Privacy Policy — OgamicX
OgamicX

Privacy Policy

Last updated: April 5, 2026

1. Introduction

OgamicX ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, share, and protect your personal information when you use the OgamicX application and related services (collectively, the "Service"). By using the Service, you agree to the collection and use of information in accordance with this policy. We encourage you to read this policy carefully.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly when you create an account or use the Service, including:

  • Account information: Name, email address, date of birth, and login credentials
  • Profile and fitness data: Height, weight, body measurements, fitness goals, activity level, and workout history
  • Nutrition data: Meal logs, calorie intake, macronutrient targets, dietary preferences, and food diary entries
  • Photos: Food photos you upload for AI-powered nutrition analysis, and progress photos
  • User-generated content: Notes, journal entries, and other content you create within the Service

2.2 Health and Fitness Data

As a fitness and nutrition application, we collect and process sensitive health-related data, including:

  • Workout logs, exercise types, sets, reps, and duration
  • Body metrics including weight, body fat percentage, and measurements over time
  • Meal photos submitted for AI nutritional analysis
  • Nutritional intake, including calorie counts and macronutrient breakdowns
  • Health goals and progress data
  • Fasting schedules, fasting start and end times, fasting duration, and fasting patterns
  • Data synced from Apple Health, Google Fit, or wearable devices (if you grant permission)

Fasting data is used to personalize your fasting recommendations, track your progress over time, and surface relevant insights within the Service. This data is used to personalize your experience and deliver core features of the Service. We handle health data with the highest level of care and do not sell it to third parties.

2.3 Information Collected Automatically

When you use the Service, we automatically collect certain technical and usage information:

  • Device information: Device type, operating system version, device identifiers, and hardware model
  • Usage data: Features used, session duration, screens viewed, and interaction patterns
  • Analytics data: App performance metrics, crash reports, and error logs
  • Network information: IP address, mobile network, and general location (country/region level)

2.4 Camera and Photo Library Access

The Service may request access to your device's camera and photo library for the following purposes:

  • Camera access: Used for AI-powered food scanning, allowing you to photograph meals for instant nutritional analysis
  • Photo library access: Used to allow you to select existing food photos for nutritional analysis and to upload a profile image
  • Food photos you submit are uploaded to our servers for AI analysis and are subject to the data handling practices described in this policy
  • You can revoke camera and photo library access at any time through your device's Settings app. Revoking access will disable food scanning and photo upload features

2.5 Social Data

When you use the social features of the Service, we collect and process the following information:

  • Following and follower relationships between users
  • Reactions you give and receive on activity feed posts (such as like, love, fire, and clap)
  • Leaderboard rankings, XP points, and tier data
  • Public profile information that is visible to other users of the Service, including your display name, avatar, current streak, and achievements

Public profile information is visible to other OgamicX users by default. You can review and update your profile visibility settings within the app.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Personalize your workout plans, nutrition recommendations, and fitness goals
  • Perform AI analysis of food photos to estimate nutritional content
  • Process subscription payments and manage your account
  • Send service-related notifications, updates, and support communications
  • Analyze usage patterns to improve the Service and develop new features
  • Monitor and ensure the security and integrity of the Service
  • Comply with legal obligations and enforce our Terms of Use

4. AI Processing

OgamicX uses artificial intelligence to deliver personalized fitness and nutrition experiences. Specifically:

  • Food photo analysis: When you upload a photo of your meal, our AI systems analyze the image to identify food items and estimate nutritional content, including calories, protein, carbohydrates, and fat.
  • Fitness personalization: Your workout history, body metrics, and goals are processed by AI models to generate personalized training recommendations.
  • Progress analysis: AI models track your data over time to identify trends and provide coaching insights.

To improve the accuracy and performance of our AI models, we may use anonymized and aggregated data derived from user interactions. This data is de-identified before use in model training and cannot reasonably be used to identify you. You may opt out of contributing your data to AI model improvement by contacting us at [email protected].

AI-generated outputs are approximations and for informational purposes only. They do not constitute medical or professional nutritional advice.

5. Sharing Your Information

We do not sell your personal information. We may share your information only in the following circumstances:

  • Service providers: With trusted third-party vendors who assist us in operating the Service, including cloud hosting, payment processing, analytics, and customer support. These providers are contractually bound to use your information only as directed by us and in accordance with this policy.
  • Legal requirements: When required by applicable law, court order, or governmental authority, or to protect the rights, property, or safety of OgamicX, our users, or the public.
  • Business transfers: In connection with a merger, acquisition, reorganization, or sale of all or a portion of our assets, in which case user information may be transferred as part of the transaction. We will notify you of any such change.
  • With your consent: In any other circumstances where you have provided explicit consent for us to share your information.

6. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

  • Encryption of data in transit (TLS/HTTPS) and at rest
  • Strict access controls and authentication requirements for our systems
  • Regular security monitoring and vulnerability assessments
  • Employee training on data protection practices

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee its absolute security. In the event of a data breach that affects your rights, we will notify you in accordance with applicable law.

7. Your Rights

You have the following rights with respect to your personal information:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request that we correct inaccurate or incomplete information
  • Deletion: Request that we delete your personal information (see Account Deletion section below)
  • Portability: Request a machine-readable copy of your data to transfer to another service
  • Objection: Object to certain types of processing of your personal information
  • Opt-out of AI training: Opt out of having your anonymized data used for AI model improvement

To exercise these rights, please contact us at [email protected]. We will respond to your request within a reasonable timeframe and in accordance with applicable law.

