Last updated: April 2026

Privacy Policy

Your privacy matters to us. This policy explains what information we collect, why we collect it, and how you can manage it.

Who we are

Eat Like This is operated by HealthTech Labs OÜ (registry code 17428736), a company registered in Estonia ("we", "us", "our"). Eat Like This is a meal planning application for iOS and Android. We generate personalized weekly meal plans based on your dietary preferences, goals, and schedule. All recipes are reviewed by registered nutrition professionals.

This Privacy Policy applies to the Eat Like This mobile app, our website at eatlikethis.app, and any related services we operate.

Information we collect

Account information. When you create an account, we collect your email address and name through our authentication provider. You may also sign in with a third-party account (e.g. Apple or Google), in which case we receive your name, email address, and profile photo from that provider.

Dietary and health preferences. To personalize your meal plans, we collect information you provide about your dietary goals, restrictions, allergies, cuisine preferences, and schedule.

Body measurements. During onboarding and weekly check-ins, you may provide weight, height, body fat percentage, lean body mass, and waist/hip measurements. Some jurisdictions classify these as biometric data.

Health and fitness data. With your explicit opt-in, we can read data from Apple HealthKit, including steps, active energy, exercise time, distance, heart rate, resting heart rate, VO2 max, body composition, and dietary intake. This data is only accessed when you enable the integration and is used solely to personalize your meal plans and provide context for weekly check-in insights. We do not use HealthKit data for advertising or share it with third parties for their own purposes.

Meal plan and usage data. We store your generated meal plans, logged meals (including unplanned meals for adaptive replanning), grocery lists, and interactions with the app such as swaps and completions.

Check-in and wellbeing data. During weekly check-ins, we collect self-reported mood, cravings, movement quality, sleep quality, and optional free-text reflections. This data is used to generate personalized insights and adapt future meal plans.

Photos and images. You may use your device camera or photo library to photograph meals for nutritional estimation, share images in the AI chat, or upload a profile photo. Meal photos may be sent to our servers and processed by an AI service provider to estimate nutritional content.

Voice recordings. You may use voice input for the AI chat and check-in flows. Audio recordings are sent to our servers and transcribed using an AI service provider. We do not retain raw audio after transcription is complete.

Device and technical data. We automatically collect basic technical information such as your device type, operating system version, app version, and general usage patterns to help us improve performance and fix bugs.

How we use your information

We use the information we collect to:

  • Generate and personalize your weekly meal plans
  • Power adaptive replanning when you go off-plan
  • Track your progress toward your nutritional goals
  • Create and manage your grocery lists
  • Improve the app, fix bugs, and develop new features
  • Communicate with you about your account, updates, and support

We do not use your data to build advertising profiles or show you targeted ads.

Legal basis for processing

If you are in the European Economic Area (EEA), UK, or another jurisdiction that requires a legal basis for processing personal data, we rely on the following:

  • Contractual necessity. Processing your account information, dietary preferences, and meal plan data is necessary to provide the service you signed up for.
  • Consent. We process health and fitness data (e.g. Apple HealthKit), voice recordings, meal photos sent to AI providers, and AI-powered features only with your explicit opt-in consent. You can withdraw consent at any time through the app settings.
  • Legitimate interests. We process device and technical data to maintain security, fix bugs, and improve the service. We balance these interests against your rights and freedoms.

Data sharing

We do not sell your personal information. We only share data with third parties when necessary to operate the service:

  • AI service providers. Certain features — including the AI nutrition assistant, meal photo estimation, voice transcription, and check-in insights — are powered by third-party AI models (currently OpenAI). When you use these features, relevant data (such as your message text, meal photos, voice recordings, meal plan context, and check-in responses) is sent to the AI provider for processing. You will be asked to provide explicit consent within the app before any AI-powered features are activated. You can withdraw this consent at any time from your app settings, which will disable AI features. See OpenAI's Privacy Policy.
  • Authentication. We use Clerk to manage accounts and sign-in. Clerk processes your email and authentication credentials on our behalf. See Clerk's Privacy Policy.
  • Subscription management. We use RevenueCat to manage in-app subscriptions and purchases. RevenueCat receives your anonymized user identifier and purchase data to process and validate subscriptions. See RevenueCat's Privacy Policy.
  • App stores. If you subscribe through the Apple App Store or Google Play Store, your payment is processed entirely by those platforms. We do not receive or store your payment card details.
  • Push notifications. We use Expo's push notification service to deliver notifications to your device. Expo receives your device push token and platform information. See Expo's Privacy Policy.
  • Infrastructure. We use cloud hosting providers to store and process your data. All data is encrypted in transit and at rest.

We may also disclose information if required by law, to protect our rights, or to prevent fraud or security threats.

Cookies and local storage

Our marketing website does not use tracking cookies or third-party analytics. The only client-side storage we use on the website is localStorage to remember your light/dark theme preference.

The mobile app does not use cookies. It stores your authentication session and cached data locally on your device to provide offline access.

Data retention

We retain your account data and meal plan history for as long as your account is active. If you delete your account, we will remove your personal data from our active systems within 30 days. Some data may be retained in encrypted backups for up to 90 days before being permanently deleted.

Anonymized, aggregated data (e.g. how many users prefer a certain cuisine) may be retained indefinitely to improve the service.

International data transfers

Our database is hosted in the EU (AWS Europe, Frankfurt) and our API runs in the EU (GCP, Stockholm). Your core account and meal plan data stays within the European Economic Area.

However, some of the third-party services we use to operate the app — including our AI provider (OpenAI), authentication provider (Clerk), subscription manager (RevenueCat), and push notification service (Expo) — are based in the United States. When you use features powered by these services, relevant data may be transferred to and processed in the US or other countries that may not provide the same level of data protection as your home country.

Where required, we rely on appropriate safeguards for these transfers, including Standard Contractual Clauses approved by the European Commission, or the service provider's participation in recognized frameworks such as the EU-U.S. Data Privacy Framework. You can request more information about the specific safeguards we use by contacting us.

Your rights

Depending on where you live, you may have some or all of the following rights regarding your personal data:

  • Access. Request a copy of the personal data we hold about you.
  • Correction. Ask us to correct inaccurate or incomplete information.
  • Deletion. Request that we delete your personal data and account.
  • Portability. Receive your data in a structured, machine-readable format.
  • Restriction. Ask us to limit how we process your data in certain circumstances.
  • Objection. Object to processing of your data where we rely on legitimate interests.

To exercise any of these rights, contact us at jackie@nutrish.ai. We will respond within 30 days.

If you are in the European Economic Area, you also have the right to lodge a complaint with your local data protection authority.

Children's privacy

Eat Like This is not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

Security

We take reasonable technical and organizational measures to protect your data, including encryption in transit (TLS) and at rest, access controls, and regular security reviews. However, no system is completely secure, and we cannot guarantee absolute security.

Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the app or by email before the changes take effect. The "Last updated" date at the top of this page reflects when the policy was most recently revised.

Contact us

If you have any questions about this Privacy Policy or how we handle your data, please reach out: