Our Commitment to Your Privacy

At Getter Club, your privacy isn't just a policy, it's our foundation. We believe your personal journey is yours alone.

Effective Date: December 5, 2025

1. Our Philosophy

Getter was created with a simple principle: your personal wellness journey should be private, respectful, and free of hidden agendas. We don't ask for traditional accounts. We don't sell your data. We don't show ads. Getter works for you — and only you.

2. What We Handle (and Why)

Profile & Goal Information (Local)

When you use Getter, you enter personal details like:

  • Age, Gender, Height, Weight
  • Goal Weight and Activity Level
  • Auto Backup Preferences

This data stays on your device and powers personalized features like calorie targets and progress tracking.

Anonymous Device Identifier

To support optional cloud backup, Getter generates a random device identifier stored in your iCloud Keychain and synced across your Apple devices. It is not linked to your identity and is used solely for backup association.

Meal Entries & AI Analysis

Your meal entries are stored on your device for logging and calorie tracking.

  • Meal text and, when needed for meal planning, relevant profile info are securely sent to our Cloudflare AI gateway to provide nutrition insights against NHS Eatwell guidelines.
  • A subset of anonymized meal texts may be temporarily stored (up to 100,000 entries) to help improve analysis quality.

Data is handled without collecting personal identifiers or building profiles beyond what is needed to power your requested insights.

Analytics (Anonymous)

We use PostHog, a privacy-respecting analytics tool, to understand broad patterns like which features people use most or where they drop off. This includes:

  • App version, device type, OS
  • Feature usage patterns

We collect anonymized usage patterns to improve the app experience without linking them to personal details.

Error Reports (Anonymous)

We use Sentry to track bugs and crashes. Reports contain:

  • Device model, OS, app version
  • Error type and technical context

We minimize what we collect — no meal data, profile info, or user-generated content is included.

3. Backup: Encrypted, Optional, Yours

If you choose to enable backups:

  • Your data is end-to-end encrypted on your device using AES-256-GCM.
  • It is securely stored in Cloudflare R2, unreadable by us or anyone else.
  • Your encryption key stays in your device's Keychain and syncs via iCloud if enabled.
  • Backups are restored automatically if the app is reinstalled on the same device and the key is still present in iCloud Keychain.

Retention: If backups are unused for over a year, they are automatically deleted to maintain security and reduce unused storage.

4. How We Use Data

Purpose
Data Used
Where It Stays
Calorie & Progress Tracking
Profile info, goals, and meals
On your device
AI Nutrition Insights
Meal descriptions (text only)
Sent securely to Cloudflare AI
App Improvement
Anonymous usage patterns (PostHog)
Aggregated and anonymized
Error Detection
Anonymous crash reports (Sentry)
Aggregated and anonymized
Cloud Backup (Optional)
Encrypted user data, UUID
Secure Cloudflare R2 (you hold the key)

5. Data Sharing

We do not sell, rent, or share your personal data with marketers, advertisers, or third parties.

We only use trusted infrastructure providers:

  • Cloudflare (AI, backup & API): Hosts secure encrypted backups and AI gateway for meals. All backup data is encrypted by you.
  • PostHog: Helps us understand how the app is used — no personal data or precise location.
  • Sentry: Reports app crashes and bugs anonymously.

Each provider has its own privacy protections and data security commitments.

6. Your Control

Delete App

If you delete the Getter app:

  • All your local data (profile, meals, progress) is deleted from the device.
  • Your encrypted backup remains on our secure server, but cannot be accessed without the decryption key stored in your iCloud Keychain.

We have no way to read or use this backup.

Disable Backup

You can disable cloud backups at any time inside the app:

  • This stops further syncing of your encrypted data.
  • Your existing backup remains on the server, encrypted, and only accessible from your current device if the decryption key is still present.

Delete Backup

To permanently lose access to your encrypted backup:

  • Clear your iCloud Keychain from your device settings.
  • This removes the encryption key required to restore your data.

Even though the backup still exists temporarily, we have no way to read it. It will eventually be automatically deleted after a year of inactivity.

Auto-Restore (If Reinstalling)

If you reinstall Getter on the same device (or another device with iCloud Keychain sync enabled):

  • The app will detect your existing anonymous UUID.
  • It will automatically retrieve and decrypt your backup using the key stored in iCloud Keychain.
  • No login or setup is needed.

If the key is missing (e.g., if you cleared iCloud Keychain), the backup cannot be decrypted or restored — by you or us.

7. No Cross-App Tracking

We don't use tracking pixels, advertising SDKs, or fingerprinting. No behavior from other apps or services is ever accessed or stored.

8. Children's Privacy

Getter is intended for users aged 18 or older. We do not knowingly collect data from children.

9. Policy Updates

This policy may evolve as Getter grows. We'll update the "Effective Date" and post any significant changes in the app or on our website.

10. Contact Us

We're a small, independent team focused on building a better experience. If you have questions, reach out directly:

Email: [email protected]
Website: getter.club

Return to Getter Club Home