Keeto – Privacy Policy

Last updated: 14 October 2025

This Privacy Policy explains how the Keeto mobile application (the “App”) collects, uses, and shares information when you use it on iOS or Android. The App is operated by Alexandre Grisey, a French sole proprietorship registered under SIRET number 83978643100024 and located at 7 Allée de Chartres, 33000 Bordeaux, France (“we”, “us”, or “our”). We act as the data controller for personal data processed when you use the App. By using the App, you agree to the practices described here. If you do not agree, please do not use the App.

For information about your contractual obligations while using the App, please also review our Terms of Use.

1. Information We Collect

a. Information you provide

• Profile and nutrition preferences: Details you enter during onboarding or in settings, such as name, age range, approximate birth date, gender, height, weight, activity level, dietary goals, measurement units, and daily carbohydrate targets. This information is stored on your device to personalize macro estimates and reminders.
• Lists, products, and recipes: Shopping lists you create, scanned product history, favorite items, basket contents, and AI-generated recipes. These records remain on your device unless you delete them.
• Communications: If you contact us through the in-app support form or by email, we receive your message, the email address you provide, and any attachments.
• Extra inputs for features: Optional text you provide when requesting an AI-generated recipe and any additional ingredients included in the request.

b. Information collected automatically

• Device data: The App collects limited device details provided by the operating system or Capacitor plugins, such as device model, operating system version, preferred language, and a device identifier used to ensure subscriptions and analytics work as designed.
• Usage analytics: We use Mobiqo to collect in-app events (for example, product scans, onboarding completion, premium screen views, subscription conversions, and error reports). Data sent to Mobiqo may include device identifiers, timestamps, country inferred from IP address, and in-app actions. We use this data in aggregate to improve performance and plan features.
• Purchase status: RevenueCat processes subscription transactions from Apple App Store and Google Play and shares purchase receipts, subscription status, renewal dates, and related identifiers with us. We do not receive full payment details; all billing is processed by the app stores.

c. Information from third-party sources

• Open Food Facts: When you scan a barcode or search for products, we query the Open Food Facts public database. We send the barcode or search term to retrieve nutritional data. Returned product details are stored locally for your convenience.
• App stores: Apple and Google share aggregated install data, crash reports, and purchase confirmations in accordance with their privacy policies.

2. How We Use Your Information

• Provide core functionality, including barcode scanning, macro calculations, list management, recipe generation, notifications, and interface personalization.
• Identify eligible premium features, process subscriptions, and enforce free-plan limits.
• Send non-persistent push or local notifications you opt into (for example, reminders that lists are ready for recipes) and record notification preferences.
• Respond to support requests and troubleshoot issues.
• Monitor usage, detect errors, and improve performance with aggregated analytics from Mobiqo.
• Comply with legal obligations, such as responding to lawful requests or accounting for paid subscriptions.

3. Legal Bases for Processing (EEA/UK Users)

• Performance of a contract: Operating the App, supplying requested features, and managing subscriptions.
• Legitimate interests: Securing the App, preventing misuse, collecting minimal analytics to improve user experience, and ensuring service continuity.
• Consent: Processing associated with optional features you enable, such as camera-based barcode scanning, notifications, and sending messages to support.
• Legal obligation: Retaining transaction records required by tax, accounting, or consumer protection laws.

4. How We Share Information

• Service providers: We share limited data with vendors who help us deliver the App, including RevenueCat (subscription management), Mobiqo (analytics and crash reporting), Google Cloud (backend functions that process support requests and recipe generation), and email delivery partners. These providers process data on our behalf under confidentiality agreements.
• Platform operators: Apple and Google receive transaction data, device identifiers, and diagnostic reports in accordance with the terms of their platforms.
• Open Food Facts: When you scan or search for products, the relevant barcode or query is sent to the Open Food Facts API to retrieve nutritional information. We do not control their handling of the request once transmitted.
• Sharing initiated by you: If you use the system share sheet to send a product card or recipe, the selected content is shared with recipients through your chosen app. We do not control or log what you share.
• Legal compliance: We may disclose information if required by law or to respond to valid legal requests, protect our rights, or prevent fraud or security threats.
• Business changes: In the unlikely event of a restructuring, merger, or sale of assets, relevant data may be transferred to the successor entity subject to this Policy.

We do not sell your personal data.

5. Data Storage and Retention

• On-device storage: Profile information, nutrition settings, scanned products, lists, recipes, analytics caches, and notification records are stored locally using the Ionic Storage framework. This data remains on your device and is deleted when you uninstall the App or clear the App’s storage.
• Cloud services: Support messages, analytics events, and subscription metadata are stored on secure servers operated by our vendors. We retain support correspondence for up to 24 months, analytics for as long as needed to evaluate trends (typically up to 24 months), and subscription records for the period required by applicable tax and accounting rules (usually 10 years in France).
• Backups: Vendors may maintain encrypted backups for disaster recovery in line with their policies.

6. International Data Transfers

Some of our service providers operate in countries outside the European Economic Area (EEA), including the United States (RevenueCat, Mobiqo, and Google Cloud). When we transfer personal data outside the EEA, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or equivalent mechanisms, and we ensure that recipients implement adequate security measures.

7. Data Security

We use technical and organizational measures to protect your data, including limiting the personal data we collect, encrypting network communications, and relying on vetted third-party platforms with industry-standard security. However, no application or transmission method is perfectly secure. Please keep your device and operating system up to date and use screen locks to prevent unauthorized access.

8. Your Rights and Choices

If you are located in the EEA, UK, or another jurisdiction that grants comparable rights, you may:

• Access the personal data we hold about you.
• Request correction of inaccurate or incomplete data.
• Request deletion of data, subject to legal obligations.
• Object to or request restriction of processing based on legitimate interests.
• Request a portable copy of data you provided (in a structured, commonly used format).
• Withdraw consent where processing is based on consent (for example, disabling notifications or camera access in device settings).

To exercise your rights, contact us at pro@alexandre-grisey.fr. We may require proof of identity before responding. You also have the right to lodge a complaint with your local supervisory authority, such as the Commission Nationale de l’Informatique et des Libertés (CNIL) in France.

9. Children’s Privacy

The App is not intended for children under 16 years of age, and we do not knowingly collect personal data from children under that age. If you are a parent or guardian and believe your child has provided personal data to us, please contact us so we can delete it.

10. Permissions and Device Controls

• Camera: Required for barcode scanning. Images are processed on-device, and we do not store photos.
• Notifications: Used to send reminders when you opt in. You can disable notifications in your device settings.
• Local storage: Used to store your preferences and history on the device.

11. Third-Party Links

The App may contain links to external websites or resources (for example, documentation or social media). We are not responsible for their privacy practices. Please review the policies of any third-party sites you visit.

12. Changes to this Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page and, where appropriate, notify you within the App or by other means. Your continued use of the App after changes take effect constitutes acceptance of the revised Policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact:

Alexandre Grisey
7 Allée de Chartres
33000 Bordeaux
France
Email: pro@alexandre-grisey.fr

You may also reach out to us via the in-app support feature. We strive to respond to all requests within one month.