Bloom Privacy Policy

1. Information We Collect

1.1 Account Information

• Name and email address when you create an account
• Authentication tokens to keep you signed in securely

1.2 Health Information You Provide

• Gut health conditions (IBS type, food sensitivities, FODMAP sensitivity)
• Dietary preferences (vegetarian, vegan, kosher, halal, food dislikes)
• Health goals (symptom management, weight goals, fiber targets)
• Daily wellness check-ins (energy, digestion, and mood scores)
• 30-day challenge progress (completed days, current streaks)

1.3 Food Scan Data

• Photos of food you take using your device camera
• AI analysis results including identified foods, nutritional estimates, and gut health recommendations
• Meal logging (food names, meal types, timestamps, macronutrient estimates)

1.4 Usage Information

• Device information (device type, operating system version)
• App version you're using
• Anonymous device identifier (for rate limiting and security)
• App usage patterns (features accessed, errors encountered)

1.5 Location Information

We collect general location data (country/region only, not precise GPS) solely for timezone-aware wellness check-ins to ensure your daily streaks are calculated correctly for your local time.

2. How We Use Your Information

We use your information to:

• Provide personalized gut health coaching based on your conditions and goals
• Analyze food photos using AI to give you instant gut health feedback
• Track your daily progress including meals, fermented food servings, and wellness scores
• Deliver educational content (recipes, 5R Protocol lessons, daily tips)
• Improve app performance and fix technical issues
• Prevent fraud and abuse

3. Third-Party Services

We use the following trusted services to operate the app:

3.1 Authentication & Database

Supabase (Supabase Inc.)

• Stores your account, profile, food scans, and wellness check-ins
• Provides secure authentication
• Privacy Policy: https://supabase.com/privacy

3.2 AI Analysis

OpenAI (OpenAI, Inc.)

• Analyzes food photos to identify ingredients and provide gut health guidance
• Images are sent securely to OpenAI's servers, processed, and not stored by OpenAI
• Privacy Policy: https://openai.com/policies/privacy-policy

3.3 Recipe Content

WordPress (via our content provider)

• Delivers gut-friendly recipe content
• No personal data is shared with WordPress

3.4 Video Streaming

Bunny CDN (BunnyWay d.o.o.)

• Delivers educational video content securely
• No personal data is shared with Bunny CDN
• Privacy Policy: https://bunny.net/privacy

3.5 Error Monitoring

Sentry (Functional Software, Inc.)

• Helps us detect and fix technical issues
• Receives error logs and anonymized usage data
• Does NOT receive your health information or food photos
• Privacy Policy: https://sentry.io/privacy

4. Data Security

We protect your information using:

• End-to-end HTTPS encryption for all data transmission
• Secure token storage on your device using platform-native secure storage
• Row-level security policies ensuring you only access your own data
• Rate limiting to prevent unauthorized access attempts
• Short-lived signed URLs (60 seconds) for food image access

Food photos are stored in private, encrypted storage with folder-level access control—only you can view your own photos.

5. Data Retention

• All data: We retain all your data (food scans, logs, wellness check-ins, and profile information) for as long as your account is active. No data is automatically deleted unless you choose to delete your account.
• Deleted account: When you delete your account, all personal data is permanently deleted within 30 days

6. Your Privacy Rights

You have the right to:

• Access your data: Export your food log, wellness history, and profile information
• Correct your data: Update your profile, conditions, and preferences anytime
• Delete your data: Request full account and data deletion from Settings → Privacy & Data → Delete Account
• Opt out of analytics: Disable usage tracking in Settings → Privacy & Data
• Revoke permissions: Remove camera or photo access in your device settings

7. Age Requirement

Bloom is designed for adults managing gut health conditions. Users must be at least 13 years old to create an account. By using Bloom, you confirm you meet this age requirement.

If we discover we have collected data from a user under 13, we will delete it immediately.

8. Data Sharing

We do NOT:

• Sell your personal information
• Share your health data with advertisers
• Use your food photos for marketing
• Share your data with third parties except as described in Section 3

We may share anonymized, aggregated data (e.g., "40% of users increased fermented food intake") for research purposes, but this data cannot identify you.

9. International Data Transfers

Your data may be processed in the United States and other countries where our service providers operate. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

• Right to Know: Request disclosure of data we've collected about you
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: We don't sell personal information, so no opt-out is needed
• Right to Non-Discrimination: We won't discriminate against you for exercising your rights

To exercise these rights, contact us at info@bloomcooking.com.

11. EU/UK Privacy Rights (GDPR)

If you are in the EU or UK, you have rights under GDPR:

• Legal basis for processing: We process your data based on your consent and to fulfill our contract with you
• Data portability: Export your data in a machine-readable format
• Right to object: Object to certain types of processing
• Right to lodge a complaint: Contact your local data protection authority

12. Changes to This Policy

We may update this Privacy Policy occasionally. We'll notify you of significant changes via:

• In-app notification
• Email (if you've provided one)

Continued use of the app after changes constitutes acceptance of the updated policy.

13. Contact Us

For privacy questions, data requests, or to report concerns:

• Email: info@bloomcooking.com
• Support: info@bloomcooking.com
• Website: https://bloomcooking.com