Vytal

Privacy Policy

Last updated: October 22, 2025

At Vytal, we take your privacy seriously. This Privacy Policy outlines our practices concerning the handling of user data.

Data Collection and Storage

Vytal is designed with privacy at its core. Your health data, nutrition logs, meal photos, sleep sessions, and personal information are stored securely in our Supabase database with industry-standard encryption.

We Collect:

  • Account Information: Email, profile details, age, gender, height, weight
  • Health Data: Nutrition logs, meal photos, sleep sessions, workout data
  • Apple Health Data: Steps, heart rate, HRV, sleep stages, workouts etc. (iOS only)
  • AI Analysis Results: Nutritional estimates from food photos
  • Usage Data: Feature usage patterns, error logs

Data Usage

Your health data is used to provide and maintain the Vytal service, calculate your personalized Vytal Score, track nutrition and activity metrics, generate health insights, and sync with Apple Health when authorized.

You maintain complete control over your health data, and you can delete your account and all associated data at any time.

Data Sharing

We do NOT sell your personal health data to third parties. Your nutrition logs, meal photos, sleep data, and health metrics remain private to you.

Limited data sharing occurs with:

AI Analysis

When you use food photo analysis, photos are sent to Vision API to generate nutritional estimates. We recommend not photographing sensitive information.

Apple Health (iOS only)

You control which health data types Vytal can read. Data is read from Apple Health and stored in Vytal's database. You can revoke access anytime through iPhone Settings.

Data Security

We implement industry-standard security measures including end-to-end HTTPS encryption, secure database with encryption at rest, Row Level Security policies, and secure authentication with Apple Sign in and email/password.

Data Retention

We retain your data for as long as your account is active. When you delete your account, all personal data is permanently deleted from our database, including meal photos, Apple Health synced data, and all health metrics. This action cannot be undone.

Children's Privacy

Vytal is not directed to children under 13 years of age. We do not knowingly collect any data from children under 13. If we discover such data, we will delete it immediately.

Your Rights

You have the right to:

  • Access your personal data stored in our systems
  • Request correction of inaccurate data
  • Request deletion of your account and all data (through app settings)
  • Export your health data
  • Revoke Apple Health permissions at any time

GDPR & CCPA Compliance

For users in the EEA and California, you have additional rights under GDPR and CCPA, including the right to know what data is collected, the right to deletion, and the right to data portability. We do not sell your personal data.

International Data Transfers

Your data is stored in a cloud infrastructure, which may involve data transfers across international borders. We ensure appropriate safeguards are in place to protect your data in compliance with applicable laws.

Data Breach Notification

In the unlikely event of a data breach, we will notify affected users within 72 hours of discovering the breach, inform relevant authorities as required by law, and take immediate steps to secure the breach.

Changes to Privacy Policy

Users will be notified of any changes to this privacy policy via email and/or in-app notifications. Continued use of the app after changes constitutes acceptance.

Contact Information

If you have any questions about this Privacy Policy, data handling, or your privacy rights, please contact us at:

nerezdev@gmail.com

We will respond to privacy inquiries within 30 days.

By using Vytal, you acknowledge that you have read, understood, and agree to the collection, use, and disclosure of your information as described in this Privacy Policy.