Kcal AI LogoKcal AI

Privacy Policy

The privacy policy explains how we collect, use, disclose, and protect personal information if anyone decides to use our application. By using Kcal AI, you understand and agree to the collection and use of information related to this policy. The personal information we collect is used to provide and improve the services. Except as this privacy policy describes, we will not use or share your information with anyone.

INFORMATION COLLECTION AND USE

For a better experience, while using our Service, we may require you to provide us with certain personally identifiable information, including but not limited to your name, email address, gender, location, pictures. The information that we request will be retained by us and used as described in this privacy policy.

The app does use third-party services that may collect information used to identify you.

NOTE ON APPLE HEALTHKIT DATA

When you choose to enable the "Sync with Apple Health" function in Kcal AI, we will only access the walking step count and calorie consumption data that you actively authorize from your Apple Health app. The collection, use and protection of this data comply with the following rules:

Data Authorization and Scope

You have the right to independently control the authorization scope: You can manage whether to allow Kcal AI to access your health data through Apple's official system settings (path: Settings > Privacy & Security > Health > Kcal AI). We will only collect the two types of data mentioned above (walking steps and calories) and will not apply for access to other health information (such as heart rate, sleep data, or medical records) in Apple Health.

All health data is transmitted encrypted through Apple's official HealthKit API. Kcal AI does not store the original step count or calorie data—after completing the necessary processing to support display functions, the data will be immediately deleted from our servers/devices.

Purpose of Data Use

The collected walking step count and calorie data are only used for display in Kcal AI: Specifically, the data will be presented in the "Health Data" section of the App as daily/historical walking step details and calorie consumption records.

User Control Rights

You can revoke or adjust the authorization of Kcal AI to access Apple Health data at any time: Please operate through Apple's system settings (path: Settings > Privacy & Security > Health > Kcal AI), where you can turn off the access permission for "Walking Steps" and "Calorie Consumption" as needed.

After revoking authorization, Kcal AI will immediately stop accessing new health data from Apple Health, and the historical health data that has been displayed in the App will no longer be updated (the displayed content will be cleared automatically after you restart the App).

Third-Party Responsibility and Compliance

The storage, protection, and management of data in Apple Health are governed by the Apple Terms and Conditions and Apple Privacy Policy. Kcal AI has no right to access, modify, or control any data in your Apple Health app beyond the authorized scope (i.e., walking steps and calorie consumption).

If you have questions about the privacy protection of Apple Health itself (e.g., how Apple stores your health data), please contact Apple's official customer service channel for consultation.

For any questions about Apple Health data sync, please contact us via service@kcalai.com.

TYPES OF DATA COLLECTED

Among the types of Personal Data that this Application collects, by itself or through third parties, there are:

  • first name; last name; email address; username; password;
  • date of birth; gender; height; weight;
  • dietary preferences and restrictions;
  • food intake data and nutritional information;
  • photos and images of food items;
  • usage data and app interaction patterns;
  • device identifiers and technical information;

Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or by specific explanation texts displayed prior to the Data collection.

MODE AND PLACE OF PROCESSING THE DATA

Methods of processing

The Owner takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data. The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated.

In addition to the Owner, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of this Application (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner.

Legal basis of processing

The Owner may process Personal Data relating to Users if one of the following applies:

  • Users have given their consent for one or more specific purposes;
  • provision of Data is necessary for the performance of an agreement with the User;
  • processing is necessary for compliance with a legal obligation to which the Owner is subject;
  • processing is related to a task that is carried out in the public interest;
  • processing is necessary for the purposes of the legitimate interests pursued by the Owner or by a third party.

Place

The Data is processed at the Owner's operating offices and in any other places where the parties involved in the processing are located. Depending on the User's location, data transfers may involve transferring the User's Data to a country other than their own.

Retention time

Personal Data shall be processed and stored for as long as required by the purpose they have been collected for. Therefore:

  • Personal Data collected for purposes related to the performance of a contract between the Owner and the User shall be retained until such contract has been fully performed.
  • Personal Data collected for the purposes of the Owner's legitimate interests shall be retained as long as needed to fulfill such purposes.
  • The Owner may be allowed to retain Personal Data for a longer period whenever the User has given consent to such processing.

THE PURPOSES OF PROCESSING

The Data concerning the User is collected to allow the Owner to provide its services, as well as for the following purposes:

  • Registration and authentication
  • Providing nutrition tracking and analysis
  • Food recognition and calorie calculation
  • Personalized recommendations and insights
  • Analytics and usage statistics
  • Service improvement and development
  • Payment processing (for premium features)
  • Legal compliance and fraud prevention

DETAILED INFORMATION ON THE PROCESSING OF PERSONAL DATA

Personal Data is collected for the following purposes and using the following services:

Analytics

The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.

