Trackbie Privacy Policy

Effective Date: 2026-07-09

This Privacy Policy ("Policy") explains how Trackbie application, Inc.("Trackbie," "we," "us," "our," or the "Service Provider"), collects, uses, discloses, stores, and protects personal information when you use the Trackbie mobile application, website, and related services (collectively, the "Services" or the "Application").

This Policy is incorporated into and forms part of our Terms of Service / Terms of Use. Terms not defined here have the meaning given in the Terms of Service.

Please read this Policy carefully. By creating an account or using the Services, you acknowledge that you have read and understood this Policy. If you do not agree with it, please do not use the Services.

1. Who We Are and Scope of This Policy

Trackbie is an AI-powered nutrition and health companion that helps users log food (via text, voice, or photo), track hydration and habits, and receive AI-generated nutritional insights and coaching.

This Policy applies to all users of the Services worldwide. Where local law grants you additional or different rights (for example, the European Economic Area, UK, Switzerland, California and other U.S. states, India, or Canada), those additional terms are set out in Section 14 (Regional Disclosures and Your Rights), which supplements — and in the event of conflict, controls over — the general provisions of this Policy for residents of those regions.

Age restriction. The Services are intended solely for individuals who are 18 years of age or older. By creating an account, you represent and warrant that you are at least 18 years old and legally capable of entering into a binding agreement. We do not knowingly allow anyone under 18 to register for or use the Services. If we learn that we have collected personal information from anyone under 18, we will promptly delete that information and terminate the associated account. See Section 9 for more detail.

2. Information We Collect

We collect information in three ways: information you give us directly, information collected automatically, and information from third parties.

2.1 Information You Provide Directly

  • Account information: name, email address, phone number (if used for sign-up), password (stored in hashed/encrypted form), profile photo (optional), date of birth, gender/sex, country/region.
  • Health, fitness, and biometric-adjacent information: height, weight, body measurements, BMI (calculated), activity level, fitness goals, dietary preferences and restrictions, allergies you choose to disclose, and any health conditions you voluntarily mention in food descriptions, chat with the AI coach, or profile fields.
  • Food and nutrition data: text descriptions of meals you log ("2 slices of Pizza"), voice recordings or voice-to-text transcriptions of meal descriptions, photographs of meals or food items you upload for AI analysis, calorie/macro/fiber outputs generated from that data, hydration logs, and meal timing/frequency patterns.
  • AI coach conversations: questions you ask the in-app AI coach and the responses generated, which may reference your logged data.
  • Communications: messages you send to customer support, survey responses, feedback, and any content you submit in optional community/social features (e.g., leaderboard display name, shared badges).
  • Payment information: if you subscribe to a paid tier, purchases are processed by the Apple App Store, Google Play Store, or a third-party payment processor (e.g., Stripe/Razorpay). We do not directly collect or store your full payment card details — the app store or payment processor's own privacy policy governs that data.
⚠️ Sensitive data notice: Some of the information above (health status, dietary/medical information inferable from your logs) may be considered "special category," "sensitive personal data," or "consumer health data" under laws such as the GDPR, CCPA/CPRA, India's DPDP Act, and U.S. state health-privacy laws (e.g., Washington's My Health My Data Act). We treat this data with heightened protection as described throughout this Policy, and we only process it on the legal bases described in Section 14.

2.2 Information Collected Automatically

When you use the Services, we (and our service providers) may automatically collect:

  • Device and technical data: device model, operating system and version, unique device identifiers, IP address, mobile advertising identifiers, browser type, language settings, time zone.
  • Usage data: features used, screens viewed, buttons tapped, session length and frequency, crash logs and diagnostic data, app performance data.
  • Approximate location: general/coarse location inferred from IP address or, if you separately grant device-level permission, more precise location (only if a specific feature requires it — we will ask for explicit permission at that time).
  • Cookies and similar tracking technologies (if you use our website): see Section 6.

2.3 Information from Third Parties

  • Social/single sign-on: if you register or log in using Apple, Google, or another identity provider, we receive basic profile information (name, email) as permitted by your settings with that provider.
  • Connected health platforms: if you choose to connect Apple HealthKit, Google Health Connect, or similar services, we receive the specific data categories you authorize (e.g., steps, weight). This exchange is also governed by Apple's or Google's own terms and privacy policies. We do not use data received from HealthKit or Health Connect for advertising or marketing purposes, and we do not sell it.
  • Analytics, crash-reporting, and infrastructure providers (see Section 5).
  • AI model providers: see Section 3 below — this is important and specific to how Trackbie works.

2.4 AI Processing — How Your Data Is Used by AI Systems (Important)

Trackbie's core functionality depends on sending the food descriptions, voice transcriptions, and/or photographs you submit to artificial intelligence models — including third-party large language model providers — to generate nutritional analysis (calories, macros, fiber) and coaching responses.

