Privacy Policy

Last Updated: January 2026

At Flori, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

1. Information We Collect

Personal Information

When you create an account, we may collect:

• Email address
• Full name
• Gender (optional)
• Birth year (optional)
• Profile photo (optional)

Health Information

To provide our services, we collect health-related information you choose to share:

• Food and meal logs (including ingredients, macronutrients, and photos)
• Drink logs (type, caffeine, sugar, and alcohol content)
• Symptom reports (bloating, pain, gas, nausea, reflux, and others)
• Bowel movement records (Bristol Stool Scale, frequency, and photos)
• Water intake
• Mood and wellness check-ins (energy, stress, mental clarity, skin health)
• Exercise logs (type, duration, intensity, step count)
• Sleep data (hours and quality)
• Supplement and medication logs (name, type, dosage, brand)
• Fasting data (meal timing, fasting duration)
• Plant diversity tracking (plants consumed per week)
• Fiber intake
• Breathing exercise sessions
• Dietary preferences and restrictions
• Medical conditions you disclose
• Weight and height (optional)
• Food elimination challenge data

Voice and Audio Data

With your permission, Flori may record audio when you use the voice meal logging feature. Voice recordings are sent to Google Gemini for transcription and are not stored on our servers after processing.

Food Analysis Data

When you log meals, the App may analyze ingredients for sensitivity information including FODMAP levels, histamine, gluten, dairy, and other dietary compounds. Barcode scanning may collect product identifiers, nutrition scores, allergen information, and ingredient categories.

Usage Information

We automatically collect certain information about your device and app usage:

• Device type and operating system
• App version
• Feature interactions and usage patterns
• Notification preferences and schedules

2. How We Use Your Information

We use the information we collect to:

• Provide and maintain the App's functionality
• Generate personalized insights, pattern analysis, and recommendations
• Identify correlations between your diet, lifestyle, and symptoms
• Provide AI coaching and weekly focus challenges
• Create health reports for you to share with healthcare providers
• Send local reminders and notifications you configure
• Improve and optimize the App
• Respond to your inquiries and support requests

3. AI and Data Processing

Flori uses artificial intelligence to provide insights and recommendations. Your data may be processed by AI systems to:

• Identify patterns in your symptoms, diet, and lifestyle
• Generate personalized suggestions and coaching
• Analyze food photos and ingredients
• Analyze stool photos for Bristol Stool Scale classification
• Transcribe voice meal descriptions
• Answer your health-related questions via the AI coach chat

AI processing is performed by Google Gemini via secure server-side functions. Your data is sent only as needed to provide the requested feature and is not used to train third-party AI models.

AI-generated insights are for informational purposes only and should not replace professional medical advice.

4. Data Storage and Security

Your data is stored securely using industry-standard practices:

• Data is encrypted in transit using TLS/SSL
• Data is encrypted at rest on our servers
• Local data on your device is stored in an encrypted SQLite database
• Sensitive credentials are stored using your device's secure keychain
• We use Supabase for secure cloud data storage and authentication
• PowerSync is used for secure local-first data synchronization
• Access to data is restricted to authorized personnel only

Your health data is also stored locally on your device to enable offline access. This local data syncs securely with our servers when a connection is available.

While we implement robust security measures, no method of electronic storage is 100% secure. We cannot guarantee absolute security.

5. Data Sharing and Disclosure

We do not sell your personal or health information. We may share your information only in the following circumstances:

• With your consent: When you explicitly authorize sharing
• Service providers: With trusted third parties who assist in operating our App (e.g., cloud hosting, AI processing)
• Legal requirements: When required by law or to protect our rights
• Business transfers: In connection with a merger, acquisition, or sale of assets

6. Third-Party Services

The App integrates with third-party services that have their own privacy policies:

• Supabase (authentication, database, and server-side functions)
• PowerSync (local-first data synchronization)
• Google Gemini (AI-powered food analysis, stool analysis, voice transcription, and coaching)
• Open Food Facts (barcode-based product and nutrition data lookup)
• Apple (Sign in with Apple, in-app purchases via the App Store)
• Google (OAuth authentication, in-app purchases via Google Play)

7. Subscriptions and Payments

Flori offers in-app subscriptions processed through the Apple App Store and Google Play Store. We do not directly collect or store your payment card information. Payment processing is handled entirely by Apple and Google according to their respective privacy policies.

We receive subscription status information (such as whether your subscription is active and its tier) to provide access to premium features.

8. Notifications

Flori uses local notifications to send you reminders you configure, such as meal logging reminders, supplement reminders, and check-in prompts. These notifications are scheduled and delivered entirely on your device. We do not use cloud-based push notification services. You can disable notifications at any time in your device settings.

9. Your Rights and Choices

You have the following rights regarding your data:

• Access: Request a copy of your data
• Correction: Update inaccurate information
• Deletion: Request deletion of your account and data
• Export: Download your health data via the export feature
• Opt-out: Disable optional data collection features
• Permissions: Revoke camera, microphone, or notification permissions at any time via your device settings

10. Data Retention

We retain your data for as long as your account is active or as needed to provide services. When you delete your account:

• Your personal data is deleted from our servers within 30 days
• Local data on your device is removed when you uninstall the App
• Some anonymized, aggregated data may be retained for analytics
• Backup copies may persist for up to 90 days

11. Children's Privacy

Flori is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately.

12. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

13. Information We Do Not Collect

Flori does not collect:

• Location or GPS data
• Contacts or address book data
• Browsing history outside the App
• Data from Apple HealthKit or Google Fit

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy in the App and updating the "Last Updated" date. Your continued use of the App after changes constitutes acceptance of the updated policy.

15. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

support@myflori.com