Privacy Policy

Last updated: May 12, 2026

Kaelo ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use and share it, and the choices you have when you use the Kaelo mobile application ("App") and related services. By using Kaelo you agree to the practices described here.

We do not sell your personal information. We do not use your data for advertising, and we do not share it with third parties for their own marketing purposes.

1. Information We Collect

Account Information

• Email address and display name (when you register)
• Password — we never store passwords in plain text. Passwords are hashed with PBKDF2 using 100,000 iterations and a unique salt per user.
• If you sign in with Apple or Google, we receive a stable user identifier and the email address you choose to share. We do not receive your Apple or Google password.

Profile & Nutrition Data

• Biometrics: weight, height, age, gender, activity level, dietary preferences
• Goals: goal type and target weight
• Logs: food logs, water intake, weight history, exercise logs, streaks
• Custom foods and favorites you create

Health Platform Data (Optional)

Kaelo integrates with your device's native health platform only if you explicitly grant permission. You can revoke this access at any time in your device settings.

• Apple HealthKit (iOS) — read-only access to steps, walking/running distance, active energy burned, Apple exercise minutes, body mass, body fat percentage, lean body mass, and body mass index. Kaelo does not write data back to HealthKit.
• Android Health Connect — read-only access to steps, distance, total calories burned, exercise sessions, weight, body fat, lean body mass, and basal metabolic rate. Kaelo does not write data back to Health Connect.

Health data from these platforms is used solely to power your dashboard and adjust your calorie targets. It is not shared with any third party and is not used to train AI models.

Food Photos & AI Analysis

• Photos you capture through the in-app camera or select from your gallery are uploaded to our backend and stored in Cloudflare R2 object storage so you can review and re-analyze them later.
• The photo and a short text prompt are forwarded to OpenAI's vision-capable chat models (currently gpt-4.1-nano) for food recognition and nutritional estimation. Per OpenAI's API terms, content submitted via the API is not used to train their models.
• Photos are associated only with your Kaelo account. They are never made public, never shared with other users, and never used for advertising.
• You can delete any individual photo from the app, and all photos are deleted when you delete your account.

Subscription & Payment Data

• In-app purchases are processed by Apple (App Store) or Google (Play Store). We never see or store your payment method.
• RevenueCat manages subscription state and purchase verification on our behalf; we receive a subscription status and entitlement tier from them.

Device & Usage Data

• Push notification tokens (if you enable reminders)
• AI usage metrics: feature used, token counts, and estimated cost. These are used for quota enforcement and cost monitoring; we do not store the content of your prompts or responses beyond what's needed to render the feature (e.g. the meal plan you see).
• Camera EXIF metadata on photos you upload (e.g. focal length, device model) — used to improve portion-size estimation.
• Basic server logs (timestamps, HTTP status codes, anonymized IP prefixes) retained for up to 30 days for security and debugging.

Crash & Error Diagnostics

Kaelo uses Sentry to capture crashes, unhandled errors, and a small amount of performance telemetry from the mobile app and our backend. Sentry receives the error itself, a stack trace, the app version, device model, OS version, and a request identifier so we can correlate a crash with its server-side log. We do not send your email, password, food photos, or health data to Sentry. This information is used solely to diagnose and fix bugs.

Kaelo does not include any third-party advertising SDKs or analytics SDKs that profile users for marketing. We do not use the iOS App Tracking Transparency framework and do not request your IDFA.

2. Permissions We Request

Kaelo only requests device permissions that map directly to features you use. You can deny or revoke any of these at any time in your device settings.

• Camera — to photograph meals for AI nutrition analysis and to scan barcodes on packaged foods. Photos are only captured when you press the shutter button.
• Photo library — to let you attach existing photos of meals.
• Notifications — to send reminders you opt into (meal logging, water, weigh-in).
• Apple HealthKit / Android Health Connect — only if you choose to sync activity and weight data, as described in §1.

3. How We Use Your Information

• To operate and improve the Kaelo nutrition tracking service
• To analyze food photos and estimate nutritional content
• To calculate personalized calorie and macro targets
• To generate meal plans and recipe suggestions
• To process your subscription and authenticate your account
• To send push notifications you have opted into
• To detect abuse, enforce quotas, and keep the service secure
• To comply with legal obligations

4. Third-Party Services

We share the minimum information necessary with the following providers so Kaelo can function. Each provider processes data under its own privacy policy.

• OpenAI — food photos and text prompts for AI nutrition analysis, meal planning, and recipe suggestion.
• RevenueCat — subscription management and receipt verification (receives a numeric user ID, not your email).
• Sentry — crash and error diagnostics for the mobile app and backend (receives error reports, stack traces, app/OS version, and device model; no email, password, photos, or health data).
• Resend — transactional email delivery for account welcome emails and password reset links (receives only your email address and the message contents).
• Apple & Google — sign-in providers (if you choose to use them) and in-app purchase processing.
• Apple HealthKit / Android Health Connect — on-device integrations that run under Apple's and Google's respective privacy controls.
• USDA FoodData Central — queried for publicly available nutritional information. No personal data is sent to the USDA.
• Cloudflare — hosts our backend (Workers), database (D1), file storage (R2), KV cache, and this website (Pages). All data in our infrastructure is stored with Cloudflare.

5. Data Storage, Retention & Security

• All data is stored on Cloudflare's infrastructure, which encrypts data at rest using AES-256 and in transit using TLS.
• Passwords are hashed with PBKDF2 (100,000 iterations + unique salt per user).
• Authentication uses short-lived, signed JWT tokens.
• Account data, logs, and photos are retained for as long as your account is active. When you delete your account, all associated data — including food photos in R2 — is permanently deleted within 30 days.
• Server logs are retained for up to 30 days.
• Backups may contain residual data for up to 90 days after deletion, after which they are purged on rolling schedules.

6. Your Rights & Choices

You have the right to:

• Access your data — view all your logs, profile, and account information in the app.
• Export your data — download your food, water, and weight logs as a PDF from the app.
• Correct your data — edit your profile, logs, and custom foods at any time.
• Delete your data — permanently delete your account and all associated data via the account deletion page.
• Withdraw permissions — revoke camera, notification, or health data access at any time in your device settings.

Regional Rights

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have rights under the GDPR including access, rectification, erasure, restriction, portability, objection, and the right to lodge a complaint with your local data protection authority. Our legal basis for processing is your consent (for health data and marketing notifications) and the performance of our contract with you (for account and subscription data).

If you are a California resident, the CCPA gives you the right to know what personal information we collect, to request deletion, and to opt out of "sale" or "sharing" of personal information. As noted above, we do not sell or share your personal information.

To exercise any right, contact us at privacy@klyftig.co or use the in-app tools linked above.

7. International Data Transfers

Kaelo is operated from the United States. Cloudflare and OpenAI may process data in the United States and other regions. Where required by law (for example, for transfers from the EEA/UK), we rely on Standard Contractual Clauses or equivalent safeguards provided by our vendors.

8. Children's Privacy

Kaelo is not intended for children under 13 years of age (or under 16 in the EEA/UK). We do not knowingly collect personal information from children. If you believe a child has provided us with data, please contact us and we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes through the App and by updating the "Last updated" date at the top of this page. Your continued use of the App after an update constitutes acceptance of the revised policy.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise any of your rights, contact us at privacy@klyftig.co.