OutBite

OutBite

Legal

Privacy Policy

Last updated: June 17, 2026

This Privacy Policy describes how OutBite ("we," "us," or "our") collects, uses, discloses, and protects information when you use the OutBite mobile application, our website at outbite.app, and related services (collectively, the "Service").

By using the Service, you agree to the collection and use of information as described in this Privacy Policy. If you do not agree, please do not use the Service.

Interpretation and Definitions

Interpretation

Words with initial capital letters have the meanings defined below. These definitions apply whether the terms appear in singular or plural.

Definitions

For the purposes of this Privacy Policy:

  • Account means a unique profile created when you sign in to OutBite with Apple Sign-In or Google Sign-In.
  • Affiliate means an entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest, or other securities entitled to vote for the election of directors or other managing authority.
  • Company (referred to as "the Company," "We," "Us," or "Our") means Brunoalm Technologies, Hernán Malo Gonzales, Cuenca, Azuay 010203, Ecuador.
  • Device means any device that can access the Service, such as a mobile phone or tablet.
  • Personal Data means any information that relates to an identified or identifiable individual.
  • Service means the OutBite mobile application and website.
  • Service Providers means third-party companies or individuals we engage to facilitate the Service, provide the Service on our behalf, perform Service-related functions, or help us analyze how the Service is used.
  • Usage Data means data collected automatically when you use the Service, such as app events, diagnostics, and interaction data.
  • You means the individual accessing or using the Service, or the company or other legal entity on behalf of which such individual is accessing or using the Service.

Information We Collect

We collect information to help you discover restaurant meals that fit your goals. We do not sell your Personal Data. We do not use your data for cross-app advertising, and we do not request the iOS App Tracking Transparency (ATT) prompt because we do not track you across other companies' apps or websites.

1. Account Information (when you sign in)

If you choose to sign in with Apple Sign-In or Google Sign-In, we receive:

  • A unique account identifier from our authentication provider (Supabase Auth)
  • Your email address, if your sign-in provider shares it with us
  • Your display name, if your sign-in provider shares it with us (for example, your Apple ID name on first sign-in, or your Google profile name)

We use this information to operate your Account, sync your preferences across devices, restore purchases, and respond to support requests. We do not collect or store passwords — authentication is handled by Apple, Google, and our auth provider.

You may use limited parts of the Service without signing in. Some preferences may be stored locally on your Device until you sign in.

2. Health and Fitness Preferences

OutBite is not a medical device and does not access Apple Health, Google Fit, or other clinical health records. When you set up the app, we collect preferences you choose, such as:

  • Your selected goal (for example, lose weight, build muscle, or eat better)
  • An estimated daily calorie target (TDEE preset) used to personalize recommendations
  • Whether you have completed onboarding

If you are signed in, these preferences are stored in your Account on our servers so they can sync across sessions. Some additional onboarding choices (such as dining frequency or order priorities) may be stored only on your Device and are not uploaded to our servers.

Saved meals and similar in-app selections are stored locally on your Device unless otherwise stated in the app.

3. Location Information

OutBite uses your location only while the app is in use ("When In Use" permission). We do not request background location access.

We use location to:

  • Find restaurants near you
  • Rank menu recommendations by distance
  • Improve catalog quality when you voluntarily submit an issue report while signed in

How location is handled:

  • When you browse nearby recommendations, your coordinates are transmitted to our servers to run location-based queries. We do not maintain a persistent location history tied to your profile for this purpose.
  • If you manually select a U.S. city instead of GPS, we use that city selection rather than precise coordinates where applicable.
  • If you submit a catalog issue report while signed in, we may store the approximate location, city, and state associated with that report to help investigate the issue.
  • Some aggregated catalog signals may use a coarse geographic bucket (such as a U.S. state code) rather than precise coordinates.

We do not sell or share your location with restaurants, delivery platforms, or advertisers.

