Privacy policy

The short version: Weigh has no servers, no analytics, and no account. The only data that ever leaves your phone is a meal photo, and only if you opt in.

What Weigh collects

Nothing. Weigh has no backend, no analytics, no crash reporting, and no advertising SDKs. We do not run any servers and we receive no data from the app.

What Weigh stores

Everything you log — weight entries, period dates, notes, meal entries, settings — is stored locally on your iPhone. If you grant Apple Health permission, weight entries are also written to Apple Health, where they are governed by Apple's own iCloud Health sync settings.

Meal photo logging (optional, opt-in)

What we send. If you enable the meal-photo feature by adding an API key in Settings → AI, then tap to send a meal photo, the app sends:

• the meal photo you just selected,
• a short instruction prompt asking for a calorie estimate (no personal information inside),
• your API key, only to authenticate the request with the provider you chose.

What we do NOT send. Your weight, name, age, gender, cycle, sleep, workouts, calendar events, location, other photos, and any device identifier are never included in the request.

Who it is sent to. Exactly one of the three providers you set up:

• Google LLC (Gemini API) — see Google AI Studio terms,
• OpenAI, L.L.C. (OpenAI API) — see OpenAI privacy policy,
• Anthropic, PBC (Claude API) — see Anthropic privacy policy.

The request goes from your device directly to the provider — Weigh runs no servers and does not see, log, or proxy any part of the exchange. Each provider's own privacy policy and data-retention practices apply once the request reaches them.

How permission is obtained. The first time you tap to send a photo to a given provider, the app shows a disclosure screen describing exactly what is sent and to whom (a copy of the bullet points above). Sending only happens after you tap Allow & send. You can revoke this consent at any time in Settings → AI photo logging → Reset photo consent; the app will then re-show the disclosure screen the next time you send a photo.

Storage. Your API key is stored in your iPhone's Keychain. It is sent only to the provider it belongs to, never to Weigh. The dish name, calorie estimate, and a 200×200 thumbnail returned by the provider are stored locally alongside your other meal entries. They never leave your device.

If you do not opt in. The app makes no network requests of any kind beyond Apple's own HealthKit / EventKit on-device APIs. No data leaves the device.

Permissions Weigh asks for

Apple Health (read + write): Weigh reads weight history, body mass, sleep, workouts, steps, and menstrual flow data to build your trend chart and cycle context. It writes new weight entries you log. You can revoke individual data types at any time in Settings → Privacy & Security → Health → Weigh.

Calendars (read, optional): If you grant access, upcoming events appear alongside your weigh-ins as context. Calendar data is read only and never leaves the device. Denying this permission only hides the "Coming up" card.

Camera and Photos (optional): Used only when you tap "Take a photo" in the Food tab. Photos are passed to the AI provider you've chosen for the single estimate call described above and are not stored anywhere outside your phone.

Children

Weigh is not directed at children under 13. The app has no sign-in, no chat, and no user-generated public content.

Changes

If this policy ever changes, the updated version will be posted here. Material changes will also be flagged inside the app.

Contact

Questions? garima.ggoyal@gmail.com