HealthyOne ("we," "our," or "us") operates the HealthyOne mobile application. This Privacy Policy describes how we collect, use, store, and protect your personal information when you use our app and related services. By using HealthyOne, you agree to the practices described in this policy.
1. Information We Collect
Account Information
- Email address and password (encrypted)
- Profile information you choose to provide
Health & Nutrition Data
- Meal logs and food items you record
- Calories, macronutrients (protein, carbs, fat), and micronutrients
- Dietary preferences and restrictions
- Health metrics you manually enter
- Data derived from voice logging and photo analysis
Fitness & Activity Data
- Active calories burned (via HealthKit or Health Connect)
- Exercise sessions, duration, and step count
- Collected only with your explicit permission
Device Information
- Device type, operating system, and app version
- Crash logs and performance data
- Anonymous device identifier
Camera & Photo Data
- Photos you take for meal logging are processed using AI to extract nutrition information
- Photos are not stored on our servers
2. How We Use Your Information
- Provide services: Deliver core app features, sync data across devices, and calculate personalized nutrition recommendations
- Improve the app: Analyze usage patterns (anonymized and aggregated) to identify areas for improvement
- Communicate: Send account notifications, security alerts, and optional meal reminders
- AI processing: Analyze meals and photos to extract nutritional information. This data is never used to train external AI models
3. Data Storage & Security
- Encryption: All data in transit uses TLS encryption. Data at rest is encrypted using industry-standard methods
- Local-first: Health and nutrition data is stored on your device by default
- Cloud backup: Optional. You may enable cloud sync via Supabase. You control this setting at all times
- Password security: Passwords are hashed using bcrypt and never stored in plain text
- No server storage without consent: Health data is never transmitted to our servers unless you explicitly enable cloud backup
4. Third-Party Services
HealthyOne integrates with the following services to provide its features:
- Supabase — Cloud database for optional backup and sync
- Edamam & USDA — Nutrition databases for food lookup
- Google AI — AI processing for photo and voice analysis
- Twilio — SMS delivery for optional text message reminders
- PostHog — Privacy-focused product analytics
- Sentry — Error tracking and crash reporting
Each service operates under its own privacy policy. We share only the minimum data necessary to provide the features you use.
5. Data Sharing
- We do not sell your data. Your personal and health information is never sold to third parties for marketing, advertising, or any other purpose
- Consent-based sharing: Data is shared with third-party services only to the extent necessary to provide features you have enabled
- Legal requirements: We may disclose data if required by law, court order, or government request
6. SMS & Text Messaging
HealthyOne offers optional SMS reminders to help you stay on track with your nutrition goals.
What Messages You Receive
- Meal logging reminders if you forget to track
- Return-to-habit nudges after periods of inactivity
- Account verification codes
Messages are transactional only. We do not send promotional or marketing messages via SMS.
How You Opt In
- SMS reminders are off by default. You must explicitly enable them
- Navigate to Settings → SMS Notifications and enter your phone number
- Verify your number with a one-time code sent via text
- No messages are sent until you complete verification
Message Frequency
Typically 1–3 messages per week. Frequency may vary based on your usage and reminder settings.
How to Opt Out
- Reply STOP to any message to immediately unsubscribe
- Or disable SMS in the app: Settings → SMS Notifications → Remove Phone Number
- Or email support@healthyoneapp.com
After opting out you will receive: "You've been unsubscribed and will no longer receive SMS reminders. Reply START to re-subscribe."
HELP Response
Reply HELP to receive: "HealthyOne SMS Help: For support, visit healthyoneapp.com or email support@healthyoneapp.com. Reply STOP to unsubscribe. Msg&data rates may apply."
Costs & Phone Number Protection
- Message and data rates may apply depending on your carrier
- HealthyOne does not charge fees for SMS messages
- Your phone number is used solely for delivering notifications you opted into
- We never share your phone number with third parties for marketing
- Phone numbers are stored securely and deleted when you opt out or delete your account
7. Your Rights
You have the right to:
- Access: Request a copy of all data we hold about you
- Deletion: Request deletion of your account and all associated data
- Export: Export your meal logs and health data from the app
- Opt out of cloud sync: Disable cloud backup at any time; data remains on your device
- Revoke permissions: Disconnect HealthKit or Health Connect through your device settings
- Opt out of analytics: Disable analytics tracking in app settings
To exercise any of these rights, contact support@healthyoneapp.com.
8. Apple HealthKit (iOS)
- HealthyOne reads active calories and writes dietary data to HealthKit with your permission
- HealthKit data stays on your device unless you enable cloud backup
- HealthKit data is never sold, shared with advertisers, or used for marketing
- You can revoke access at any time in iOS Settings → Health → Data Access & Devices
- We comply with Apple's HealthKit developer guidelines
9. Google Health Connect (Android)
- We read active calories, exercise sessions, steps, and daily energy totals
- This data is used exclusively for in-app nutrition and activity features
- Health Connect data is not shared with third parties
- You can disconnect at any time in Android Settings → Health → Manage apps
- We comply with Google's Health Connect developer policies
10. Data Retention
- Account data: Retained while your account is active. Deleted within 30 days of account deletion request
- Meal logs: Stored on your device indefinitely. Cloud copies (if enabled) are deleted with your account
- Analytics: Aggregated, anonymized data retained for up to 24 months
- Local data: Removed when you uninstall the app
11. Data Deletion
In-App Deletion
Go to Settings → Account → Delete Account. Confirm with your password. Your account and all cloud data will be permanently deleted within 30 days.
Email Request
Email support@healthyoneapp.com from your registered email address. We will verify your identity and process the deletion.
What Gets Deleted
- All cloud-stored account data, meal logs, and preferences
- Phone number and SMS preferences (if applicable)
- HealthKit/Health Connect permissions remain under your device's control
12. Children's Privacy
HealthyOne is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly. Contact us at support@healthyoneapp.com if you believe a child has provided personal information.
13. Contact Us
If you have questions about this Privacy Policy or our data practices:
Hardaway Labs LLC
Email: support@healthyoneapp.com
Website: healthyoneapp.com
We respond to all privacy inquiries within 7 business days.