Privacy Policy

Last updated: 29 May 2026 · Effective: at launch

NutriPilot ("NutriPilot," "we," "us") is operated by Tinychef Inc. This policy explains what we collect, why, how we use it, who we share it with, and the choices and rights you have. By using NutriPilot you agree to this policy.

The short version: NutriPilot tracks what you eat to give you a daily GutScore and a long-arc NutriAge. We collect the data needed to make those work, process some of it with trusted AI providers to read your meals, never sell your personal data, and let you delete everything in one tap.

1. Who we are & how to reach us

Data controller: Tinychef Inc.
Privacy contact: sales@tinychef.ai

2. Information we collect

2.1 You give us

Account — email address, name (if provided), and the sign-in method you choose (Sign in with Apple, Google, or email + password). With Sign in with Apple you may use a private relay email.
Profile — information you enter during onboarding such as age, sex, body weight, and your nutrition goals and food-context preferences. This is used to compute your scores.
Food logs — meals you record by text, voice, or photo, including the photos and voice recordings you submit for logging, plus portions and any edits.
Daily gut check-ins — your 1-tap morning responses.
Communications — messages you send us (e.g., support).

2.2 We generate

Derived health metrics — your GutScore, its components and "because" lines, and your NutriAge estimate.
Personalization signals — correlations between foods and your gut check-ins that tune your scores over time.

2.3 Collected automatically

Usage & analytics — events such as onboarding steps, meals logged, and screens viewed (via Firebase Analytics), plus crash and performance data.
Device & technical — device model, OS version, app version, language, and a push notification token (Firebase Cloud Messaging) if you enable notifications.

Sensitive / health information. Your food logs and the GutScore / NutriAge metrics we derive are health-related information. We treat them as sensitive and process them only to provide the app's core features described here, with your consent. NutriPilot is a wellness and informational tool — it is not a medical device, and NutriAge is not a medical biological-age test.

3. How we use your information

Provide the core product: parse your meals, compute and explain your GutScore and NutriAge, and run the 1-tap check-in and 30-day challenge.
Personalize your scores from week two onward.
Send service messages and, if enabled, the morning gut check-in and weekly review notifications.
Maintain security, prevent abuse, and debug.
Understand aggregate, de-identified usage to improve the product.
Communicate about the product where you have consented (e.g., as an opted-in alumni member, consistent with Canada's Anti-Spam Legislation — CASL). You can unsubscribe at any time.

4. AI processing of your meals

To turn your text, voice, or photo into structured nutrition data and to phrase score explanations, we send the relevant input to trusted AI providers acting as our processors under contract:

Anthropic (Claude API) — parses text logs and polishes the wording of explanations.
Microsoft Azure OpenAI — recognizes dishes from photos (recipe-matching) and transcribes voice logs.

These providers process the data on our behalf to deliver the feature and do not use your content to train their public models under our enterprise terms. Score drivers are computed mechanically by NutriPilot; AI only polishes phrasing.

5. Who we share data with

We do not sell your personal information. We share it only with:

Recipient	Purpose
Google Firebase (Auth, Firestore, Cloud Messaging, Analytics, Crashlytics)	Account, data storage, notifications, analytics
Anthropic; Microsoft Azure OpenAI	Meal parsing, photo recognition, voice transcription (§4)
Email & hosting providers	Sending product email; serving this website
Payment processor (when paid plans launch)	Billing — we do not store card numbers
Legal / safety	To comply with law or protect rights and safety
Business transfer	If we merge or are acquired, data may transfer under this policy

6. Wearables & connected health sources (future feature). A future version of NutriPilot may let you optionally connect wearables and health platforms — including WHOOP, Apple Health, Google Health Connect, and MyFitnessPal, via our integration partner Terra — to enrich your scores with recovery, sleep, activity, and nutrition data. This will be strictly opt-in: no wearable or third-party health data is collected unless you explicitly connect an account and grant permission. When you do, that data is processed only to enhance your GutScore and NutriAge, under this policy, and you can disconnect at any time. Until you connect a source, none of this data is collected.

7. Data retention

We keep your account and logs while your account is active. When you delete your account (§9), we delete or de-identify your personal data within 30 days, except where we must retain limited records to meet legal, security, or accounting obligations. Aggregated, de-identified data that cannot identify you may be retained.

8. Your rights & choices

Access, correct, export, or delete your data — in-app or by emailing sales@tinychef.ai.
Withdraw consent or object to certain processing.
Turn off notifications in your device settings.
Unsubscribe from product email via the link in any email.

Depending on where you live (e.g., Canada's PIPEDA, the EEA/UK's GDPR, California's CCPA/CPRA), you may have additional rights. We honor them. We do not sell or "share" personal information for cross-context behavioral advertising.

9. Deleting your account & data

You can delete your account and all associated personal data at any time:

In the app — Profile → Settings → Delete account.
Or visit nutripilotapp.com/delete-account or email sales@tinychef.ai.

Deletion is permanent and removes your profile, logs, photos, voice recordings, and derived scores, subject to the limited legal-retention exceptions in §7.

10. Security

Data is encrypted in transit (TLS) and at rest by our infrastructure providers. We limit access on a need-to-know basis. No system is perfectly secure, but we work to protect your information.

11. International transfers

We are based in Canada and use providers that may process data in the United States and other countries. Where required, we rely on appropriate safeguards for these transfers.

12. Children

NutriPilot is not directed to children under 16, and we do not knowingly collect their data. If you believe a child has provided us data, contact us and we will delete it.

13. Changes

We may update this policy. We will post the new version here with a revised "Last updated" date and, for material changes, notify you in-app or by email.

14. Contact

Questions? Email sales@tinychef.ai.