Katori Privacy Policy
Katori ("Katori", "we", "us") makes a nutrition tracker. This policy explains what we collect when you use the Katori mobile app and the Katori website, why we collect it, where it goes, and the rights you have over it. We wrote it to be read, not skimmed past.
The short version: we collect what we need to run a nutrition tracker, your meal photos are analyzed and then discarded, we never sell your data, and we never show you ads.
1. What we collect
Account data. Your email address, used to create and secure your account with one-time login codes. We do not collect or store passwords.
Nutrition and meal data. The meals you log: dish names, portions, calories, macronutrients, the dates and times of entries, your streaks and goals, and any corrections you make to what our AI suggested. Because this describes your eating patterns, it can be considered health-related data. By creating an account and logging meals, you explicitly consent to us processing this data to provide the service. You can delete it at any time (section 7).
Meal photos. When you photograph your food, the image is sent securely to our servers and passed to our AI provider to identify the dishes and estimate nutrition. The photo is processed and then discarded: we do not store your meal photos after analysis completes. Only the result (the dish names, portions, and macros you confirm) is saved to your log. Our AI processing identifies food only. We do not perform facial recognition, and we do not extract or store biometric information of any kind. Please avoid including people in your meal photos; if a photo includes someone, it is still processed only to identify food and is then discarded.
Barcode scans. When you scan a packaged-food barcode, we look the code up in a product database. The barcode number is not tied to your identity in the lookup.
Subscription data. If you subscribe to Katori Pro or Pro Max, the purchase is processed by Apple. We receive subscription status (active, expired, plan type) through our subscription manager, RevenueCat, along with a pseudonymous identifier used to deliver your entitlement. We never see your payment card details.
Device and diagnostic data. Basic technical information such as app version, device model, operating system version, language, and crash or error reports, used to keep the app working.
Website data. If you join the waitlist or contact us through the website, we collect the email you submit. Our website analytics, if any, are cookieless and aggregate: we see page-level statistics, not profiles of you.
What we do not collect. No advertising identifiers, no location tracking, no contact lists, no background data collection, no data from other apps, and no sale or rental of your data to anyone, ever.
2. How we use your data
We use your data to: create and secure your account; analyze your meal photos and barcode scans; keep your log, streaks, and goals working; deliver your subscription; send essential transactional emails (login codes, account notices); respond to support requests; and keep the app stable and secure.
Improving food recognition. Katori gets more accurate over time through corrections, not through your photos. When the AI suggests a dish and you confirm or correct it, we keep that structured signal (what was suggested, what you chose) and use it, in de-identified and aggregated form, to improve our dish database and recognition quality. This processing does not involve storing your images and cannot be traced back to you in the improvement datasets.
What we never do. We do not sell your personal information. We do not share it for advertising. We do not use your data to train third-party AI models: our AI provider processes your photos to answer our requests and, per its API terms, does not use that data to train its models.
3. The AI processing, plainly
Food recognition is automated. When you submit a photo, it is transmitted to our AI provider through their API, which returns dish identifications and nutrition estimates. Estimates are exactly that: estimates. You always see what the AI suggested and can confirm or correct it before it enters your log; nothing is logged without your confirmation. No automated decision we make produces legal or similarly significant effects about you.
4. Who processes your data (subprocessors)
We use a small set of service providers, each only for what is listed:
- Supabase: database, authentication, secure functions (account, meal logs, corrections)
- Anthropic: AI food recognition via API (meal photos, transient, no training use)
- Resend: transactional email delivery (email address)
- RevenueCat: subscription management (subscription status, pseudonymous identifier)
- Apple: app distribution and payment processing under Apple's terms
- Vercel: website hosting (standard server logs, waitlist emails)
Each provider is bound by its own contractual and security obligations. We do not authorize any of them to use your data for their own purposes.
5. Where your data lives
We are based in Canada. Our service providers process data primarily on servers in the United States. By using Katori, you understand your information is stored and processed outside your province or country, where different data-protection laws may apply. We choose providers with strong contractual safeguards, encryption in transit and at rest, and recognized security certifications.
6. How long we keep things (retention)
- Meal photos: not stored; discarded after analysis
- Account and meal data: while your account is active
- After account deletion: removed from live systems within 30 days; backups expire within 90 days
- De-identified correction data: retained for improvement; cannot identify you
- Waitlist emails: until launch plus 12 months, or until you unsubscribe
- Support emails: 24 months
7. Your rights and controls
You can, at any time:
Delete your account in the app. Settings, then Delete Account. This permanently removes your account and meal history per the retention table above. You can also email us to request deletion.
Access and export. Ask us for a copy of the personal data we hold about you, or export your data from within the app.
Correct. Fix any inaccurate account information.
Withdraw consent. Stop using the app and delete your account; for waitlist or marketing email, every message includes a one-click unsubscribe (we send marketing email only with your express consent, in line with Canada's anti-spam legislation).
We honor rights under PIPEDA (Canada), GDPR (if you are in the EU or UK: access, rectification, erasure, restriction, portability, objection, and the right to complain to your supervisory authority), and CCPA/CPRA (if you are a California resident: access, deletion, and the right to know; we do not sell or share personal information as defined by that law). To exercise any right, email infokatori1@gmail.com. We respond within 30 days and may need to verify your identity before acting.
8. Age requirement
Katori is for people 16 and older. We do not knowingly collect personal information from anyone under 16. If you believe a person under 16 has created an account, contact us at infokatori1@gmail.com and we will delete it. Calorie tracking is not appropriate for everyone; Katori includes safeguards such as minimum calorie floors and streak mechanics designed around consistency rather than restriction, and the app is not a medical device and does not provide medical advice.
9. Security
Data is encrypted in transit (TLS) and at rest. Access to production systems is restricted and authenticated. Database access is governed by row-level security so your records are only readable by your account. AI requests are made from our servers; our AI provider keys are never present in the app on your device. No system is perfectly secure, but if a breach affects your personal information, we will notify you and the relevant authorities as required by law, without unreasonable delay.
10. Changes to this policy
If we change this policy in a meaningful way, we will notify you in the app or by email before the change takes effect, and update the date at the top. Continued use after the effective date means the updated policy applies.
11. Contact
Privacy questions, requests, or complaints: infokatori1@gmail.com
If you are unsatisfied with our response, you may contact the Office of the Privacy Commissioner of Canada or your local data-protection authority.