Legal

Privacy Policy

Last updated: July 3, 2026

1. Controller and scope

This Privacy Policy explains how MB Soft Lab, acting as controller for Nutri Guardian, collects, uses, stores, and protects personal data when you use the mobile app, website, and related services.

This Policy applies to registered users, visitors, and contributors who provide product-related content.

2. Health and nutrition disclaimer

Nutri Guardian is an educational tool. It does not provide medical diagnosis, treatment, or professional medical advice and should not replace consultation with qualified healthcare professionals.

3. Categories of data we collect

  • Account and identity data, such as email address, authentication identifiers, and account settings.
  • Profile data, including allergies, intolerances, dietary preferences, excluded ingredients, and similar personalization inputs.
  • Usage and diagnostics data, such as scan history, interaction events, app activity, crash logs, and service performance metrics.
  • Product contribution data, including submitted labels, corrected product facts, validations, and issue reports.
  • Subscription and billing metadata, such as plan status, renewal state, and transaction references from payment providers.
  • Support communications and complaint-handling records.

4. Data sources

  • Directly from you when you register, complete onboarding, scan labels, configure profile settings, or contact support.
  • Automatically from your device and service usage, subject to your device and app permissions.
  • From third-party providers such as analytics, payment, cloud infrastructure, and anti-fraud services.
  • From community contributors and public product datasets that supplement product information.

5. Purposes and legal bases

  • Service performance: to operate core app features, authenticate users, and provide personalized product analysis (contract necessity).
  • Personalization: to evaluate products against your dietary profile and present relevant explanations (contract necessity and explicit user-provided data).
  • Safety and abuse prevention: to secure accounts, detect fraud, enforce scan limits, and maintain platform integrity (legitimate interest).
  • Billing and subscriptions: to manage paid plans, entitlements, and accounting obligations (contract necessity and legal obligation).
  • Legal compliance: to meet statutory requirements, respond to lawful requests, and preserve records where required (legal obligation).
  • Product and service improvements: to improve quality, reliability, and user experience using aggregated or pseudonymized insights (legitimate interest).
  • Communications: to send essential service notices and, where permitted, optional updates based on your preferences (contract necessity or consent).

6. AI-assisted processing

Nutri Guardian may use AI for OCR, ingredient extraction, synonym recognition, and generating understandable explanations. Deterministic business rules remain primary whenever exact validation is possible.

AI outputs may be reviewed, corrected, or overridden by deterministic checks, user feedback, and moderation workflows.

7. Data sharing and recipients

We do not sell your personal data. We may share data strictly when necessary with:

  • Cloud hosting, storage, observability, and security providers acting under contractual safeguards.
  • Payment and subscription infrastructure providers for transaction processing and entitlement management.
  • Analytics and product improvement providers, using minimized, pseudonymized, or aggregated datasets where feasible.
  • Professional advisors and authorities where disclosure is required by law or to protect legal rights.

8. International transfers

If data is transferred outside your jurisdiction, we apply appropriate safeguards such as standard contractual clauses, transfer impact assessments, and equivalent technical protections.

9. Data retention

We retain personal data only as long as necessary for the purposes described in this Policy, including legal, tax, accounting, dispute-resolution, and security obligations.

Retention periods vary by data category. Data that is no longer required is deleted, anonymized, or irreversibly aggregated.

10. Security measures

We implement administrative, technical, and organizational controls appropriate to risk, including access controls, encryption in transit, secure key management, logging, least-privilege access, and incident response procedures.

No internet-based system is fully immune from risk, but we continuously improve controls and response readiness.

11. Your rights

Subject to applicable law, you may request access, correction, deletion, portability, restriction, objection, and withdrawal of consent where processing is consent-based.

You may also lodge a complaint with your local data protection authority.

12. Children and age limits

Nutri Guardian is not directed to children below the minimum digital consent age in relevant jurisdictions. If we learn that personal data was provided unlawfully by a minor, we will take appropriate deletion and remediation actions.

13. Changes to this policy

We may update this Privacy Policy to reflect legal, technical, or business changes. Material updates will be communicated through appropriate in-app or website notices.

14. Contact

If you have questions about privacy, data rights, or this Policy, contact MB Soft Lab through official Nutri Guardian support channels.

Back to homepage