Privacy Policy

Last updated: 4 June 2026 · NomsAI by a solo developer

The short version: Your food logs, workout logs, water logs, weight data, and calorie goals never leave your device. We don't store them, we can't see them, and they disappear if you uninstall the app. The only data on our server is a random ID and your credit balance — none of which identifies you.

1. Who We Are

NomsAI is a minimalist calorie-tracking app built and operated by a solo developer based in the United Kingdom. References to "we", "us", or "our" mean that developer. We are the data controller under UK GDPR (for UK users) and EU GDPR (for users in the EEA, including Ireland). Our lead supervisory authority for UK users is the Information Commissioner's Office (ICO). For users in Ireland and the wider EEA, the competent supervisory authority is your national Data Protection Authority; in Ireland this is the Data Protection Commission (DPC). Because NomsAI's processing of EEA data is occasional, pseudonymous, and poses no systemic risk to individuals' rights and freedoms, we do not appoint an EU Representative pursuant to Article 27(2) of the EU GDPR. For US users, applicable federal and state privacy laws govern. For questions or data requests, contact [email protected].

2. No Account Required

NomsAI does not require you to create an account or provide any personal information such as your name, email address, or date of birth. When you first open the app, a random UUID (e.g. a3f8…) is generated on your device. This is your only identifier. We have no way to link it to you as a person.

3. What We Collect

The following data is stored on our server, associated only with your anonymous Device ID:

Device ID — A randomly generated UUID created on your device at first launch. Pseudonymous: we cannot identify you from it alone.
Credit balance and Pro status — Whether you have an active Pro or purchased log credits. Necessary to deliver the service.
Last session timestamp — The date and time you last opened the app. Used solely to compute aggregate retention metrics (e.g. how many users return after 30 days). Never shared externally.
Daily AI usage counter (Pro subscribers only) — A count of AI requests made today and the date it was last reset. Used solely to enforce a daily fair-use limit. Resets automatically each day.
Meal Ideas trial flag — A single boolean recording whether you have used your one free Meal Ideas generation. Stored solely to enforce the trial limit. Contains no dietary or personal information.
Purchase transaction IDs — When you purchase credits or a Pro subscription, the App Store or Google Play transaction ID is stored alongside your Device ID and product identifier. This is used solely to prevent duplicate crediting if the same purchase receipt is submitted more than once (e.g. a network retry). Transaction IDs are automatically deleted after 2 years and are removed immediately if you delete your account.

We do not collect your name, email, location, contacts, passwords, or payment card details. Food-entry text and meal ingredient lists are sent transiently to our AI provider to deliver the service and are not stored on our server — see Section 4 for details.

Voice input: If you use the optional voice input feature, your speech is processed by your device's built-in speech recognition engine (provided by Apple or Google). The resulting text is placed into the input field on your device and treated identically to typed input. No audio is recorded or transmitted by NomsAI. Microphone access is requested only when you tap the mic button and is not used at any other time.

4. What Stays on Your Device

The following data is stored exclusively in your app's local storage and never sent to our server:

Food logs — AI-extracted items, macro estimates, and timestamps. We cannot see, access, or retrieve these under any circumstances.
Workout logs — Activity type, duration, and estimated calories burned.
Weight entries — Body weight measurements, dates, and your weekly weight-change target.
Calorie and macro goals — Your target calories, protein, carbs, and fat.
Water intake entries — Daily water logs and your hydration goal. Automatically pruned after 30 days.
Custom recipes and saved meal ideas — Meals and AI-generated recipes you have saved for one-tap re-logging.

Barcode scanning: When you use the barcode scanner, your camera is accessed temporarily to read the barcode. No image is stored or transmitted. The barcode number is sent to our server solely to look up nutritional data; it is not stored after the lookup completes.

Your original free-text input (e.g. "2 eggs and toast") and any ingredient lists you enter in the Meal Ideas feature are sent to our AI provider to estimate macros or generate recipe suggestions, and are then discarded. They are not saved anywhere — not on our server, not on your device.

Consequence: If you uninstall the app or switch to a new phone, your log history, goals, and weight entries are gone. We have no copy and no way to restore them. On iOS, a random device identifier is retained in the system Keychain after uninstall solely to preserve your credit balance if you reinstall; it contains no personal data and is permanently deleted when you use Settings → Delete Account.

Pro subscribers: your subscription is managed by Apple / Google. Tap Restore Purchases in Settings to recover your Pro on a new device.

5. How We Use Your Data and Our Lawful Basis

We process your data under UK GDPR Article 6 (UK users) and EU GDPR Article 6 (EEA users, including Ireland). The table below sets out each processing activity, its purpose, and the legal basis we rely on.

