Legal

Privacy Policy

Last updated: April 7, 2026

This Privacy Policy describes how Fillr ("we", "us", or "our") collects, uses, and shares information about you when you use our mobile application Fillr (the "App").

By using the App, you agree to the collection and use of information in accordance with this policy.

Our Data Philosophy

We built Fillr to help people understand what's in their food — not to collect data about them.

The data we collect exists for one purpose: to make the App work better for you. We use it to personalize your scan results, power your allergy alerts, and improve the quality of our ingredient database over time.

We do not build profiles on our users. We do not associate behavioral or scan data with your identity beyond what is strictly necessary to deliver the App's features. We do not sell your data. We do not use your data for advertising. We do not share it with anyone who doesn't need it to operate the App on our behalf.

If a piece of data doesn't directly help the App work better for you, we don't collect it.

1. Information We Collect

a) Information You Provide

Account Information

When you create an account, we collect:

  • Your name
  • Your email address
  • Your password (stored encrypted)

This information is used only to create and manage your account. It is not linked to your scanning behavior for any purpose beyond delivering the App's features to you.

Dietary Profile

When you set up your personal profile, we collect:

  • Allergies and intolerances you declare
  • Food sensitivities you declare
  • Ingredients you choose to avoid
  • Dietary preferences and goals (e.g. vegan, keto, high-protein)
  • Celiac mode status

This information is used solely to personalize your scan results and generate your allergy alerts. It is never used for any other purpose, never shared with advertisers, and never sent to any AI or analytics provider.

b) Information Collected Automatically

Scan Data

When you scan a product, we collect:

  • The barcode scanned
  • The product name and brand
  • The ingredients list analyzed
  • Your personalized Fillr Fit score for that product
  • Timestamp of the scan
  • Whether ingredients were served from our cache or analyzed fresh

This data is associated with your account only to power your scan history and weekly overview. In aggregate and anonymized form — stripped of any connection to your identity — it also helps us improve the quality and coverage of our ingredient knowledge database. We never analyze scan data to draw conclusions about you as an individual beyond what the App shows you directly.

Usage Data

We automatically collect certain information when you use the App:

  • Device type and operating system
  • App version
  • General usage patterns (screens visited, features used)
  • Crash reports and error logs

This data is used exclusively for app stability and performance improvements. It is not linked to your identity and is not used to build a profile of your behavior.

We do not collect your precise location. We do not access your contacts. We do not access your photos except when you explicitly use the label photo scanning feature, and even then photos are processed on-device and never stored on our servers.

c) Information from Third Parties

Product Data

We retrieve product information from Open Food Facts, a public open-source food database. We do not share your personal information with Open Food Facts.

Ingredient Analysis

When you scan a product, ingredient explanations may be generated using OpenAI's API. We send only the raw ingredient list text to OpenAI. We do not send your name, email address, allergy profile, dietary preferences, scan history, or any information that could identify you as an individual. OpenAI receives ingredient text only — nothing more.

Payment Information

Subscriptions are processed by Apple through the App Store. We do not collect or store your payment card information. RevenueCat processes subscription status on our behalf and receives only the information necessary to validate and manage your subscription.

2. How We Use Your Information

We use the information we collect for the following purposes only:

App Functionality

  • To operate the core features of the App (scanning, decoding, allergy alerts, scan history)
  • To calculate your personalized Fillr Fit score for each product
  • To maintain your scan history and weekly overview

Personalization

  • To personalize your scan results based on your allergy and dietary profile
  • To alert you when a scanned product contains ingredients that match your profile
  • To tailor ingredient descriptions to your dietary context

App Improvement

  • To improve the accuracy and coverage of our ingredient knowledge database using aggregated, anonymized scan data
  • To fix bugs and improve performance using anonymized usage and crash data

Account and Subscription Management

  • To manage your account and authenticate your identity
  • To process and manage your Fillr Premium subscription
  • To send you essential service communications

Nothing beyond the above. We do not use your data for advertising, profiling, resale, or any commercial purpose beyond operating and improving the App itself.

3. What We Do Not Do With Your Data

  • We do not sell your personal information to anyone, ever.
  • We do not share your data with advertisers or marketing platforms.
  • We do not build individual profiles linking your identity to your scanning behavior beyond what is shown to you directly in the App.
  • We do not use your allergy or dietary data for any purpose other than powering your personalized alerts and scan results.
  • We do not send any personally identifiable information to OpenAI or any AI provider.
  • We do not use your data to make automated decisions that affect you in any significant way outside the App.
  • We do not track you across other apps or websites.
  • We do not use cross-app tracking or third-party advertising SDKs.

