Metrify Privacy Policy

Effective date: July 3, 2026 · Last updated: July 3, 2026

Metrify ("Metrify," "we," "us," or "our") is an AI-assisted fitness and nutrition tracking application. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have. It applies to the Metrify mobile application and the backend services that power it (together, the "Service").

Metrify is built privacy-first: your fitness data lives on your device, not on our servers. The sections below explain exactly what stays local, what leaves your phone and why, and what happens to it when it does.


1. Summary (TL;DR)


2. Information Stored Only on Your Device

The following data is created and stored in a local database on your device and is not uploaded to or retained by our servers (except transiently during AI chat turns, as described in Section 4):

If you uninstall the app, this local data is deleted with it and we cannot recover it.

3. Information We Collect on Our Servers

Account information. When you create an account we collect your email address and a password (stored as a secure hash by our authentication provider, Supabase), or your identity token if you sign in with Google or Apple. Authentication session tokens are stored on your device in platform-protected secure storage (Keychain on iOS, Keystore on Android, DPAPI on Windows).

Usage and quota records. We record your subscription tier and a daily count of AI chat turns to enforce usage limits (these reset daily). We also track a lifetime turn count for analytics.

Subscription and purchase data. If you purchase a Premium subscription, the transaction is handled by the Apple App Store or Google Play and managed through RevenueCat. RevenueCat associates the purchase with an identifier tied to your account so our server can keep your subscription tier current (including when a subscription renews, lapses, or is refunded outside the app). We receive your subscription status, the plan you bought, and store transaction identifiers. We never receive or store your full payment-card number — the app stores handle payment.

Food catalog popularity signals. When you log a food from our shared catalog, the app sends an anonymous-in-effect "selection" signal that increments a popularity counter on that food to improve search ranking. This counter is attached to the food, not to your account.

Food search and barcode lookups. When you search the shared food catalog or scan a product barcode, the search text or barcode number is sent to our server to return matching foods. These lookups are processed transiently to answer the request — we do not log your search terms or scanned barcodes, and they are not linked to your account. If a scanned barcode is not in our catalog, our server performs a one-time lookup against Open Food Facts and the USDA FoodData Central database. That external request is made by our server and contains only the barcode number — never your identity, account, or IP address. Product data returned by these sources is saved into our shared food catalog (it describes the product, not you), so future scans of that product resolve instantly for everyone.

Crash and diagnostic data. We use Sentry to collect crash reports and performance traces. These may include device model, operating system version, app version, and stack traces. We use this data solely to diagnose and fix problems. If we ever enable screenshot capture at the moment of an error (which could incidentally include on-screen content), we will update this Policy first.

Network metadata. Like virtually all internet services, our servers process IP addresses to deliver responses and to rate-limit certain endpoints (e.g., the pre-signup email check). We do not build profiles from this data.

4. AI Chat, Photos, and Voice

Chat. Metrify's assistant works through a tool loop: your message goes to our server, which forwards it to our AI model provider (currently OpenAI). When the assistant needs your data to answer (e.g., "how was my protein this week?"), your device executes the request locally and returns the relevant results — which may include food logs, weights, exercise and sleep history, step counts, profile details, and goals — through our server to the model. This means health and fitness data transits our server and the AI provider during a chat turn.

Photos. If you use photo-based food logging, the image you submit is downscaled on your device (to a maximum of 1,536 pixels on its longest side), sent to our server, and relayed to the AI vision model to identify the food. Images are processed transiently as part of the chat turn and are not stored by us.

Voice. Speech-to-text uses your device platform's native speech recognition (with your microphone permission). Audio is processed by your device and/or its platform speech service (Apple or Google, per your device settings) — Metrify's servers never receive your audio; we receive only the resulting text if you send it as a chat message.

Knowledge retrieval. To ground answers, the server may search a curated nutrition and exercise reference library. This search runs server-side over reference content, not over your personal data.

