NEAT30 is designed to be local-first. Most data lives on your device. Optional features—like encrypted backup/sync—may securely transmit limited data to our infrastructure. This Notice explains what we collect, how we use it, your choices, and your rights.
Key Points at a Glance
•
Local-first: Your nutrition data is stored on your device by default.
•
You’re in control: Cloud backup/sync is optional and encrypted at rest.
•
No medical advice: NEAT30 is an informational tool, not healthcare or medical advice.
•
We don’t sell your data.
•
You can export or delete your data from within the App (where supported).
1) What This Notice Covers
This Privacy Notice applies to the NEAT30 mobile/PWA application (the “App”) and related services we operate. It does not cover third-party sites or services we don’t control.
2) The Data We Collect
A. You Provide Directly
•
Account/Registration data (if enabled): name or alias, email (optional), device link codes.
•
Profile & preferences collected in-app: age range, height, weight, goals, units, macro/micro targets, strategies.
•
Food & log entries collected in-app: foods, ingredients, quantities, timestamps, notes, saved meals/recipes.
•
Support messages: questions, bug reports, feedback.
B. Automatically Collected (App Operations)
•
Pseudonymous identifiers: a deviceId generated on your device and a server-generated anonymized UUID that reference your accountless data for backup/sync and support purposes. We do not attempt to re-identify you without a lawful basis or your request (e.g., when you contact support and provide an email).
•
Device data: device ID (randomized), OS/version, app version, language, time zone.
•
Usage & diagnostics: feature usage, crash/performance logs, error codes (non-content).
•
Security telemetry (if cloud enabled): IP with API calls (short-lived for rate-limiting only) and challenge/response tokens (e.g., anti-abuse/anti-bot).
C. Optional & Connected Features (Only if You Use Them)
•
Cloud backup/sync: snapshots/deltas of your App data (attached to a pseudonymous identifier).
•
Barcode lookups / data providers: queries you make to fetch food metadata.
•
Analytics (if enabled): privacy-respecting analytics to improve stability and UX (aggregated/limited).
•
Sensitive data note: nutrition/wellness data can be sensitive. We only collect what you willingly provide via optional cloud storage, used solely for backup/restore and cross-device sync.
3) Why We Use Your Data (Purposes)
•
Provide the App: core functionality, meal logging, nutrition calculations.
•
Improve & secure the App: troubleshooting, crash analytics, anti-abuse, performance tuning.
•
Optional sync/backup: let you access your data across devices or restore after reinstall.
•
Communication: respond to your requests, service messages, policy updates.
•
Legal & compliance: enforce Terms, protect safety, meet legal obligations.
4) Our Legal Bases (where applicable)
•
Performance of a contract: to deliver the App and features you request.
•
Legitimate interests: to maintain security, prevent abuse, and improve the App (balanced against your rights).
•
Consent: for optional features such as encrypted sync or analytics (where required).
•
Legal obligation: where laws require retention or disclosure.
5) How We Process Optional Encrypted Sync/Backup
If you enable cloud backup/sync:
•
Not end-to-end encrypted: This feature is not end-to-end encryption. Under strict, role-based access controls, authorized personnel may access stored content only as necessary for operations (e.g., troubleshooting, abuse prevention, security investigations) or to comply with law.
•
Transport & storage security: Data is sent over HTTPS and stored with encryption at rest by our cloud provider.
•
Pseudonymous linkage: Stored data is associated with a deviceId and a server anonymized UUID. Unless you provide contact info (e.g., in a support email), we generally cannot directly identify you.
•
Your control: You can disable sync at any time. You may request deletion of stored backups (see Your Choices & Controls).
6) Sharing & Disclosures
We do not sell your personal data. We may share:
•
Service providers / processors: hosting, object storage/CDN, anti-abuse verification, crash/diagnostics. They are contractually bound to act on our instructions and protect your data.
•
Operational access (limited): Under strict, role-based access controls and auditing, authorized staff may access stored content only when needed for support, security, abuse prevention, reliability, or legal compliance.
•
Legal compliance & safety: Where required by law or to protect rights, property, or safety.
•
Business transfers: In a merger, acquisition, or asset sale, data may transfer under equivalent or stronger protections.
7) Data Retention
•
On your device: retained until you delete the App data or uninstall.
•
Optional Cloud sync: collected while enabled and retained for a reasonable period afterward unless you request deletion sooner.
•
Logs/diagnostics: kept for the minimum period necessary, then deleted or anonymized.
8) Security
We use administrative, technical, and physical safeguards appropriate to risk, including pseudonymous identifiers, TLS/HTTPS in transit, encryption at rest for hosted data, access controls, and auditing. NEAT30’s current backup/sync is not end-to-end encrypted. No system is 100% secure—please use strong device security and keep exports/backups safe.
9) Your Choices & Controls
•
Disable sync: Keep data local by turning off cloud backup/sync (local backup and restore remains available).
•
Export: Use in-App export tools (CSV/JSON) where available.
•
Delete cloud backups: Request deletion of server-stored backups by emailing our team and providing your deviceId (from App settings) and, if available, the server anonymized UUID we provide on request for verification.
•
Local deletion: Remove entries in-App or uninstall to delete device-stored data.
•
Permissions & consent: Manage camera/barcode and notifications in device settings; toggle optional diagnostics/analytics (if enabled) in the App.
10) Children’s Privacy
NEAT30 is for adults (18+). We do not knowingly collect data from children. If you believe a child provided data, contact us to request deletion.
11) International Users & Data Transfers
Data may be processed/stored in the U.S. and other countries. Where required, we implement appropriate safeguards.
12) Your Privacy Rights
Depending on your location, you may have rights to access, correct, delete, port, or restrict certain processing, and to withdraw consent. To exercise rights, contact info@eth-studio.com.
13) Third-Party Services
The App may link to/integrate third parties (barcode/food databases, storage/CDN, anti-abuse verification, crash analytics). Their policies govern their services.
14) Do Not Track & Global Privacy Controls
The App does not respond to DNT. Where applicable law recognizes GPC, we honor it for web contexts we control.
15) Changes to This Notice
We may update this Notice. We’ll update the Effective date and, when feasible, provide in-App notice. Continued use means you acknowledge the updated Notice.
16) Contact Us
Ears That Hear Media Corporation
Email: info@eth-studio.com
Mailing address: 8 Willow St., RM. 105, Salem, NH 03079