MACROFY — PRIVACY POLICY

Last Updated: April 25, 2026

1. Introduction

Welcome to Macrofy ("we", "our", or the "Company"), a nutrition and wellness application operated by MB "Appmonster Technologies", a Small Partnership duly registered under the laws of the Republic of Lithuania (company code 306141982).

This Privacy Policy explains how we collect, process, store, share, and protect your personal data when you use the Macrofy mobile application or related websites (collectively, the "Service").

As a company established in the European Union, we primarily operate in accordance with the EU General Data Protection Regulation (GDPR). Macrofy also complies, where applicable, with privacy and data protection laws of other jurisdictions, including the United Kingdom, United States (state-level laws), Canada, Australia, and other regions where required by law.

By using Macrofy, you acknowledge that you have read, understood, and agreed to this Privacy Policy.

2. Eligibility & Children's Privacy

Macrofy is designed for users aged 16+.

You may not use the Service if you are under 16.

We do not knowingly collect or process data of:

  • individuals under 16 (contract restriction)
  • individuals under 16 in regions where GDPR "digital age of consent" is 16
  • individuals under 13 (US COPPA requirement)

If we discover that we processed data belonging to a minor, we will delete it immediately.

3. Categories of Data We Collect

We collect the following categories of personal data:

3.1. Data You Provide Directly

  • Email address
  • Age, gender (optional)
  • Weight, height, body metrics
  • Nutrition goals
  • Food diaries and logs
  • Food photos (user-uploaded)
  • Activity logs
  • Paired Mode partner information
  • Consents and preferences

3.2. Sensitive Health Data (GDPR Art. 9)

Collected only with explicit consent and only when you choose to connect Apple Health, Health Connect, or another supported health integration:

  • Weight, height, and body fat
  • Steps, flights climbed, workouts, active calories, and basal calories
  • Sleep duration and sleep stages
  • Heart rate variability and resting heart rate
  • Water intake
  • Mindfulness minutes
  • Menstruation or cycle flow data, if tracked and authorized
  • Blood glucose, if tracked and authorized
  • Dietary energy written to Apple Health, Health Connect, or another supported integration, if authorized

Sensitive data is never shared with advertisers or sold.

3.3. Automatically Collected Data

  • IP address, country, region
  • App usage metadata
  • Device model, OS, language
  • Crash logs, diagnostics
  • Cookie identifiers

3.4. AI Interaction Data

We collect:

  • AI chat messages you send
  • AI coaching results
  • Contextual nutrition and activity data used to generate responses

We do not allow AI partners to train models on your information.

3.5. Paired Mode Data

Shared only when you activate Paired Mode:

  • basic profile details, such as avatar
  • daily nutrition logs, calories, macros, and water tracking
  • logging indicators, such as missed days or dates where logs exist
  • partner logging controls, if enabled in the app
  • your latest weight value only if you explicitly enable weight sharing

Paired Mode does not share Apple Health, Health Connect, activity, sleep, recovery, wellness metrics, AI chat content, login credentials, payment information, or contact information unless explicitly stated in the app.

3.6. Geolocation Data (Optional)

Collected only if you choose to enable it, for:

  • improving food recognition and suggestions
  • regionalizing food databases
  • adjusting calorie recommendations (time zone, region)

We do not track precise continuous GPS.

4. Purposes of Processing

We process data for:

  • Providing core app functionality
  • Creating personalized nutrition plans
  • Adaptive calorie calculation
  • AI-powered insights
  • Analytics to improve the app
  • Pairing users in Paired Mode
  • Security, fraud detection
  • Compliance with legal obligations

5. Legal Bases for Processing (GDPR)

  • Explicit Consent — health data, AI coaching, geolocation
  • Contract Performance — providing the app
  • Legitimate Interest — product improvement, security
  • Legal Obligations — tax, compliance, audits

6. How We Share Data

We do not sell personal data.

We share only as described below.

6.1. With Service Providers

We use trusted processors:

ProviderFunctionRegionNotes
Hetzner Online GmbHHostingEUencrypted storage
RevenueCatSubscription managementUS/EUno access to health data
App Store / Google PlayBillingGlobalno access to health data

All providers operate under Data Processing Agreements (DPAs).

6.2. Paired Mode Sharing

Visible only to your paired partner.

6.3. Legal Compliance

Data may be disclosed if required by:

  • court orders
  • government authorities
  • law enforcement

6.4. No Use of Health Data for Advertising

We do not use:

  • Apple Health data
  • Health Connect data
  • sensitive data

for advertising or marketing.

7. Apple Health and Health Connect Compliance

Macrofy may connect with Apple Health on iOS and Health Connect or other supported Android health integrations on Android. With your permission, Macrofy may use health data from compatible devices and apps that sync to those platforms, including Apple Watch, Fitbit, Garmin, Oura, WHOOP, Withings, Samsung Health, or Google Fit where supported.

For platform health integrations:

  • We only read/write data you explicitly authorize.
  • Data is used solely for wellness functions.
  • Data is never shared with third parties.
  • Data is never used for advertising or analytics.
  • You may revoke permissions at any time.

Macrofy does not provide direct integrations with third-party device or wellness services unless explicitly stated.

8. AI Data Processing (EU AI Act)

Macrofy uses AI to:

  • analyze nutrition logs
  • generate suggestions
  • provide coaching messages

We guarantee:

  • AI does not make medical decisions
  • AI does not provide diagnosis
  • AI outputs may be inaccurate
  • AI does not use personal data for training
  • Users may delete AI data anytime

9. International Transfers

When transferring data outside the EU (e.g., Firebase, OpenAI), we use:

  • Standard Contractual Clauses (SCC)
  • Additional safeguards: encryption, pseudonymization

10. Data Retention

  • Account data — stored until deletion
  • Health data — deleted immediately upon account removal
  • Food photos — removed on account deletion
  • Analytics — 12–18 months
  • Backups — 30 days

11. Security

We use industry-standard security measures:

  • HTTPS encryption
  • Encryption at rest
  • Strict access controls
  • Firewall and intrusion detection
  • Zero-trust server model

12. Your Rights

EU/EEA Users (GDPR):

  • Access
  • Correction
  • Deletion
  • Restriction
  • Portability
  • Withdraw consent

US State Rights:

Detailed in regional addenda (below).

Canada (PIPEDA)

  • Access
  • Correction
  • Withdraw consent

Australia (Privacy Act 1988)

  • Access
  • Correction
  • Complaint rights

13. Changes to This Policy

We may update this policy and will notify users in-app or via email.

14. Contact

Email: legal@macrofy.app (or legal@appmonster.tech)

Company: MB "Appmonster Technologies"
Legal form: Small Partnership
Company code: 306141982
Registered address:
Vilnius, Treniotos g. 2-12, LT-08121, Lithuania

← Back to Home

enes