Privacy Policy

Effective date: February 21, 2026

BiteMath ("we," "us," or "our") operates the website www.bitemath.ai and the BiteMath application available at bitemath.ai (collectively, the "Service"). This Privacy Policy explains how we collect, use, store, and share information when you use our Service.

By creating an account or using BiteMath, you agree to the practices described in this policy. If you do not agree, please do not use the Service.

1. Information We Collect

1.1 Account Information

BiteMath uses Google OAuth as its sole authentication method. When you sign in with your Google account, we receive and store:

  • Your name
  • Your email address
  • Your Google profile avatar (URL)
  • Your Google account identifier (used solely to link your sessions to your account)

We do not receive or store your Google password.

1.2 Profile and Goal Information

To calculate personalized nutrition targets, you may provide:

  • Biological sex
  • Date of birth
  • Height
  • Activity level
  • Nutrition goals (e.g., lose weight, maintain, gain weight)
  • Preferred unit system (metric or imperial)

1.3 Nutrition and Health Data

When you use BiteMath to track your nutrition, we collect:

  • Meal descriptions: The natural-language text you enter to describe your meals (e.g., "grilled chicken breast with rice and broccoli")
  • Macro estimates: The calorie, protein, carbohydrate, and fat values returned by our AI and any manual adjustments you make
  • Weight entries: Daily body weight measurements you log
  • Computed macro targets: Daily calorie and macronutrient targets calculated from your profile

1.4 Payment Information

Subscription payments are processed by Stripe (on the web) and RevenueCat (on native app platforms). We do not directly collect or store your credit card number, bank account details, or other payment instrument data. These payment processors provide us with limited information such as your subscription status, billing cycle, and a transaction identifier. Please review the privacy policies of Stripe and RevenueCat for details on how they handle your payment data.

1.5 Automatically Collected Information

When you access BiteMath, our hosting infrastructure may automatically log standard request data, including your IP address, browser type, device type, and the date and time of your requests. This data is used for security monitoring and debugging and is not used for advertising or behavioral tracking. We do not use any third-party analytics services or advertising trackers.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing the Service: To authenticate you, calculate your personalized macro targets, log your meals and weight entries, and display your nutrition dashboard
  • AI macro estimation: To send your meal descriptions to the Google Gemini API so it can return calorie and macronutrient estimates (see Section 3 for details)
  • Subscription management: To verify your subscription status and provide access to paid features
  • Communicating with you: To respond to support requests sent to hello@bitemath.ai and to send essential service notifications (e.g., changes to our terms or this policy)
  • Security and integrity: To detect and prevent fraud, abuse, and security incidents
  • Improving the Service: To understand usage patterns in aggregate (not individually) and fix bugs

We do not sell your personal information. We do not use your data for advertising. We do not build advertising profiles based on your activity.

3. AI Processing of Meal Descriptions

When you log a meal, your natural-language meal description is sent to the Google Gemini API (specifically the gemini-2.0-flash model) through Cloudflare AI Gateway to generate calorie and macronutrient estimates. The following details apply:

  • Only the meal description text is sent to Google Gemini. Your name, email, and other account information are not included in AI requests.
  • Google's Gemini API data usage policies govern how Google processes this data. Under Google's API terms of service, data sent through the paid Gemini API is not used to train Google's models.
  • Cloudflare AI Gateway acts as a proxy and may temporarily log requests for operational purposes in accordance with Cloudflare's privacy policy.

