Privacy Policy
Last updated: February 23, 2026 | Vita247 by Softbir
1. Introduction
Welcome to Vita247 (“we,” “us,” or “our”), a product of Softbir. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website (collectively, the “Service”). By using the Service, you agree to the collection and use of information in accordance with this policy.
We are committed to protecting your privacy and handling your personal data in compliance with applicable data protection laws, including the California Consumer Privacy Act (CCPA), the General Data Protection Regulation (GDPR), Apple’s App Store Guidelines, and Google Play’s Developer Program Policies.
2. Information We Collect
a) Information You Provide Directly
- Account Information: Email address, phone number, first name, last name, and date of birth when you create an account.
- Profile Information: Gender, height, weight, activity level, fitness goals, profile photo, and zip/postal code.
- Health & Fitness Data: Food logs, calorie intake, water consumption, step counts, exercise records, sleep data, fasting schedules, weight history, mood entries, and health journal entries.
- User Content: Messages sent to other users, community posts, and AI assistant conversations.
- Photos & Media: Images you upload for meal scanning, profile photos, or progress tracking.
b) Information Collected Automatically
- Device Information: Device type, operating system version, unique device identifiers, and mobile network information.
- Usage Data: Pages visited, features used, time spent in-app, crash reports, and performance data.
- Session Data: Login timestamps, session duration, and authentication tokens.
c) Information from Third-Party Services
- Authentication Providers: When you log in via email or SMS, we receive your verified email address or phone number from our authentication service providers (Mailtrap, Twilio).
- AI Services: Conversational data processed through Google Gemini AI for our AI assistant feature. See Section 7 for details.
3. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve the Service
- Create and manage your account
- Track and display your health and fitness data
- Personalize your experience, including calorie targets and fitness recommendations
- Provide AI-powered features such as meal recognition, nutritional analysis, and personalized health advice
- Send verification codes for authentication
- Send notifications about your goals, reminders, and fasting timers (with your permission)
- Enable social features such as friend connections and community interaction
- Monitor and analyze trends, usage, and activities to improve the Service
- Detect, prevent, and address technical issues and security threats
- Comply with legal obligations
4. Device Permissions
The app may request the following device permissions. Each permission is optional and requested only when you use the related feature:
- Camera: Used for barcode scanning (to look up packaged food nutrition) and AI meal scanning (to photograph food for nutritional analysis). We do not access your camera in the background.
- Photo Library: Used to upload food photos for AI analysis and to set a profile picture. We only access photos you explicitly select.
- Microphone: Used for voice-based food logging, allowing you to describe meals by speaking. Audio is processed for text conversion and is not stored.
- Push Notifications: Used to send meal reminders, fasting timer alerts, goal achievements, and other health-related notifications. You can enable or disable notifications at any time in Settings.
You can revoke any of these permissions at any time through your device’s system settings. Revoking a permission will disable the associated feature but will not affect the rest of the app.
5. Data Sharing & Disclosure
We do not sell your personal information. We may share your information in the following circumstances:
Service Providers
We share data with third-party service providers who assist us in operating the Service:
- Mailtrap / Twilio: Email and SMS delivery for authentication codes and notifications.
- Google Gemini AI: Processing of conversational data for our AI assistant and meal recognition features.
- Neon (PostgreSQL): Secure cloud database hosting for your account and health data.
- Replit: Application hosting and infrastructure.
With Your Consent
When you enable social features (profile visibility, progress sharing, sharing with friends), certain information may be visible to other users as described in your Privacy Settings.
Legal Requirements
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
6. Data Storage & Security
Your data is stored on secure servers using industry-standard encryption. We implement appropriate technical and organizational measures to protect your personal data, including:
- Encrypted data transmission (HTTPS/TLS) for all communications
- Secure, HTTP-only session cookies with expiration
- Passwordless authentication to eliminate password-related vulnerabilities
- Row-level data isolation ensuring users can only access their own data
- Regular security assessments and monitoring
While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
7. AI & Machine Learning
Our app uses AI-powered features provided by Google Gemini. When you use these features:
- AI Health Advisor (Vivi AI): Your conversation messages are sent to Google Gemini to generate responses. Conversation history is stored in our database to maintain context.
- AI Meal Scan: Photos you submit for food identification are processed by the AI service to estimate nutritional content. Images are processed in real-time and are not permanently stored by the AI service.
- Voice Logging: Audio input is converted to text locally or through the device’s speech recognition. The resulting text (not audio) is processed for food logging.
- AI Workout Workshop: Your fitness profile data (goals, experience level) may be used to generate personalized workout recommendations.
We do not use your health data to train AI models. AI processing is performed solely to provide you with the requested feature functionality.
8. Data Retention
We retain your personal data for as long as your account is active or as needed to provide you the Service. Specifically:
- Account Data: Retained until you request account deletion.
- Health & Fitness Logs: Retained until you request deletion or delete individual entries.
- Session Data: Authentication sessions expire after 7 days of inactivity.
- Guest Accounts: Guest demo data is automatically deleted after 24 hours.
- AI Conversations: Retained until you clear your conversation history or delete your account.
When you request data deletion, we will remove your personal data within 30 days, except where we are legally required to retain it.
9. Your Rights & Choices
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you (use the “Download My Data” feature in Settings).
- Correction: Update or correct inaccurate personal data through your Profile settings.
- Deletion: Request deletion of your personal data (use the “Delete My Data” feature in Settings, or contact us directly).
- Portability: Receive your data in a structured, commonly used format.
- Restriction: Request that we limit our processing of your personal data.
- Objection: Object to our processing of your personal data.
- Withdraw Consent: Where processing is based on consent, you can withdraw it at any time.
California Residents (CCPA)
If you are a California resident, you have the right to: know what personal information is collected, request deletion of your personal information, opt out of the sale of personal information (we do not sell personal information), and not be discriminated against for exercising your privacy rights.
European Residents (GDPR)
If you are located in the European Economic Area, our legal basis for collecting and using your personal data is your consent and the performance of the contract (providing the Service). You have the right to lodge a complaint with your local data protection authority.
10. Children’s Privacy
The Service is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will promptly delete it. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.
For users between 13 and 17, we recommend parental guidance when using health and fitness tracking features. Our educational content is age-appropriate and categorized by age group (Kids, Teens, Adults, Seniors) so that suitable content can be displayed.
11. Third-Party Links & Services
The Service may contain links to third-party websites or services that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policy of every site you visit.
12. International Data Transfers
Your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ from those of your jurisdiction. If you are located outside the United States and choose to provide information to us, your data will be transferred to and processed in the United States. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy within the app and updating the “Last Updated” date. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted.
For material changes that affect how we process your health data, we will provide prominent notice within the app and, where required by law, seek your consent.
14. Contact Us
If you have any questions about this Privacy Policy, your data, or your rights, please contact us:
- Email: privacy@vita247.us
- Website: vita247.us
- Data Protection Inquiries: privacy@vita247.us
We will respond to all privacy-related inquiries within 30 days.