Processing activity	Purpose	Lawful basis
Storing your Device ID and credit balance	To identify your account and deliver the core service (AI macro estimation, credit deduction)	Contract — Art. 6(1)(b): necessary to perform the service you use
Updating the last-session timestamp	Aggregate, anonymised retention analysis	Legitimate interests — Art. 6(1)(f): understanding whether the app is useful, balanced against minimal privacy impact (only a timestamp, no personal data)
Tracking daily AI usage counter (Pro subscribers only)	Enforce the daily fair-use limit; protect service sustainability	Contract — Art. 6(1)(b): necessary to fulfil the Pro terms
Sending food-entry text to Google Gemini	Parse free-text food input and estimate macros	Contract — Art. 6(1)(b): the app cannot function without this; the text is not stored by us after processing
Sending meal ingredient lists to Google Gemini	Generate meal ideas with macros and cooking instructions via the Meal Ideas feature	Contract — Art. 6(1)(b): necessary to deliver the Meal Ideas feature; ingredient lists are not stored by us after processing
Sharing Device ID with RevenueCat	Verify and restore in-app purchases and Pro status	Contract — Art. 6(1)(b): necessary to deliver paid features
IP address processing by infrastructure providers (Cloudflare, Fly.io)	Routing requests to our servers, DDoS protection, and abuse prevention. We do not log IP addresses ourselves; they are processed transiently by our hosting and security providers as an inherent part of internet infrastructure.	Legitimate interests — Art. 6(1)(f): necessary to operate a secure and reliable service

We do not sell, rent, share, or use your data for advertising. We do not use your data to train AI models.

6. Third-Party Services and International Transfers

Google Gemini API (United States) — Your food-entry text and, when you use the Meal Ideas feature, your ingredient list are sent to Google's Gemini API to estimate macros and generate recipe suggestions respectively. Only the content of your entry is sent; your Device ID is never shared with Google. Google's API terms prohibit using customer data to train models. Transfer is covered by Google's Standard Contractual Clauses. See the Google Privacy Policy.
RevenueCat (United States) — Manages in-app purchases and subscription status. RevenueCat receives your Device ID (as an anonymous customer identifier) and your purchase receipt. Transfer is covered by RevenueCat's Standard Contractual Clauses. See the RevenueCat Privacy Policy.
Apple App Store / Google Play — Process payments for the Pro and purchased credits. We never see your payment details.
MongoDB Atlas (European Union) — Stores our server-side data (Device ID, credits, last-session timestamp) on SOC 2 Type II certified infrastructure. Data remains within the EU; no international transfer occurs.
Cloudflare (United States / global network) — Provides CDN, DDoS protection, and security filtering for all traffic to our API and website. Cloudflare processes IP addresses and request metadata (HTTP method, endpoint, timestamp) as part of its security service. Cloudflare does not receive the content of your requests (e.g. food entry text). Transfer is covered by Cloudflare's Standard Contractual Clauses. See the Cloudflare Privacy Policy.
Fly.io (United States) — Hosts our API server. As an inherent part of hosting, Fly.io's infrastructure processes IP addresses and standard HTTP request metadata for routing purposes. Our application does not log IP addresses. Transfer is covered by Fly.io's Standard Contractual Clauses. See the Fly.io Privacy Policy.

Transfers to the United States (Google Gemini, RevenueCat, Cloudflare, Fly.io) are made under Standard Contractual Clauses approved by the European Commission and the UK ICO, providing equivalent safeguards to EU/UK data protection law. Where applicable, transfers may also rely on the UK-US Data Bridge adequacy decision.

7. Data Retention

Food logs, workout logs, goals — Stored only on your device. Food and workout logs are automatically pruned after 180 days by the app. Permanently deleted when you uninstall.
Water intake entries — Stored only on your device. Automatically pruned after 30 days. Permanently deleted when you uninstall.
Custom recipes — Stored only on your device. Permanently deleted when you uninstall.
Weight entries — Stored only on your device. Automatically pruned after 2 years. Permanently deleted when you uninstall.
Server data (Device ID, credits, Pro status, last-session timestamp) — Retained until you delete your account via Settings → Delete Account, which removes all server-side records and the Keychain entry immediately and permanently. You can download a copy first via Settings → Export My Data.
Purchase transaction IDs — Automatically deleted after 2 years via a scheduled database expiry. Deleted immediately and permanently when you delete your account.
Food-entry text and meal ingredient lists sent to Gemini — Not retained by us. Google's API terms prohibit retention for training purposes; see their data processing terms for Google's own retention periods.

8. Special Category Data (GDPR Article 9)

Because food logs, weight measurements, and dietary goals are stored entirely on your device and never processed on our servers, NomsAI does not process special category data as a data controller. The only data we hold server-side — a random ID, a credit balance, and a last-session timestamp — does not fall under Article 9.

Food-entry text and meal ingredient lists are transiently processed by Google Gemini to extract macro estimates or generate recipe suggestions, and are immediately discarded. This transient processing touches on dietary information; however, it is not stored or linked to any identifiable person, and Google's API terms prohibit its use for any purpose beyond fulfilling the API request.

NomsAI does not engage in automated decision-making or profiling within the meaning of GDPR Article 22. AI-generated macro estimates are informational only, have no legal or similarly significant effect on you, and you retain full control to edit or discard them before saving.

9. Medical Disclaimer

NomsAI is an informational macro-tracking tool, not a medical device. It does not provide medical, clinical, or dietary advice. Do not use it to manage any medical condition. Always consult a qualified healthcare professional before making health decisions.

