Last updated: December 23, 2025
FoodLoop – Health System takes the protection of personal data seriously and processes personal data in accordance with the General Data Protection Regulation (GDPR).
We collect and process personal data only to the extent necessary to provide and improve our services. This may include account information, usage data, device data, and user-provided health-related inputs.
Health-related data, including fitness, lifestyle, and (if enabled) menstrual cycle data, is treated as sensitive personal data in accordance with Article 9 GDPR and is processed only with explicit user consent.
FoodLoop does not sell personal data to third parties. Data may be processed by trusted service providers solely for the purpose of operating and improving the platform.
Users have the right to access, correct, delete, or restrict the processing of their personal data at any time. Requests can be submitted via email.
You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and access to that data.
You have the right to obtain the rectification of inaccurate personal data and to have incomplete data completed.
You have the right to request deletion of your personal data. We will permanently remove it from our systems within 30 days.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
You have the right to obtain restriction of processing of your personal data under certain circumstances.
You have the right to object to processing of your personal data on grounds relating to your particular situation.
Appropriate technical and organizational security measures are implemented to protect user data against unauthorized access, loss, or misuse. This includes encryption, access controls, and regular security audits.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. When data is no longer needed, it is securely deleted.
FoodLoop may integrate with third-party services such as Apple Health, WHOOP, Garmin, and Oura to collect health and fitness data. Data sharing with these services requires explicit user consent.
We carefully select service providers and require them to comply with GDPR and maintain appropriate security measures.
FoodLoop uses cookies and similar technologies to improve user experience, analyze usage patterns, and provide personalized recommendations. You can manage cookie preferences through your browser settings.
If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.
FoodLoop is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will delete it promptly.
We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the Service. Continued use after changes constitutes acceptance of the updated policy.
If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:
Email: [email protected]
You have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your habitual residence, place of work, or place of the alleged infringement if you believe that the processing of your personal data violates GDPR.