  • Third-party AI providers we use: OpenAI, L.L.C., Anthropic, PBC, Google Cloud Vertex AI. Each processes the specific input you submit (text, voice transcript, or image) under its own data processing terms with us, which restrict use of your data to providing the service and prohibit use for training their models without consent.
  • We do not knowingly allow these providers to use your identifiable data to train their general-purpose models unless you separately opt in.
  • AI-generated nutritional estimates (calories, macros, etc.) are estimates, not laboratory-verified measurements, and may contain inaccuracies. See the Disclaimer in Section 15.
  • We retain logs of AI inputs/outputs for the purposes described in Section 4 (service delivery, quality improvement, abuse prevention) and for the retention periods described in Section 8.

2.5 Aggregated and De-Identified Data

We may aggregate or de-identify personal information so that it can no longer reasonably be used to identify you. We may use and share such de-identified or aggregated data for any purpose, including research, product improvement, and analytics, consistent with applicable law. We will not attempt to re-identify such data except as required to test our de-identification methods or as permitted by law.

3. How We Use Your Information

We use personal information for the following purposes:

PurposeExamples
Provide the ServicesCreating your account, logging meals, calculating TDEE and macro targets, generating the Progress Hub, sending hydration reminders
AI-powered featuresInterpreting your food descriptions/photos/voice input, generating nutrition estimates, powering the AI coach's personalized insights and answers
PersonalizationTailoring targets, recommendations, and reminders to your profile and history
CommunicationsSending account notices, service updates, responding to support requests
MarketingSending product updates, offers, or newsletters (only where you have consented, or as permitted by law); you may opt out at any time
Safety and integrityDetecting fraud, abuse, unauthorized access, or violations of our Terms
Analytics and improvementUnderstanding feature usage, testing new functionality, improving AI accuracy
Legal complianceResponding to lawful requests from authorities, enforcing our agreements, defending legal claims
Business operationsAccounting, audits, and — in the event of a merger, acquisition, financing, or asset sale — evaluating or completing that transaction

We do not use your health/nutrition data to make eligibility decisions about insurance, credit, or employment, and we do not sell your health data.

4. Legal Bases for Processing (EEA/UK/Switzerland Users)

Where the GDPR or UK GDPR applies, we rely on the following legal bases:

  • Consent — for processing sensitive health/nutrition data, for AI-personalization features, for marketing communications, and for non-essential cookies. You may withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.
  • Performance of a contract — to provide the core Services you sign up for (account management, food logging, coaching features).
  • Legitimate interests — for service security, fraud prevention, product analytics, and improving the Services, balanced against your rights and never overriding your fundamental interests in the case of sensitive data.
  • Legal obligation — to comply with applicable law, respond to lawful requests, or enforce our rights.

5. How We Share Your Information

We do not sell your personal information for money. We share information only in the following circumstances:

  • Service providers ("processors"): companies that host our infrastructure (e.g., cloud hosting), provide AI model inference (Section 2.4), analytics, crash reporting, customer support tooling, email delivery, and payment processing. These providers are contractually bound to use your data only to provide services to us and to apply appropriate security safeguards.
  • Other users (only for features you opt into): if you use social/leaderboard features, your chosen display name, streaks, and badges may be visible to other users you connect with. Food logs, weight, and health details are never shown to other users unless you explicitly choose to share them.
  • Business transfers: if Trackbie is involved in a merger, acquisition, financing, or sale of assets, personal information may be transferred as part of that transaction, subject to standard confidentiality protections. We will notify you of any material change in ownership or use of your data.
  • Legal and safety reasons: to comply with a legal obligation (court order, subpoena, regulatory request), to protect the rights, property, or safety of Trackbie, our users, or the public, or to detect and prevent fraud or security incidents.
  • With your consent: for any other purpose we disclose to you at the time of collection, with your affirmative consent.

We require all third parties who process personal information on our behalf to maintain confidentiality and implement appropriate security measures, and we do not authorize them to use your data for their own independent marketing purposes.

5.1 Third-Party Services Used by the Application

The Application relies on third-party services and infrastructure providers that have their own privacy policies governing how they handle data. These currently include:

We encourage you to review the privacy policies of these third-party providers to understand how they collect and process information.

6. Cookies and Tracking Technologies (Website)

If you visit our website, we and our service providers may use cookies, pixels, SDKs, and similar technologies to:

  • Operate essential site functions (Strictly Necessary Cookies — cannot be disabled);
  • Understand site usage and improve performance (Analytics/Functional Cookies);
  • Deliver and measure advertising, if applicable (Advertising Cookies).

You can manage cookie preferences through your browser settings or, where available, through our in-app/website "Manage Cookie Preferences" control. Disabling non-essential cookies may affect certain website features but will not affect your ability to use the mobile app's core functionality.

