Legal

Just Ate — Privacy Policy

Last updated: 6 July 2026 · Effective: 6 July 2026

1.Who we are

Just Ate ("Just Ate", "the app", "we", "us", "our") is a mobile application for fast, AI-assisted food and nutrition logging. The app is operated by Aleksandr Karpov, an individual developer based in Germany.

For the purposes of the EU General Data Protection Regulation (GDPR), the UK GDPR, and comparable laws, Aleksandr Karpov is the data controller of your personal data.

Contact for privacy matters:

This policy explains what data Just Ate collects, why, the legal bases we rely on, who we share it with, how long we keep it, and the rights and controls you have.

2.Summary (the short version)

3.The data we collect

3.1 Account and identity data

3.2 Profile, body and goal data (health-related)

To calculate your energy and nutrition targets, we collect the profile information you enter during onboarding and can edit later, which may include:

Some of this is health-related data, which is treated as a special category of personal data under GDPR/UK GDPR (see Section 5).

3.3 Food log content

When you log a meal, we collect and store the content you provide and what the app generates from it:

3.4 Derived and diary data

3.5 Apple Health data (only if you connect it)

If you grant permission, Just Ate uses Apple HealthKit to:

Data obtained through HealthKit is used solely to provide app features. It is never sold, never used for advertising, and never shared with third parties. You can revoke Health access at any time in the iOS Settings app.

3.6 Device, technical and usage data (analytics)

We use Firebase Analytics / Google Analytics for Firebase to understand how the app is used and to improve it. This includes:

We do not use this data to build advertising profiles or to track you across other companies' services.

3.7 Notifications

If you enable notifications, we store a push token so we can send the reminders and lifecycle nudges you opt into (for example, a trial reminder). You can turn notifications off at any time in iOS Settings.

3.8 Subscription and purchase data

When paid subscriptions are available and you purchase one, the transaction is processed by Apple through the App Store. We do not receive or store your full payment card details. We receive from Apple a subscription/transaction status (for example, active, trial, expired, refunded) needed to unlock paid features and to restore purchases.

3.9 Support communications

If you email us, we receive your message, email address, and anything you choose to include, and we keep it to handle your request.

We do not knowingly collect precise location, contacts, or advertising identifiers for cross-app tracking.

4.Service providers (processors) and international transfers

We rely on a small number of trusted providers that process personal data on our behalf and under our instructions to deliver the app. They are not permitted to use your data for their own purposes.

ProviderWhat it does for Just AteData involved
Google Firebase / Google Cloud (Google Ireland Ltd / Google LLC) Authentication, database (Firestore), image storage, cloud functions, analytics, remote configuration Account identity, profile/goals, food logs, images, summaries, usage/analytics data
OpenAI (OpenAI, L.L.C. / OpenAI Ireland Ltd) AI analysis of meal text and images; speech-to-text transcription of dictated meals Meal text, meal images, meal audio you submit
Apple (Apple Inc. / Apple Distribution International Ltd) App distribution, Sign in with Apple, HealthKit, push notifications, in-app purchases/subscriptions, ratings prompts Account/purchase status, and the platform data Apple processes as a controller under its own policy
Google (Sign-In) "Sign in with Google" authentication, if you choose it Your Google account email and basic profile identifiers

Some of these providers are located in, or may process data in, the United States or other countries outside the EU/EEA and the UK. Where personal data is transferred outside the EEA/UK, we rely on appropriate safeguards recognised under GDPR/UK GDPR — primarily the European Commission's Standard Contractual Clauses (and the UK Addendum), and, where applicable, the EU–U.S. Data Privacy Framework. You can request a copy of the relevant safeguards using the contact details in Section 1.

We do not sell your personal data, and we do not share it with third parties for their own advertising or marketing.

5.Legal bases for processing (EU/UK users)

We only process your personal data where we have a legal basis under GDPR/UK GDPR:

6.How we use your data

We use your data to:

We do not use your food, health, or profile data to make decisions producing legal or similarly significant effects about you, and we do not use automated decision-making of that kind. AI meal analysis is an estimation tool you can always review, edit, or delete.

7.Data retention

8.How we protect your data

9.Your controls inside the app

10.Your privacy rights

10.1 EU/EEA and UK users (GDPR / UK GDPR)

You have the right to:

To exercise these rights, use the in-app controls in Section 9 or email support@justateapp.com. We will respond within the time limits required by law (generally one month under GDPR/UK GDPR). We may need to verify your identity first.

10.2 California users (CCPA/CPRA)

If you are a California resident, you have the right to know what personal information we collect and how it is used, to request access to and deletion of your personal information, to correct inaccurate information, and to not be discriminated against for exercising your rights.

We do not "sell" or "share" your personal information as those terms are defined under the CPRA, and we do not process it for cross-context behavioural advertising. To exercise your rights, email support@justateapp.com.

10.3 Canada (PIPEDA) and other regions

If you are in Canada or another region with applicable privacy law, you may request access to and correction of your personal information and may contact us with concerns. You may also contact the Office of the Privacy Commissioner of Canada. Use the contact details in Section 1.

11.Children's privacy

Just Ate is intended for users aged 13 and older and is not directed at children under 13. We do not knowingly collect personal data from children under 13. Where local law sets a higher age of digital consent, users below that age should use the app only with the consent of a parent or guardian. If you believe a child has provided us personal data, contact support@justateapp.com and we will delete it.

12.Changes to this policy

We may update this policy as the app evolves. We will change the "Last updated" date above and, for material changes, provide a more prominent notice in the app or by other appropriate means. Your continued use of the app after an update means you accept the revised policy.

13.Contact

Questions or requests about this policy or your data:

Aleksandr Karpov
Email: support@justateapp.com
Postal: Duisburger Str. 42, 47166, Duisburg, Germany