4. Third-Party Service Providers

We rely on the following third-party service providers to operate BiteMath:

Google (Authentication and AI)

We use Google OAuth for sign-in and the Google Gemini API for meal macro estimation. Google receives your authentication credentials during sign-in and your meal description text for AI processing. Google Privacy Policy

Cloudflare (Hosting and Infrastructure)

Our application is hosted on Cloudflare's platform, including Cloudflare Workers (API), Cloudflare Pages (web frontend), Cloudflare D1 (database), and Cloudflare KV (session cache). Cloudflare processes your requests and stores your data on our behalf. Cloudflare Privacy Policy

Stripe (Web Payments)

Stripe processes subscription payments made through the web application. Stripe collects and processes your payment information directly. Stripe Privacy Policy

RevenueCat (Native App Payments)

RevenueCat manages subscriptions for native app versions of BiteMath and interfaces with Apple App Store and Google Play billing. RevenueCat Privacy Policy

We do not share your data with any other third parties. We do not use third-party analytics tools, advertising networks, or data brokers.

5. Cookies and Session Data

BiteMath uses a minimal set of cookies and local storage strictly necessary to operate the Service:

  • Session cookie: A server-side session identifier stored in an HTTP-only cookie to keep you signed in. This cookie is essential for authentication and cannot be disabled while using the Service.
  • Local storage: We may store non-sensitive preferences (such as your preferred unit system) in your browser's local storage to improve performance.

We do not use tracking cookies, advertising cookies, or any third-party cookies. There are no analytics pixels or social media trackers on BiteMath.

6. Data Storage and Security

Your data is stored in Cloudflare D1 (a SQLite-based database service) and cached in Cloudflare KV as part of Cloudflare's global infrastructure. All data transmitted between your device and our servers is encrypted using TLS (HTTPS). Data at rest is protected by Cloudflare's infrastructure security measures.

We implement reasonable technical and organizational safeguards to protect your information from unauthorized access, alteration, disclosure, or destruction. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

7. Data Retention

We retain your account data and nutrition logs for as long as your account is active. This allows you to access your complete history and track long-term trends.

If you delete your account (see Section 8), we will permanently delete all of your personal data, including your profile information, meal logs, weight entries, and macro targets, within 30 days. Some data may persist in encrypted backups for up to an additional 90 days, after which it is permanently removed.

Aggregated, anonymized data that cannot be used to identify you may be retained indefinitely for the purpose of improving the Service.

8. Your Rights and Choices

You have the following rights regarding your personal data:

  • Access: You can view all of your personal data within the BiteMath application at any time, including your profile, meal history, weight logs, and macro targets.
  • Export: You can export all of your data in CSV format from the settings page within the application. This export includes your meal logs, weight entries, and profile information.
  • Correction: You can edit your profile information, meal entries, and weight logs directly within the application at any time.
  • Deletion: You can delete your account from the settings page within the application. Account deletion permanently removes all of your data as described in Section 7. You may also request account deletion by emailing hello@bitemath.ai.
  • Withdraw consent: You can stop using the Service at any time. You can revoke BiteMath's access to your Google account through your Google account settings.

If you are located in the European Economic Area (EEA), the United Kingdom, or another jurisdiction that grants additional data protection rights, you may also have the right to restrict processing or object to processing of your personal data, and the right to lodge a complaint with your local data protection authority. To exercise any of these rights, please contact us at hello@bitemath.ai.

9. Children's Privacy

BiteMath is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us at hello@bitemath.ai and we will promptly delete that information.

Users between the ages of 13 and 18 may use BiteMath with the consent of a parent or legal guardian.

10. International Data Transfers

BiteMath is operated from the United States, and our infrastructure is distributed globally through Cloudflare's network. Your data may be processed in the United States or other countries where our service providers maintain facilities. By using BiteMath, you consent to the transfer of your information to these locations. We rely on our service providers' data protection measures and contractual safeguards to protect data transferred internationally.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

  • Update the "Effective date" at the top of this page
  • Notify you through an in-app notification or by email to the address associated with your account

Your continued use of BiteMath after a revised policy becomes effective constitutes your acceptance of the updated terms. We encourage you to review this page periodically.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

BiteMath

Email: hello@bitemath.ai

Website: www.bitemath.ai

We will respond to all privacy-related inquiries within 30 days.