Privacy Policy

Effective date: March 2, 2026

Protein Pricer ("the App") is operated by Hira Kashta, LLC ("we", "us", "our"). This Privacy Policy explains what information we collect, how we use it, and your choices.

1. Information We Collect

Information you provide:

• Account information — If you create an account, we collect your email address and, if you use Apple Sign In, the name you choose to share. Account creation is optional; the App is fully functional without one.
• Scan data — When you save a scan, the product barcode, product name, price, store name, and calculated values are stored locally on your device and uploaded to our shared database. The upload happens automatically in the background to contribute to the community pricing database.
• Notes — Any notes you add to a scan are stored locally on your device only. Notes are never uploaded to our servers or shared with other users.
• Location — If you enable location for a scan, GPS coordinates are attached to that scan. Location is always optional and can be toggled per scan.

Information collected automatically:

• Device identifier — We generate an anonymous device-level identifier for rate limiting and associating your scans in the shared database. This identifier is a random UUID and is not linked to your device's hardware ID, advertising ID, or any other persistent identifier.
• Crash and error logs — We may collect anonymous error logs to improve app stability. These do not contain personal information.

Information we do NOT collect:

• We do not collect your name (unless you provide it via Apple Sign In).
• We do not collect your device's hardware ID or advertising ID.
• We do not track your browsing activity or app usage patterns.
• We do not sell, rent, or share your personal information with third parties for advertising purposes.

2. How We Use Your Information

• To provide the service — Calculating protein value, saving your scans, and displaying community pricing data.
• To maintain the shared database — Scan data you upload (excluding notes) becomes part of a crowd-sourced pricing database visible to all users. This data is associated with your anonymous device identifier, not your name or email.
• To authenticate you — If you create an account, your email is used for sign-in, password reset, and email confirmation.
• To prevent abuse — We use rate limiting (100 scans per day per device) to protect the shared database.

3. Data Storage and Security

Your scan history is stored locally on your device using AsyncStorage. A copy of scan data (excluding notes) is uploaded to our cloud database hosted on Supabase (which uses Amazon Web Services infrastructure). Data is transmitted over HTTPS and protected by row-level security policies at the database level.

We do not store passwords in plain text. Authentication is handled by Supabase Auth, which uses industry-standard practices including bcrypt hashing and JWT tokens.

4. Third-Party Services

The App uses the following third-party services:

• Open Food Facts — A free, open, collaborative food database. When you scan a barcode, we query Open Food Facts to retrieve product nutrition data. Their privacy policy is available at openfoodfacts.org/privacy.
• Supabase — Cloud database and authentication provider. Their privacy policy is available at supabase.com/privacy.
• Apple Sign In — If you choose to sign in with Apple, Apple's privacy policy applies to that authentication flow.

We do not use any advertising SDKs, analytics trackers, or data brokers.

5. Community Data and Your Contributions

When you save a scan, the pricing data (product name, barcode, price, store, calculated values) is uploaded to our shared database and becomes visible to other users through the Explore tab. This data helps the community compare prices across stores. Your personal notes are never included in community data.

Community data is associated with an anonymous identifier. Other users cannot see your email, name, or account details.

6. Your Choices and Rights

• Use without an account — The App works fully without creating an account. You can scan, calculate, and save locally without providing any personal information.
• Delete your data — You can delete individual scans from your Saved tab. If you have an account, you can delete your entire account and all associated cloud data from the Account screen in the App.
• Location — Location is always optional and can be toggled on or off for each scan.
• Contact us — You can request information about your data or request deletion by emailing support@proteinpricer.com.

7. Children's Privacy

The App is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us at support@proteinpricer.com and we will delete it promptly.

8. Data Retention

Local scan data is stored on your device until you delete it. Cloud data associated with your account is retained until you delete your account. If you delete your account, all associated scan data is permanently deleted from our servers. Anonymous community contributions (scans with no associated account) may be retained indefinitely to maintain the integrity of the shared pricing database.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The effective date at the top of this page will be updated accordingly. We encourage you to review this page periodically. Continued use of the App after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy, please contact us:

Hira Kashta, LLC
Email: support@proteinpricer.com