Privacy Policy

Last updated: April 4, 2026

Ember Labs ("we", "our", or "us") operates the Trackr mobile application and website (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using Trackr, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

Information You Provide

When you create an account or use our Service, you may provide us with:

• Name, email address, and profile information
• Date of birth, gender, height, and weight
• Dietary preferences, allergies, and nutritional goals
• Family member profiles (names, ages, dietary needs)
• Food logs, meal plans, and recipe preferences
• Workout data, exercise history, and fitness goals
• Chat messages sent to Ember (our AI companion)
• Feedback, support requests, and survey responses

Information Collected Automatically

When you use the Service, we may automatically collect:

• Device information (model, operating system, unique identifiers)
• Usage data (features accessed, time spent, interaction patterns)
• Crash reports and performance diagnostics
• IP address and approximate location (city-level)
• App version and update history

Health & Fitness Data

With your explicit permission, we may collect health and fitness data from:

• Apple HealthKit (steps, active energy, heart rate, sleep, weight)
• Google Health Connect (steps, calories burned, heart rate, sleep, weight)
• Bluetooth-connected devices (smart scales, fitness trackers)

Health data is used solely to provide personalized nutrition and fitness recommendations within the Service. We do not sell health data to third parties or use it for advertising purposes.

Camera & Photos

With your permission, we access your device camera and photo library to:

• Scan food for AI-powered nutritional analysis
• Scan barcodes for product identification
• Capture images for chat interactions with Ember

Images are processed for analysis and are not stored permanently on our servers unless you explicitly save them to your food log.

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Generate personalized meal plans, recipes, and nutritional recommendations
• Create and manage workout programs tailored to your goals
• Power Ember's AI conversations and contextual understanding
• Track your nutritional intake, fitness progress, and health metrics
• Generate shopping lists optimized for your meal plans
• Send you relevant notifications (meal reminders, workout prompts, progress updates)
• Analyze usage patterns to improve the Service
• Respond to your support requests and communications
• Comply with legal obligations

3. Third-Party Services

We use the following third-party services to operate Trackr:

Supabase — Database hosting, authentication, and file storage. Your data is stored in Supabase-managed PostgreSQL databases with row-level security. Supabase Privacy Policy

OpenAI / OpenRouter — AI language models power Ember's conversations, meal planning intelligence, food identification, and recipe generation. Conversation content is sent to these providers for processing. We do not use your data to train AI models. OpenAI Privacy Policy

RevenueCat — Subscription management and payment processing. RevenueCat processes your purchase information through Apple App Store and Google Play Store. We do not directly handle your payment card details. RevenueCat Privacy Policy

Apple HealthKit — With your permission, we read and write health data to HealthKit. Per Apple's requirements, HealthKit data is never used for advertising, is not sold to data brokers, and is not shared with third parties for purposes unrelated to health and fitness. Apple Privacy Policy

Google Health Connect — With your permission, we read and write health data through Health Connect. Health Connect data is handled in accordance with Google's Health Connect permissions policy. Google Privacy Policy

4. Data Storage & Security

Your data is stored on secure, encrypted servers managed by Supabase (hosted on AWS infrastructure). We implement industry-standard security measures including:

• Encryption in transit (TLS 1.2+) and at rest (AES-256)
• Row-level security policies in the database
• JWT-based authentication with secure token handling
• Regular security audits and dependency updates
• Access controls limiting employee data access to operational needs

While we strive to protect your information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law or for legitimate business purposes (such as resolving disputes or enforcing agreements).

Chat history and AI memory data associated with Ember conversations can be deleted at any time through the app settings.

6. Children's Privacy

Trackr is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. Family member profiles for children are created and managed by a parent or legal guardian, and the data within those profiles is governed by the parent's account.

If you believe we have inadvertently collected information from a child under 13, please contact us at privacy@healthtrackr.me and we will promptly delete the information.

7. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access — Request a copy of the personal data we hold about you
• Correction — Request correction of inaccurate or incomplete data
• Deletion — Request deletion of your personal data
• Portability — Request a machine-readable export of your data
• Restriction — Request that we limit processing of your data
• Objection — Object to certain processing activities
• Withdrawal of Consent — Withdraw consent where processing is based on consent

To exercise any of these rights, please contact us at privacy@healthtrackr.me. We will respond to your request within 30 days.

8. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us:

• Email: privacy@healthtrackr.me
• Website: healthtrackr.me
• Company: Ember Labs

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top. For significant changes, we may also provide notice through the app or via email.

Your continued use of the Service after any changes constitutes your acceptance of the updated Privacy Policy.