We honor applicable opt-out signals (e.g., Global Privacy Control) where legally required.

7. Data Security

We implement industry-standard technical and organizational safeguards designed to protect your personal information, including:

  • Encryption of data in transit (TLS/HTTPS) and at rest for sensitive fields;
  • Access controls limiting employee/contractor access to personal data on a need-to-know basis;
  • Regular security review of our infrastructure and third-party vendors;
  • Secure authentication practices (hashed passwords, optional multi-factor authentication where offered).

No system is completely secure. While we work hard to protect your information, we cannot guarantee absolute security, and you share information with us at your own risk. If we become aware of a data breach affecting your personal information, we will notify you and relevant authorities as required by applicable law.

8. Data Retention

We retain personal information for as long as necessary to:

  • Provide you the Services and maintain your account (i.e., until you delete your account or request deletion);
  • Comply with legal, tax, accounting, or regulatory obligations;
  • Resolve disputes and enforce our agreements;
  • Maintain reasonable business records.

When you delete your account, we will delete or anonymize your personal information within a reasonable period, except where we are required or permitted by law to retain it longer. Specifically:

  • User-provided data (account details, health/nutrition profile, food logs, AI coach conversations): retained for the duration of your use of the Application, plus 12 months thereafter, unless a longer period is required by law or you request earlier deletion.
  • Automatically collected data (device/technical and usage data): retained for up to 24 months from collection, unless a longer period is required for legal compliance.
  • Aggregated and anonymized data: retained indefinitely, as it can no longer be used to identify you.
  • Data required for legal compliance (e.g., financial records, active disputes): retained for as long as required by applicable law.

9. Children's Privacy

The Services are intended exclusively for adults aged 18 and over and are not directed at, marketed to, or intended for use by minors of any age, including children under 13 (as defined under the U.S. Children's Online Privacy Protection Act, "COPPA") and teenagers between 13–17. We do not knowingly collect, use, or disclose personal information from anyone under 18.

If we become aware — whether through a report, an internal review, or otherwise — that we have collected personal information from a user under 18, we will promptly deactivate the associated account and delete the personal information from our systems, except where limited retention is required to comply with a legal obligation. If you are a parent or guardian and believe a minor under your care has created an account or otherwise provided us with personal information, please contact us immediately at sachinmehroliya13713@gmail.com so we can investigate and take appropriate action.

10. International Data Transfers

Trackbie is based in India and uses service providers located in the United States, European Union, India, and other regions. As a result, your personal information may be transferred to, stored, and processed in countries other than your country of residence, which may have different data protection laws.

Where we transfer personal information out of the EEA, UK, or Switzerland, we rely on recognized transfer mechanisms such as the European Commission's Standard Contractual Clauses, the UK International Data Transfer Addendum, or adequacy decisions, as applicable. Where we transfer personal information out of India, we comply with the requirements of the Digital Personal Data Protection Act, 2023 and rules issued thereunder. You may request more information about these safeguards by contacting us.

11. Your Choices and Controls

  • Access/Update: You can review and update most profile and health information directly in the app under Settings.
  • Delete your account: You can request full account deletion in-app (Settings → Delete Account) or by emailing sachinmehroliya13713@gmail.com. We will process deletion requests within the timeframes required by applicable law, subject to Section 8.
  • Stop data collection by uninstalling: You can stop all further collection of information from your device at any time by uninstalling the Application. Uninstalling will stop new data collection going forward, but it does not automatically delete information already transmitted to us or our third-party service providers — to request deletion of that existing data, contact us using the details in Section 16.
  • Marketing opt-out: Unsubscribe via the link in any marketing email or adjust notification settings in-app.
  • Push notifications: Manage via your device's OS-level notification settings.
  • Camera/microphone/health-platform permissions: Manage via your device's OS-level permission settings at any time; disabling these will limit related features (e.g., photo logging, voice logging, HealthKit sync).

12. Third-Party Links and Integrations

The Services may contain links to third-party websites or allow integration with third-party platforms (e.g., Apple HealthKit, Google Health Connect, app stores). We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies independently.

13. Changes to This Policy

We may update this Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated Policy with a revised "Last Updated" date and, for material changes, provide additional notice (e.g., in-app notification or email) before the change takes effect, as required by applicable law. Your continued use of the Services after an update constitutes acceptance of the revised Policy, to the extent permitted by applicable law.

Previous versions of this Policy will be maintained and made available upon request by contacting us at sachinmehroliya13713@gmail.com.

