Privacy Policy

Last updated: 7 June 2026

Bodyproof is a private, on-device food-and-response journal. In short: your data stays on your device, and the developer does not collect, transmit, sell, or share it.

Data the app stores

Everything you create in Bodyproof is stored only in the app’s private storage on your device:

The app has no account, no cloud sync, no analytics, no advertising, and no third-party trackers. It works fully offline.

Permissions

Nutrition-label scanning (OCR)

Label scanning runs on your device using Google ML Kit Text Recognition. The text-recognition model is downloaded once via Google Play Services; your images and the recognized text are processed locally and are not sent by this app to the developer or any server. Google’s delivery of the model is governed by Google Play Services’ own terms and privacy policy.

Backup and restore

You can export your data to a single backup file at a location you choose, and import one you select. Exports are encrypted with a passphrase you set (AES-256) — without that passphrase the backup cannot be opened, and it cannot be recovered if lost. These files are under your control; the developer never accesses them.

Crash reporting (optional, off by default)

Bodyproof can optionally send anonymous crash reports via Google Firebase Crashlytics to help fix bugs. This is off by default and only active if you turn it on in Settings → Diagnostics. When enabled, reports may include diagnostic information such as device model, OS version, and a stack trace. They do not include your meals, photos, notes, or health readings. You can turn it off at any time; with it off, nothing is sent.

Website analytics

This policy concerns the Bodyproof app, which contains no analytics. The marketing website (bodyproof.mbsoftsystems.com) uses Cloudflare Web Analytics — a privacy-friendly, cookieless tool that reports aggregate visits (such as page views and referrers) without cookies, fingerprinting, or personal data.

Data retention and deletion

Your data remains on your device until you delete individual entries or uninstall the app. Uninstalling the app removes its data. You may also export a backup before uninstalling.

Security

Your data is encrypted at rest on your device: the database (meals, macros, glucose, well-being and other readings) uses SQLCipher (AES-256), and its key is generated on-device and protected by the Android Keystore, so it never leaves your phone. Photos are kept in the app’s private storage. As with any personal health information, also protect your device with a lock screen and system encryption.

Children

Bodyproof is not directed to children under 13 and does not knowingly collect data from them.

Health disclaimer

Bodyproof is a personal tracking and educational tool. It is not a medical device and does not provide medical advice, diagnosis, or treatment. Do not use it to make medical decisions; consult a qualified healthcare professional.

Changes to this policy

We may update this policy from time to time. Material changes will be reflected by the “Last updated” date above.

Contact

Questions about this policy: support@mbsoftsystems.com