Privacy Policy

Last updated: May 9, 2026

BodyScan AI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website (collectively, the "Service"). Please read this policy carefully. If you do not agree with the terms, please discontinue use of the Service.

1. Information We Collect

a. Information You Provide

When you create an account or use the Service, we may collect:

  • Account Information: Email address, password (stored as a secure hash), display name.
  • Profile Information: Date of birth, height, weight, and biological sex. This data is used to provide accurate body composition estimates and population comparisons.
  • Photos: Images you submit for body composition analysis. Photos are transmitted securely to our AI processing service to generate your metrics.
  • Communications: Messages you send to our support team.

b. Information Collected Automatically

When you use the Service, we automatically collect certain information:

  • Usage Data: Features accessed, scan frequency, session duration, and in-app navigation patterns.
  • Device Information: Device model, operating system version, unique device identifiers, and app version.
  • Log Data: Crash reports, error logs, and performance data.

c. Third-Party Sign-In

If you sign in using Apple Sign-In or Google Sign-In, we receive limited profile information (such as your name and email) as permitted by those providers. We do not receive or store your Apple or Google passwords.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and improve the Service, including generating your body composition analysis results.
  • Personalize your experience by tailoring metric comparisons to your age, gender, and body profile.
  • Store your scan history and progress data so you can track changes over time.
  • Process subscription payments through Apple App Store.
  • Send you important service-related communications (e.g., account confirmation, security alerts).
  • Monitor and analyze usage trends to improve app performance and features.
  • Detect, prevent, and address fraud, abuse, or security incidents.
  • Comply with legal obligations.

3. How We Handle Your Photos

Photos are processed by AI and are not stored for advertising purposes. Your submitted photos are transmitted over an encrypted connection to our AI analysis provider, used solely to generate your body composition metrics, and are not shared with advertisers or used to train advertising models.

Specifically:

  • Photos are sent to Google's Gemini AI API over a secure (TLS) connection for analysis.
  • Photos may be stored in Firebase Storage associated with your account to enable you to review past scan results.
  • Photos are not sold, licensed, or disclosed to third parties for commercial purposes.
  • You may delete your account and all associated data at any time (see Section 7).

4. Sharing of Information

We do not sell or rent your personal information to third parties. We may share information in the following limited circumstances:

  • Service Providers: We use third-party providers to operate the Service, including Google Firebase (database, authentication, analytics, storage) and Google AI (Gemini API for image analysis). These providers process data on our behalf under contractual obligations to protect your data.
  • Legal Requirements: We may disclose your information if required by law, court order, or government authority, or to protect the rights, property, or safety of BodyScan AI, our users, or the public.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your data is transferred and becomes subject to a different privacy policy.
  • With Your Consent: We may share your information for any other purpose with your explicit consent.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. We retain usage logs and analytics data for up to 24 months. When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law or legitimate business purposes (e.g., fraud prevention records).

6. Health Data Disclosure

BodyScan AI collects and processes health-related information, including estimated body fat percentage, body weight, body mass index (BMI), and related biometric estimates. This information is considered sensitive health data.

  • Health data is used solely to provide your scan results and track your personal fitness progress.
  • Health data is not sold to insurers, employers, marketers, or data brokers.
  • Results are estimates and are not medical diagnoses. BodyScan AI is not a medical device and is not intended to diagnose, treat, cure, or prevent any medical condition.

7. Your Rights & Choices

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data. You can delete your account directly in the app via Profile → Delete Account, or by emailing support@bodyscanai.app.
  • Portability: Request a machine-readable export of your data.
  • Opt-Out of Analytics: You may limit ad tracking through your device's privacy settings.

To exercise any of these rights, contact us at support@bodyscanai.app. We will respond to verified requests within 30 days.

8. Data Security

We implement industry-standard security measures to protect your information, including:

  • TLS/HTTPS encryption for all data transmitted between your device and our servers.
  • Firebase security rules restricting access to your data to your authenticated account only.
  • Passwords are never stored in plaintext; authentication is managed by Firebase Authentication.
  • Regular security reviews and dependency updates.

While we take reasonable precautions, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

9. Children's Privacy

The Service is not directed to children under 13 years of age (or 16 in certain jurisdictions). We do not knowingly collect personal information from children under the applicable age threshold. If you believe we have inadvertently collected such information, please contact us at support@bodyscanai.app and we will promptly delete it.

10. International Data Transfers

Your information may be transferred to and processed in countries other than the country in which you reside (including the United States), where data protection laws may differ from those in your country. By using the Service, you consent to this transfer. We take steps to ensure that your data receives an adequate level of protection wherever it is processed.

11. Third-Party Services

The Service integrates with the following third-party services, each governed by their own privacy policies:

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date above and, where appropriate, by sending a notification through the app or to your registered email address. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

BodyScan AI
Email: support@bodyscanai.app
Website: https://bodyscanai.app

Terms of ServiceSupport← Back to Home