinical care, or health insurance. The information you enter is self-reported wellness data — not Protected Health Information (PHI) as defined under HIPAA.

We follow HIPAA-aligned technical safeguards as best practice:

  • Your data is scoped exclusively to your user account
  • PII (email, name) is structurally separated from health data
  • Encryption in transit and at rest on all stored data
  • No third-party data sharing for commercial purposes

7. Your Rights

You have the right to:

  • Access: View all data you've entered at any time within the app.
  • Correction: Update your profile and health preferences at any time via Settings.
  • Deletion: Delete all logged health data via Settings. To delete your account and all associated data, contact us at the address below.
  • Portability: Contact us to request an export of your data.

California residents may have additional rights under the California Consumer Privacy Act (CCPA). Contact us to exercise these rights.

8. Data Retention

Your health data is retained as long as your account is active. Logged events (meals, moods, symptoms) can be deleted at any time from within the app. Meal photos stored in Firebase Storage are deleted when you delete the associated meal log.

If you delete your account, all of your data — including Firestore records and any stored meal photos — is permanently deleted. Nothing is retained. Firestore backups managed by Google may persist for a short additional period per Google's standard retention policy.

9. Children's Privacy

Plateify is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided personal information through our app, please contact us immediately and we will remove it promptly.

10. Changes to This Policy

We may update this Privacy Policy as the app evolves. When we do, we will update the effective date at the top. We encourage you to review this policy periodically. Continued use of the app after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:

[email protected]
Plateify
Virginia, United States