Privacy Policy

Last updated: January 15, 2025

Our Privacy Promise

Your child's health data never leaves your device. AllergySpot is designed from the ground up to protect your family's privacy. We cannot see, access, or sell data that never reaches our servers.

Quick Navigation

1. Privacy Overview

AllergySpot ("we," "our," or "us") is committed to protecting your privacy and the privacy of your children. This Privacy Policy explains how we collect, use, and safeguard information when you use our mobile application and website.

Key Point: AllergySpot uses a "local-first" architecture. Your health data, meal photos, and reaction logs are stored only on your device and are never uploaded to our servers.

Anonymous Usage: You can use AllergySpot without creating an account. The app generates a random device identifier that allows you to use all features while maintaining complete anonymity.

2. Information We Collect

Information Stored Only on Your Device:

  • Child profile information (names, ages)
  • Meal photos and descriptions
  • Reaction photos (optional, for medical documentation)
  • Reaction logs and severity ratings
  • Detected food patterns and triggers
  • Notes and observations
  • Feeding method preferences
  • All health-related data

Information We Collect (Minimal):

Device Information (Anonymous Usage):

  • Anonymous device identifier (generated on your device)
  • Device type and operating system
  • App version
  • Subscription status

Account Information (Optional):

  • Email address (only if you choose to create an account via Clerk)
  • Authentication tokens (for signed-in users)
  • Account preferences

Pre-Registration (Website Only):

  • Email address
  • Platform preference (iOS or Android)
  • Timestamp of registration

Technical Information:

  • Error logs (without personal data)
  • General usage patterns (anonymized)
  • API usage for rate limiting (requests per day)

3. How Your Data is Stored

Local Storage (On Your Device):

All health data, meal information, and reaction logs are stored in a SQLite database on your device. This data is:

  • Encrypted using device-specific encryption keys
  • Never transmitted to our servers
  • Accessible only through the AllergySpot app
  • Deleted when you uninstall the app

Cloud Storage (Our Servers):

We store minimal data on our servers:

  • Authentication data: Managed by Clerk
  • Pre-registration emails: Stored in Cloudflare KV
  • Anonymous training data: Food analysis patterns (no personal information)

Important: When you request AI analysis, your photos (meals and optionally reactions) and descriptions are sent to our API for processing through OpenRouter (using Gemini or Claude AI). The AI analyzes the content to identify foods, allergens, and reaction patterns. Results are returned immediately to your device. We do not store your photos or personal data on our servers - only anonymized analysis patterns for improving our AI prompts.

About Reaction Photos (Optional Feature):

Medical Documentation: You can optionally photograph reactions to help document them for healthcare providers. This feature is completely optional and designed to replace the common practice of taking photos on your phone to show your doctor later.

  • Photos help track reaction severity and progression
  • Creates visual record for medical appointments
  • AI analysis can identify reaction types and patterns
  • All reaction photos stay on your device with extra encryption
  • Never required - text descriptions alone work fine

4. How We Use Information

Your Local Data:

Data stored on your device is used solely within the app to:

  • Display your meal and reaction history
  • Detect patterns in food reactions
  • Generate insights and reports for you and your doctor
  • Send local reminder notifications
  • Create medical documentation (when using optional photo features)

Server-Side Data:

The minimal data we collect is used to:

  • Authenticate your account
  • Manage subscription status
  • Send important service updates
  • Improve our AI food analysis (using anonymized data)
  • Monitor app performance and fix bugs

5. Third-Party Services

We use carefully selected third-party services that align with our privacy values:

Clerk (Authentication)

Manages user authentication securely. They process only email and auth tokens.

OpenRouter (AI Analysis)

Processes meal and reaction photos using AI models (Gemini 2.0 Flash for meals, Claude 3.5 Sonnet for complex pattern analysis and reaction documentation). Photos are sent for analysis but not stored by us or OpenRouter. Anthropic's Claude is specifically used for reaction analysis due to its advanced medical reasoning capabilities.

Cloudflare (Infrastructure)

Hosts our API and website. Provides security and performance optimization.

PostHog (Analytics)

Tracks anonymous usage patterns. We never send personal identifiable information, only using Clerk user IDs.

Umami (Website Analytics)

Privacy-focused website analytics. No cookies, no personal data collection.

6. Analytics and Tracking

What We Track:

  • Anonymous app usage patterns (screens viewed, features used)
  • Technical performance metrics
  • Error rates and crash reports
  • General user flow through the app

What We DON'T Track:

  • Your meal data or photos
  • Your reaction photos or medical documentation
  • Your child's health information
  • Specific food items or reactions
  • Personal identifiable information beyond Clerk ID

Note: We use Umami for website analytics instead of Google Analytics because it respects user privacy and doesn't use cookies.

7. Data Security

We implement multiple layers of security to protect your information:

On-Device Security:

  • Field-level encryption for sensitive data
  • Secure storage using device encryption
  • App-level authentication required for access

Server Security:

  • HTTPS encryption for all communications
  • Regular security audits
  • Limited data retention policies
  • Access controls and monitoring

8. Your Rights

You have complete control over your data:

For Local Data:

  • Export: Export all your data at any time from the app
  • Delete: Delete specific entries or all data
  • Control: Your data never leaves your device without your action

For Account Data:

  • Access: Request a copy of data we have about you
  • Correction: Update your account information
  • Deletion: Request account deletion
  • Portability: Receive your data in a portable format

To exercise these rights, contact us at privacy@allergyspot.app.

9. Children's Privacy

AllergySpot is designed to help parents track their children's food reactions. We take children's privacy seriously:

  • We do not knowingly collect personal information directly from children under 13
  • All children's health data remains on the parent's device
  • Parents have full control over their children's information
  • We comply with COPPA (Children's Online Privacy Protection Act) requirements

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes:

  • We'll update the "Last updated" date at the top
  • For significant changes, we'll notify you via email or in-app notification
  • Your continued use of AllergySpot constitutes acceptance of updates

11. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

AllergySpot

Email: privacy@allergyspot.app
General Support: support@allergyspot.app
Website: https://allergyspot.app

Ready to start tracking with complete privacy?

Get Started →