14. Regional Disclosures and Your Rights

14.1 European Economic Area, United Kingdom, and Switzerland

If you are located in the EEA, UK, or Switzerland, you have the right to:

  • Access the personal data we hold about you;
  • Rectify inaccurate or incomplete data;
  • Erase your data ("right to be forgotten"), subject to legal exceptions;
  • Restrict or object to certain processing, including profiling and direct marketing;
  • Data portability — receive your data in a structured, machine-readable format;
  • Withdraw consent at any time where processing is based on consent;
  • Lodge a complaint with your local supervisory authority (e.g., the ICO in the UK, or your national Data Protection Authority in the EU).

Data Controller:Trackbie Application

Contact for privacy requests: sachinmehroliya13713@gmail.com

14.2 United States

California (CCPA/CPRA), and other states with comprehensive privacy laws (e.g., Virginia, Colorado, Connecticut, Utah, and others as applicable):

You have the right to:

  • Know/Access the categories and specific pieces of personal information we have collected, used, disclosed, and (if applicable) sold or shared in the preceding 12 months;
  • Delete personal information we have collected from you, subject to exceptions;
  • Correct inaccurate personal information;
  • Opt out of "sale" or "sharing" of personal information, including for cross-context behavioral advertising — Trackbie does not sell personal information for monetary consideration; if we use any advertising technology that could constitute "sharing" under CPRA, we will provide a clear opt-out mechanism;
  • Limit use of sensitive personal information (which includes your health and precise location data, where collected) to purposes necessary to provide the Services;
  • Non-discrimination for exercising your privacy rights.

To exercise these rights, contact us at sachinmehroliya13713@gmail.com. We will verify your identity before fulfilling requests. You may designate an authorized agent to submit requests on your behalf, subject to verification.

Washington My Health My Data Act: To the extent we collect "consumer health data" as defined under this law from Washington residents, we obtain your consent before collecting or sharing such data (except as necessary to provide a product/service you requested), do not use geofencing around health facilities for advertising, and provide you the right to withdraw consent and request deletion of your consumer health data at sachinmehroliya13713@gmail.com.

Children under 13 (COPPA) and minors generally: The Services require all users to be 18 or older, so we do not knowingly collect personal information from anyone under 13, or from any minor under 18. See Section 9.

14.3 India

For users in India, we process personal data in accordance with the Digital Personal Data Protection Act, 2023 ("DPDP Act") and applicable rules, as well as the Information Technology Act, 2000 and associated rules (including the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, to the extent still applicable).

  • We collect and process your personal data only for the specified, lawful purposes described in this Policy, based on your consent, obtained through clear notice at the point of collection.
  • You have the right to access, correct, update, and erase your personal data, to withdraw consent at any time, to nominate another individual to exercise your rights in the event of death or incapacity, and to file a grievance.

Grievance Officer:

Email: sachinmehroliya13713@gmail.com

We will acknowledge and address grievances within the timelines prescribed under applicable law. You may also file a complaint with the Data Protection Board of India if you are not satisfied with our response.

14.4 Canada

If you are located in Canada, we process personal information in accordance with the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial laws. You have the right to access and request correction of your personal information and to file a complaint with the Office of the Privacy Commissioner of Canada or your provincial privacy regulator.

Quebec residents additionally have the right to data portability and to request de-indexation of certain personal information in specific circumstances, as provided under Quebec's Act Respecting the Protection of Personal Information in the Private Sector.

14.5 Other Jurisdictions

If you are located in a jurisdiction not specifically addressed above (e.g., Australia, Singapore, UAE, Brazil, South Africa), you may still have rights under your local data protection law (such as Australia's Privacy Act, Singapore's PDPA, Brazil's LGPD, or others). We will honor legitimate rights requests from users in any jurisdiction to the extent required by applicable law — contact us at sachinmehroliya13713@gmail.com and we will respond in line with the law that applies to you.

15. Important Disclaimer — Not Medical Advice

Trackbie is a nutrition-tracking and informational tool. It is not a medical device, and it does not provide medical advice, diagnosis, or treatment.

Nutritional estimates generated by our AI (calories, macros, fiber, TDEE, etc.) are approximations based on the information you provide and may not be fully accurate. Trackbie's AI coach provides general, data-informed guidance, not personalized medical or clinical advice. Always consult a qualified physician, registered dietitian, or other healthcare professional before making changes to your diet, exercise, or health regimen, especially if you have a pre-existing medical condition, are pregnant or nursing, or are taking medication. If you have or suspect a medical emergency, contact emergency services immediately — do not rely on the app.

16. Contact Us

If you have questions, concerns, or requests regarding this Policy or our data practices, contact us at:

We aim to respond to all legitimate privacy inquiries within 30 days or within the timeframe required by applicable law, whichever is shorter.

This Policy was last reviewed on 2026-07-09. This document is provided for informational purposes only — it does not constitute legal advice. Before publishing, please have this reviewed by a licensed attorney familiar with data protection law in each jurisdiction where Trackbie operates or has users, and ensure every bracketed placeholder reflects your actual, factual practices.