10. Your Rights (GDPR / UK GDPR)

If you are in the EEA or UK you have the following rights. Because NomsAI holds minimal pseudonymous data, most are exercisable directly in the app:

Access & portability — The server-side record associated with your Device ID contains only: credit balances, Pro status, last-session timestamp, daily AI counter (Pro users only), and record creation/update timestamps. Use Settings → Export My Data to download a CSV of your server-side data, or use Settings → Backup & Restore (Pro) to export a full JSON backup of all device data including food logs, workouts, weight entries, recipes, and water logs.
Erasure — Settings → Delete Account permanently deletes all server-side data instantly. Uninstalling the app removes all local data.
Rectification — We hold no personal data that could be inaccurate. Credit balances are automatically maintained by the service.
Restriction — You may request that we restrict processing. In practice, the only active processing is credit deduction and lastSeen updates; restriction would effectively suspend the service.
Object to legitimate-interests processing — You may object to our use of the last-session timestamp for retention analysis. Contact [email protected] and we will stop updating that field for your Device ID.

For any requests, contact [email protected]. We will respond within 30 days. Because all data is stored under an anonymous Device ID with no name or email attached, we may ask you to provide your Device ID (visible in Settings) to action your request.

11. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority at any time — you do not need to contact us first.

UK: Information Commissioner's Office (ICO) — ico.org.uk/make-a-complaint
Ireland / EEA: Your national Data Protection Authority — in Ireland this is the Data Protection Commission (DPC, dataprotection.ie). Find other EEA authorities at edpb.europa.eu.

12. Children

NomsAI is intended for users aged 18 and over. We do not knowingly collect data from minors. If you are under 18, you must not use the App.

13. US Residents — State Privacy Rights

If you are a US resident, applicable federal and state privacy laws grant you rights regarding your personal information. This section covers California (CCPA/CPRA), Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and other states with comprehensive privacy laws. The same rights and contact point apply regardless of which state you are in.

We do not sell your personal information. We do not share your personal information with third parties for cross-context behavioural advertising. There is no "sale or sharing" to opt out of.

Right to know / access — You have the right to know what personal information we collect, how we use it, and with whom we share it. This policy describes that in full. In summary: we hold only a random Device ID, credit balance, Pro status, last-session timestamp, and (for Pro users) a daily AI usage counter. We cannot link any of this to your name or identity.
Right to delete — Use Settings → Delete Account to permanently and immediately delete all server-side data. You may also contact [email protected].
Right to correct — We hold no information that could be factually inaccurate about you (credit balances are maintained automatically by the service). If you believe there is an error, contact us.
Right to opt out of sale/sharing/targeted advertising — Not applicable. We do not sell personal information or use it for targeted advertising.
Right to non-discrimination — We will not discriminate against you for exercising any privacy right.
Sensitive personal information (CPRA) — We do not collect sensitive personal information as defined by the CPRA (e.g. SSN, financial account details, precise geolocation, health data). Food-entry text sent to our AI provider is transient and not stored; it does not constitute sensitive personal information we retain.
Authorised agents (California) — A California resident may designate an authorised agent to submit requests on their behalf. We will verify the agent's authorisation before responding.

To exercise any of these rights, contact [email protected]. We will respond within 45 days (extendable by a further 45 days where reasonably necessary). Please include your Device ID (visible in Settings) so we can locate your record.

14. Canadian Residents — PIPEDA & Quebec Law 25

If you are a Canadian resident, the federal Personal Information Protection and Electronic Documents Act (PIPEDA) governs how we handle your personal information. Quebec residents are additionally protected by Quebec's Act respecting the protection of personal information in the private sector (Law 25), which imposes similar obligations to EU GDPR.

For the purposes of Quebec Law 25, the solo developer acts as the Person In Charge of Personal Information (Privacy Officer) and can be reached at [email protected].

Cross-border transfers: Your pseudonymous server-side data (Device ID, credit balance, Pro status) is stored in the European Union via MongoDB Atlas. Transient food-entry text sent for AI processing is handled in the United States by Google Gemini and immediately discarded. By using the app you acknowledge that this data crosses borders and may be subject to the laws of those jurisdictions.

We do not sell your personal information. The same data rights that apply to UK/EU users apply to you:

Right to access — You may request a copy of the personal information we hold about you (your Device ID, credit balance, Pro status, and usage counters). Contact [email protected] with your Device ID (visible in Settings).
Right to correction — You may ask us to correct inaccurate information.
Right to erasure — Use Settings → Delete Account for immediate deletion, or contact us by email.
Right to withdraw consent — You may withdraw consent at any time by deleting your account. This will not affect the lawfulness of processing before withdrawal.

We will respond to requests within 30 days. If you have a complaint about how we handle your personal information, you may contact:

Federal (all provinces): Office of the Privacy Commissioner of Canada (OPC) — priv.gc.ca
Quebec residents: Commission d'accès à l'information (CAI) — cai.gouv.qc.ca

15. Changes to This Policy

We may update this policy. The "last updated" date at the top will change when we do. Continued use of the app after changes are posted constitutes acceptance of the updated policy.

16. Contact

[email protected]