Advertising

This type of service allows User Data to be utilized for advertising communication purposes. These communications are displayed in the form of banners and other advertisements on this Application.

Registration and authentication

By registering or authenticating, Users allow this Application to identify them and give them access to dedicated services. Depending on what is described below, third parties may provide registration and authentication services.

Content performance and features testing (A/B testing)

The services contained in this section allow the Owner to track and analyze the User response concerning web traffic or behavior regarding changes to the structure, text or any other component of this Application.

THE RIGHTS OF USERS

Users may exercise certain rights regarding their Data processed by the Owner.

In particular, Users have the right to do the following:

  • Withdraw their consent at any time. Users have the right to withdraw consent where they have previously given their consent to the processing of their Personal Data.
  • Object to processing of their Data. Users have the right to object to the processing of their Data if the processing is carried out on a legal basis other than consent.
  • Access their Data. Users have the right to learn if Data is being processed by the Owner, obtain disclosure regarding certain aspects of the processing and obtain a copy of the Data undergoing processing.
  • Verify and seek rectification. Users have the right to verify the accuracy of their Data and ask for it to be updated or corrected.
  • Restrict the processing of their Data. Users have the right, under certain circumstances, to restrict the processing of their Data. In this case, the Owner will not process their Data for any purpose other than storing it.
  • Have their Personal Data deleted or otherwise removed. Users have the right, under certain circumstances, to obtain the erasure of their Data from the Owner.
  • Receive their Data and have it transferred to another controller. Users have the right to receive their Data in a structured, commonly used and machine readable format and, if technically feasible, to have it transmitted to another controller without any hindrance.
  • Lodge a complaint. Users have the right to bring a claim before their competent data protection authority.

Details about the right to object to processing

Where Personal Data is processed for a public interest, in the exercise of an official authority vested in the Owner or for the purposes of the legitimate interests pursued by the Owner, Users may object to such processing by providing a ground related to their particular situation to justify the objection.

How to exercise these rights

Any requests to exercise User rights can be directed to the Owner through the contact details provided in this document. These requests can be exercised free of charge and will be addressed by the Owner as early as possible and always within one month.

ADDITIONAL INFORMATION ABOUT DATA COLLECTION AND PROCESSING

Legal action

The User's Personal Data may be used for legal purposes by the Owner in Court or in the stages leading to possible legal action arising from improper use of this Application or the related Services.

Additional information about User's Personal Data

In addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information concerning particular Services or the collection and processing of Personal Data upon request.

System logs and maintenance

For operation and maintenance purposes, this Application and any third-party services may collect files that record interaction with this Application (System logs) use other Personal Data (such as the IP Address) for this purpose.

Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from the Owner at any time. Please see the contact information at the beginning of this document.

Changes to this privacy policy

The Owner reserves the right to make changes to this privacy policy at any time by notifying its Users on this page and possibly within this Application and/or - as far as technically and legally feasible - sending a notice to Users via any contact information available to the Owner.

LOG DATA

We want to inform you that whenever you use our Service, in a case of an error in the app we collect data and information (through third-party products) on your phone called Log Data. This Log Data may include information such as your device Internet Protocol ("IP") address, device name, operating system version, the configuration of the app when utilizing our Service, the time and date of your use of the Service, and other statistics.

COOKIES

Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. These are sent to your browser from the websites that you visit and are stored on your device's internal memory.

This Service does not use these "cookies" explicitly. However, the app may use third-party code and libraries that use "cookies" to collect information and improve their services. You have the option to either accept or refuse these cookies and know when a cookie is being sent to your device. If you choose to refuse our cookies, you may not be able to use some portions of this Service.

SERVICE PROVIDERS

We may employ third-party companies and individuals due to the following reasons:

  • To facilitate our Service;
  • To provide the Service on our behalf;
  • To perform Service-related services; or
  • To assist us in analyzing how our Service is used.

We want to inform users of this Service that these third parties have access to their Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.

SECURITY

We value your trust in providing us your Personal Information, thus we are striving to use commercially acceptable means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and we cannot guarantee its absolute security.

LINKS TO OTHER SITES

This Service may contain links to other sites. If you click on a third-party link, you will be directed to that site. Note that these external sites are not operated by us. Therefore, we strongly advise you to review the Privacy Policy of these websites. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

CHILDREN'S PRIVACY

These Services do not address anyone under the age of 13. We do not knowingly collect personally identifiable information from children under 13 years of age. In the case we discover that a child under 13 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to take the necessary actions.

CHANGES TO THIS PRIVACY POLICY

We may update our Privacy Policy from time to time. Thus, you are advised to review this page periodically for any changes. We will notify you of any changes by posting the new Privacy Policy on this page.

This policy is effective as of 2024-01-01

CONTACT INFORMATION

If you have any questions or suggestions about our Privacy Policy, do not hesitate to contact us at service@kcalai.com.

This document was last updated on December 12, 2025