Privacy Policy

Effective Date: January 28, 2026 Last Updated: January 28, 2026

Overview

SafeBites ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application SafeBites (the "App").

By using SafeBites, you agree to the collection and use of information in accordance with this policy.

Contact Information

Developer: Reece O'Connor Email: reeceo71@gmail.com Website: https://safebites.io

Information We Collect

Personal Information

When you use SafeBites, we may collect the following types of information:

• Account Information: Email address and authentication data (Apple ID when using Sign in with Apple)
• Health Data: Meal logs (food names, ingredients, photos), symptom reports (type, severity, timing), and timestamps
• Device Information: Device type, operating system version, app version, and unique device identifiers
• Usage Data: Features accessed, time spent in the app, and interaction patterns

How We Collect Information

• Information You Provide: Data you enter when logging meals, recording symptoms, or updating your profile
• Automatically Collected: Usage analytics and technical information collected as you use the App
• From Third Parties: Apple Sign In may provide your email address or anonymized identifier

How We Use Your Information

We use the collected information for the following purposes:

• Core Functionality: Store and display your meal and symptom logs to help you identify potential food sensitivities
• Pattern Recognition: Analyze correlations between meals and symptoms to provide insights
• Service Improvement: Understand how users interact with the app to improve features and user experience
• Communication: Send important updates about your account, subscription status, or app changes
• Security: Detect and prevent fraud, abuse, or security incidents

Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process your personal data under the following legal bases:

• Contract Performance: Processing is necessary to provide the services you requested
• Consent: You have given explicit consent for processing health data (a special category of personal data under GDPR)
• Legitimate Interests: We have a legitimate interest in improving our services and preventing fraud

You have the right to withdraw consent at any time by deleting your account.

Third-Party Services

SafeBites uses the following third-party services that may collect and process your data:

Supabase (Data Storage)

• Purpose: Backend infrastructure for storing your account, meals, and symptoms
• Data Shared: All user-provided data
• Privacy Policy: https://supabase.com/privacy
• Location: Data is stored in secure cloud infrastructure

Mixpanel (Analytics)

• Purpose: Track app usage and feature engagement to improve the user experience
• Data Shared: Anonymous usage events, device information (no health data such as specific meals or symptoms)
• Privacy Policy: https://mixpanel.com/legal/privacy-policy/
• Opt-Out: You can disable analytics in the app settings

Sentry (Error Monitoring)

• Purpose: Detect and diagnose app crashes and errors to improve stability
• Data Shared: Error logs, device information, app state at time of crash (no health data)
• Privacy Policy: https://sentry.io/privacy/
• Note: We do not send meal or symptom data to Sentry

RevenueCat (Subscriptions)

• Purpose: Manage in-app subscriptions and payment processing
• Data Shared: Purchase history, subscription status, anonymous user identifier
• Privacy Policy: https://www.revenuecat.com/privacy/
• Note: We do not receive or store your payment information (processed by Apple)

Resend (Email)

• Purpose: Send transactional emails (account verification, password reset)
• Data Shared: Email address, email content
• Privacy Policy: https://resend.com/legal/privacy-policy

Open Food Facts (Product Data)

• Purpose: Look up product information by barcode scanning
• Data Shared: Barcode numbers (no personal information)
• Privacy Policy: https://world.openfoodfacts.org/privacy

Data Storage and Security

• Local Storage: Meal and symptom data is stored locally on your device using AsyncStorage and synced to our secure servers when online
• Secure Token Storage: Authentication tokens are stored in iOS Keychain via expo-secure-store
• Encryption: Data is encrypted in transit using TLS/SSL and at rest using industry-standard encryption
• Access Control: Your data is only accessible to you and our secure backend systems
• Backups: We maintain secure backups to prevent data loss
• Offline Capability: The app functions fully offline for meal and symptom logging, with data syncing automatically when connectivity is restored

Data Retention

• Active Accounts: We retain your data for as long as your account is active
• Local Data: The last 14 days of meal and symptom data is cached locally on your device for offline access
• Server Data: Full meal and symptom history is stored on our secure servers
• Deleted Accounts: Upon account deletion, your personal data is permanently deleted within 30 days from both local and server storage
• Legal Obligations: We may retain certain data if required by law or for legitimate business purposes (e.g., fraud prevention)

Your Rights

You have the following rights regarding your personal data:

Access and Portability

• Request a copy of all data we hold about you
• Export your data in a machine-readable format

Correction

• Update or correct inaccurate information in the app settings

Deletion

• Delete your account and all associated data at any time through the app settings
• Contact us to request manual deletion

Restriction and Objection

• Object to processing of your data for specific purposes
• Request restriction of processing under certain conditions

Withdraw Consent

• Withdraw consent for health data processing by deleting your account

To exercise these rights, contact us at reeceo71@gmail.com.

Children's Privacy

SafeBites is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it immediately.

Users between 13 and 18 must have parental or guardian consent to use the app and provide health information.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy in the app
• Updating the "Last Updated" date at the top of this policy
• Sending an email notification for material changes (if you have an account)

Continued use of SafeBites after changes constitutes acceptance of the updated policy.

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to Know: What personal information we collect and how it is used
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt out of the sale of personal information (Note: we do not sell your data)
• Right to Non-Discrimination: You will not be discriminated against for exercising your rights

To exercise these rights, contact us at reeceo71@gmail.com.

Medical Disclaimer

IMPORTANT: SafeBites provides informational correlations between meals and symptoms. It is NOT a medical device and does NOT provide medical diagnoses, treatment recommendations, or professional medical advice. Always consult with a qualified healthcare provider for medical concerns.

Data Sharing

We do NOT:

• Sell your personal information to third parties
• Share your health data with advertisers
• Use your meal or symptom data for purposes other than providing our services

We MAY share your information:

• With service providers who help us operate the app (under strict confidentiality agreements)
• If required by law or legal process
• To protect our rights, safety, or property
• In connection with a business transfer (merger, acquisition, etc.) with notice to you

Apple App Store Privacy Labels

SafeBites provides the following information to Apple for App Store privacy labels:

Data Linked to You:

• Health & Fitness (meal logs, symptom reports)
• Contact Info (email address)
• Identifiers (user ID, device ID)
• Usage Data (analytics)

Data Not Linked to You:

• Diagnostics (crash reports, error logs)

Data Used to Track You:

• None - SafeBites does not use data for tracking across apps or websites owned by other companies

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data:

Email: reeceo71@gmail.com Website: https://safebites.io

For EEA users, you also have the right to lodge a complaint with your local data protection authority.

---

Last Updated: January 28, 2026