8. Third-Party Services

The Service integrates with the following third-party platforms and services, which have their own privacy policies:

  • Apple (App Store, Apple Sign-In, Apple Health): Governs in-app purchase billing and authentication on iOS devices. See Apple's Privacy Policy.
  • Google (Google Play, Google Sign-In, Google Fit): Governs in-app purchase billing and authentication on Android devices. See Google's Privacy Policy.
  • Firebase (Google): Used for analytics, crash reporting (Crashlytics), push notifications (Cloud Messaging), and remote configuration.
  • Cloud storage providers: Used for secure storage of user data and media files.
  • Analytics providers: Used to collect aggregated, anonymized usage statistics to improve the Service.

We are not responsible for the privacy practices of these third-party services. We encourage you to review their respective privacy policies.

8.1 Sign-In with Apple and Google

When you choose to sign in using Apple or Google, the following information may be shared with us:

  • Sign in with Apple: We receive your name and email address. Apple gives you the option to hide your real email address using a private relay address, in which case we will receive and store the relay address instead
  • Sign in with Google: We receive your name, email address, and profile photo URL from your Google account
  • We do not receive or store your Apple or Google account password at any time. Authentication is handled entirely by Apple and Google respectively

9. Children's Privacy

The Service is not directed to individuals under the age of 16, and we do not knowingly collect personal information from children under 16. If we become aware that we have inadvertently collected personal information from a child under 16, we will take prompt steps to delete that information from our records. If you believe we may have collected information from a child under 16, please contact us at [email protected].

10. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. We may also retain certain information for longer periods as required to comply with legal obligations, resolve disputes, or enforce our agreements. When your account is deleted, we will delete or anonymize your personal information within a reasonable timeframe, except where retention is required by law.

11. International Data Transfer

Your information may be transferred to and stored on servers located outside your country of residence, including countries that may have different data protection laws than your jurisdiction. By using the Service, you consent to this transfer. We take appropriate steps to ensure that any international transfer of your data is carried out in compliance with applicable data protection requirements and that your information receives an adequate level of protection.

12. Cookies and Tracking

On our website (ogamic.com), we use cookies and similar tracking technologies to:

  • Remember your preferences and settings
  • Analyze how visitors use the website
  • Measure the effectiveness of our marketing campaigns
  • Improve website performance and user experience

You can control or disable cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our website. We do not use tracking cookies within the mobile app itself.

13. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through a prominent notice within the Service before the changes take effect, and we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.

14. Account Deletion

You have the right to request deletion of your OgamicX account and all associated personal data. To delete your account:

Upon verification of your identity, we will delete your account and personal data within 30 days. Please note that some information may be retained for a limited additional period where required by law or for legitimate business purposes such as fraud prevention. Deleting your account does not automatically cancel an active subscription — you must cancel your subscription separately through the App Store or Google Play settings before deleting your account to avoid future charges.

15. Regional Privacy Rights

15.1 European Economic Area (EEA) — GDPR

If you are located in the European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal basis for processing: We process your personal data on the basis of your consent, the performance of our contract with you, and our legitimate interests in operating and improving the Service
  • Right of access: Request a copy of the personal data we hold about you
  • Right to rectification: Request correction of inaccurate or incomplete personal data
  • Right to erasure: Request deletion of your personal data under certain circumstances
  • Right to restriction: Request that we restrict the processing of your personal data
  • Right to data portability: Receive your personal data in a structured, commonly used, machine-readable format
  • Right to object: Object to the processing of your personal data where we rely on legitimate interests as the legal basis
  • Right to withdraw consent: Where processing is based on your consent, you have the right to withdraw that consent at any time without affecting the lawfulness of prior processing
  • Right to lodge a complaint: You have the right to lodge a complaint with the relevant data protection supervisory authority in your country

To exercise your GDPR rights or to reach our designated contact for data protection inquiries, please contact us at [email protected].

15.2 California Residents — CCPA

If you are a resident of California, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know: You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources from which it was collected, the business purpose for collecting it, and the categories of third parties with whom we share it
  • Right to delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions
  • Right to opt-out of sale: We do not sell your personal information to third parties. You therefore have no need to opt out of a sale, but you may contact us to confirm this at any time
  • Right to non-discrimination: We will not discriminate against you for exercising any of your CCPA rights. We will not deny you goods or services, charge you different prices, or provide a different level of quality of service because you exercised your rights

To submit a verifiable consumer request under the CCPA, please contact us at [email protected]. We will respond to verifiable requests within 45 days as required by law.

16. Data Breach Notification

In the event of a data breach that affects your personal information, OgamicX will take the following steps:

  • We will notify affected users within 72 hours of becoming aware of a breach that is likely to result in a risk to your rights and freedoms
  • Notification will be provided via email to the address associated with your account and/or through a prominent in-app notification
  • We will notify relevant regulatory authorities as required by applicable law, including GDPR supervisory authorities where applicable
  • Our notification will describe the nature of the breach, the categories and approximate number of individuals and records affected, likely consequences, and the measures taken or proposed to address the breach

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at: [email protected]

Chat với chúng tôi