5. Health and Fitness Platform Integration

Metrify can connect to your device's health hub — Apple Health on iOS and Health Connect on Android — to bring in readings you have recorded elsewhere (for example, from a smart scale, a wearable, or another fitness app) automatically. This integration is optional and stays off until you turn it on from the in-app Connections tab.

Synced weigh-ins, workouts, and sleep first appear as pending items you can review and then log or dismiss; you may also enable auto-logging for each type. Step totals are shown as an activity metric. Disconnecting in your device settings stops any further reads.

6. How We Use Information

We use the information described above to:

We do not:

7. Service Providers (Subprocessors)

We share data with the following providers, only as needed to operate the Service:

ProviderPurposeData involved
SupabaseAuthentication, account database, food catalog, knowledge base hostingEmail, password hash, OAuth identities, tier/usage records
OpenAIAI chat and image understandingChat messages, tool results (may include fitness data), submitted food photos
RevenueCatSubscription management and purchase validationAccount identifier, subscription status, plan, store transaction identifiers (no card details)
SentryCrash and performance reportingDevice/app diagnostics, stack traces
GoogleSign-in with Google (optional); platform speech recognitionOAuth identity; on-device audio per your device settings
AppleSign in with Apple (optional); platform speech recognitionOAuth identity; on-device audio per your device settings
Open Food FactsBarcode lookup for products not yet in our catalogBarcode number only, sent from our server (no user identity)
USDA FoodData CentralBarcode lookup for products not yet in our catalogBarcode number only, sent from our server (no user identity)

Each provider processes data under its own terms and our agreements with it. Apple Health (on iOS) and Health Connect (on Android) act as on-device sources you can choose to import from; we read from them locally and do not transmit your data to them (see Section 5). We may update this list as the Service evolves and will revise this Policy accordingly.

8. Data Retention and Deletion

Account deletion is available in-app (Profile → Danger Zone → Delete Account). Deletion removes your server-side records (profile, usage, device records) and your authentication account, and then wipes the app's local data on your device. This action is permanent and cannot be undone.

9. Security

We use industry-standard measures to protect your data, including TLS encryption in transit, signed JSON Web Tokens for authentication, platform secure storage for credentials on device, row-level security on shared database tables, and per-IP rate limiting on unauthenticated endpoints. No system is perfectly secure, and we cannot guarantee absolute security.

10. Planned Features That Will Affect This Policy

Metrify is under active development. The following planned features will change how data is handled. We will update this Policy and, where required, ask for your consent before any of these take effect:

11. Your Rights and Choices

Depending on where you live (e.g., the EU/EEA under GDPR, or California under CCPA/CPRA), you may have rights to access, correct, delete, export, or restrict the processing of your personal information, and the right not to be discriminated against for exercising those rights.

Because Metrify is local-first, you can directly view, edit, and delete nearly all of your data in the app itself. For server-side data, you can delete everything via in-app account deletion, or contact us (Section 14) to exercise any right. We do not sell or share personal information for cross-context behavioral advertising as defined by the CCPA/CPRA.

You may also control app permissions (camera, microphone, health-data access, and notifications) at any time in your device settings.

12. Children's Privacy

The Service is not directed to children under 13 (or the higher minimum age required in your jurisdiction, such as 16 in parts of the EU). We do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact us and we will delete it.

13. Changes to This Policy

We may update this Policy as the Service evolves — including for the planned features in Section 10. We will post the updated Policy with a new effective date and, for material changes, provide notice in the app. Continued use of the Service after changes take effect constitutes acceptance of the revised Policy.

14. Contact

Questions, requests, or concerns about this Policy or your data:

Email: support@metrify.fit


Food catalog data includes content derived from the U.S. Department of Agriculture's FoodData Central (public domain) and from Open Food Facts (https://world.openfoodfacts.org), © Open Food Facts contributors, used under the Open Database License (ODbL) v1.0 (https://opendatacommons.org/licenses/odbl/1-0/). Foods sourced from Open Food Facts are labeled as such in the app.