EatSee Privacy Policy
1. Data controller
The controller of your personal data is ASTROWARE Arkadiusz Woźniak, Rudka Kozłowiecka 102, 21-025 Niemce, Poland. Privacy contact: kontakt@astroware.pl.
2. Data we process
- Account data: e-mail address, name, encrypted credentials.
- Profile data (health-related data): sex, date of birth, height, weight, activity level, weight goal and the calculated calorie and macronutrient targets.
- Meal diary: photos of meals and nutrition labels, recognized dish names, estimated nutritional values, meal dates.
- Subscription data: plan status (free/premium) and transaction identifiers provided by the app store and RevenueCat. We do not process payment card data.
- Technical data: daily analysis counters and technical logs necessary for the security and stability of the service.
3. Purposes and legal bases
- providing the service (account, diary, sync) - Art. 6(1)(b) GDPR (performance of a contract);
- processing health-related data (profile, nutritional values of meals) - Art. 9(2)(a) GDPR (explicit consent, given by voluntarily providing this data during profile setup; you can withdraw consent at any time by deleting your account);
- payment handling and abuse prevention (analysis limits) - Art. 6(1)(b) and (f) GDPR (legitimate interest);
- tax and accounting obligations - Art. 6(1)(c) GDPR.
4. AI photo analysis
Photos of meals and nutrition labels that you take or select from your gallery are sent to OpenAI in order to automatically estimate nutritional values. According to the OpenAI API policy, data submitted through the API is not used to train models. Analysis results are estimates provided for informational purposes only - they do not constitute medical or dietary advice.
5. Data recipients
We use the following data processors:
- Google Ireland Ltd. / Google LLC - Firebase infrastructure (authentication, database, photo storage, server functions);
- OpenAI, L.L.C. - meal photo analysis;
- RevenueCat, Inc. - subscription status management;
- Apple Inc. / Google LLC - payment processing in the App Store and Google Play (as independent controllers of payment data).
6. Transfers outside the EEA
Some of our providers process data in the United States. Transfers take place on the basis of an adequacy decision (EU-US Data Privacy Framework) or Standard Contractual Clauses approved by the European Commission.
7. Retention and deletion
We store your data until you delete your account. You can delete your account directly in the app (Profile → Delete account) - this permanently removes the account, profile, meal diary, photos and usage counters. Data required for billing purposes is retained for the period required by law.
8. Your rights
You have the right to: access your data, rectify it, erase it, restrict processing, data portability, object to processing and withdraw consent at any time (without affecting the lawfulness of prior processing). You may also lodge a complaint with your local supervisory authority (in Poland: the President of the Personal Data Protection Office, uodo.gov.pl). For any data-related matters contact us at: kontakt@astroware.pl.
9. Children
The app is intended for users aged 13 and over. We do not direct the service to younger children and do not knowingly collect their data.
10. Security
Data is encrypted in transit (TLS) and access is restricted by security rules - each user can only access their own data.
11. Changes to this policy
We will announce material changes to this policy in the app or on this page. The current version is always available at this address.