4. How We Share Your Information

We share your information only where strictly necessary to operate the App:

Service Providers

We share the minimum necessary information with the following trusted service providers:

  • Supabase — database and authentication infrastructure. Stores your account, profile, and scan history securely.
  • OpenAI — ingredient analysis. Receives ingredient text only. Never receives any personal or identifiable information.
  • RevenueCat — subscription management. Receives only what is needed to validate and manage your subscription.
  • Apple App Store — payment processing. We never see your payment details.
  • Resend — transactional email. Used only for essential service emails (account verification, subscription notices). Never used for marketing without consent.
  • Expo / EAS — app distribution and over-the-air updates.

Each provider is bound by contractual obligations to protect your information and use it only for the specific purpose we engage them for.

Aggregated and Anonymized Data

We may use and share aggregated, anonymized data that has been stripped of all personal identifiers — for example, "carrageenan is the most commonly flagged ingredient across all scans this week." This data cannot be used to identify any individual user.

Legal Requirements

We may disclose your information if required to do so by applicable law or in response to valid legal process. We will notify you where permitted by law before making such disclosures.

Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.

5. Data Storage and Security

Your data is stored securely on Supabase infrastructure. We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

These measures include:

  • Encrypted data transmission (HTTPS)
  • Encrypted password storage
  • Row-level security on our database ensuring users can only access their own data
  • API key protection — sensitive API keys are never stored in the app binary or exposed to users
  • Regular security reviews

No method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the App's services to you.

Scan history is retained to power your history and overview features. You can delete individual scans or your entire history at any time from within the App.

If you delete your account, we will delete your personal information within 30 days, except where we are required to retain it for legal or regulatory purposes.

Aggregated and fully anonymized data derived from scans — data that cannot identify you in any way — may be retained indefinitely to improve the ingredient knowledge database.

7. Your Rights and Choices

Depending on your location, you may have the following rights:

Access

Request a copy of the personal information we hold about you.

Correction

Update or correct your information at any time through the Profile section of the App.

Deletion

Request deletion of your account and all associated personal data by emailing info@usefillr.com or using the account deletion option in App settings.

Data Portability

Request an export of your scan history and profile data in a machine-readable format.

Opt-Out of Communications

Opt out of non-essential email communications by clicking "unsubscribe" in any email or contacting us directly. Essential service communications such as account verification cannot be opted out of.

Profile Management

Update or delete your allergy and dietary profile at any time through the Profile section of the App.

8. Sensitive Health Information

Your allergy and dietary profile constitutes sensitive health-related information. We treat this with the highest level of protection:

  • It is never sold.
  • It is never shared with advertisers.
  • It is never shared with any third party except as required to deliver your personalized alerts within the App.
  • It is never sent to OpenAI or any AI provider.
  • It is never associated with your data beyond the App's core personalization features.
  • Access to this data within our internal systems is strictly limited to what is operationally necessary.

9. Children's Privacy

Fillr is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at info@usefillr.com and we will delete that information promptly.

10. International Users

Fillr is operated from Canada. If you are accessing the App from outside Canada, your information may be transferred to, stored, and processed in Canada or other countries where our service providers operate, including the United States.

By using the App, you consent to this transfer, storage, and processing.

If you are located in the European Economic Area (EEA) or United Kingdom, you have additional rights under GDPR or UK GDPR. We process your data on the following legal bases:

  • Contract performance — to provide the App's services to you
  • Legitimate interests — to improve app stability and ingredient database quality
  • Consent — for your dietary profile and health-related data

11. California Residents (CCPA)

If you are a California resident, you have the right to:

  • Know what personal information we collect about you
  • Know whether we sell or disclose your personal information
  • Opt out of the sale of your personal information
  • Request deletion of your personal information
  • Not be discriminated against for exercising your privacy rights

We do not sell personal information as defined under the CCPA.

To exercise your rights, contact us at info@usefillr.com.

12. Cookies and Tracking

The App does not use cookies. Our website at usefillr.com may use basic analytics cookies. You can control cookie settings through your browser.

We do not use third-party advertising trackers, cross-app tracking, or any advertising SDKs within the App.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

  • Sending an email to your registered address
  • Displaying a notice in the App
  • Updating the "Last updated" date at the top of this policy

Your continued use of the App after any changes constitutes your acceptance of the updated policy.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: info@usefillr.com
Website: usefillr.com