4. Usage Data and Analytics

We use PostHog for first-party product analytics to understand how the Service is used and to improve it. This may include:

  • App screens and features viewed
  • Onboarding and subscription funnel events
  • Error and performance diagnostics (with message content limited and scrubbed of sensitive details)
  • Device type, operating system, and app version

We configure analytics to avoid collecting advertising identifiers (such as IDFA), and we do not use analytics for cross-app tracking. When you are signed in, we may associate analytics with your Account identifier to understand product usage — not to build an advertising profile.

For more information, see PostHog's Privacy Policy.

5. Subscription and Purchase Information

OutBite offers optional premium subscriptions managed through the Apple App Store or Google Play Store. We use Superwall to present paywalls and verify subscription status.

  • Payment card and billing details are processed entirely by Apple or Google. We never receive or store your full payment credentials.
  • We may receive subscription status, product identifiers, and purchase/restoration events needed to unlock premium features.
  • Superwall may receive your Account identifier and subscription state. See Superwall's Privacy Policy.

6. Catalog Reports and Feedback

If you submit a report about incorrect menu data or another catalog issue while signed in, we collect the information you provide (such as description, chain, item identifiers, and contextual metadata) along with approximate location details described above. This helps us maintain accurate restaurant data.

7. Website Usage

When you visit outbite.app, our hosting infrastructure may automatically collect standard server logs (such as IP address, browser type, pages visited, and timestamps) for security and reliability. The marketing website does not use advertising cookies.

How We Use Your Information

We use Personal Data for the following purposes:

  • Provide, operate, maintain, and improve the Service
  • Personalize restaurant and meal recommendations based on your goals and location
  • Authenticate your Account and sync your preferences
  • Manage subscriptions, trials, and purchase restoration
  • Respond to support requests and catalog reports
  • Monitor usage, diagnose errors, and protect the security of the Service
  • Comply with legal obligations and enforce our Terms of Service

We do not use your information to:

  • Sell Personal Data to data brokers
  • Serve third-party advertising inside OutBite
  • Track you across other companies' apps or websites for advertising

How We Share Your Information

We may share information only in the following situations:

  • Service Providers: With vendors that help us operate the Service, including Supabase (authentication and database hosting), PostHog (analytics), and Superwall (subscription management). These providers process data on our behalf under contractual obligations.
  • Sign-in providers: Apple and Google process your sign-in according to their own privacy policies when you choose those login methods.
  • App stores: Apple and Google process payments and subscription management according to their policies.
  • Maps providers: On Android, map rendering may use Google Maps services subject to Google's Privacy Policy. On iOS, Apple Maps may be used through the device's map framework.
  • Delivery links: If you choose to open Uber Eats, DoorDash, or another third-party ordering service, you leave OutBite and that third party's privacy policy applies.
  • Legal requirements: If required by law, regulation, legal process, or enforceable governmental request.
  • Business transfers: In connection with a merger, acquisition, financing, or sale of assets, subject to continued protection of Personal Data.
  • With your consent: For any other purpose with your consent.

We do not share Personal Data with restaurant chains for marketing purposes, and OutBite is not affiliated with, endorsed by, or sponsored by any restaurant chain. Restaurant and menu item names are used only for identification. We are not responsible for restaurant operations, food quality, safety, allergens, pricing, or fulfillment.

Nutrition and Location Data Sources

OutBite displays nutrition information compiled from official restaurant disclosures (PDFs and websites), consistent with U.S. menu labeling requirements where applicable. Store location data includes contributions from OpenStreetMap (ODbL license), Overture Maps, and official store locators.

Attribution: OpenStreetMap copyright.

Health Information Disclaimer

OutBite provides general nutritional information for informational and educational purposes only. It is not medical advice, diagnosis, or treatment, and it is not a substitute for advice from a qualified healthcare professional or registered dietitian. Always verify items, allergens, and nutrition values with the restaurant before ordering.

Data Retention

  • Account data: Retained while your Account is active and for a reasonable period afterward to comply with legal obligations, resolve disputes, and enforce our agreements.
  • Analytics data: Retained in anonymized or pseudonymized form according to PostHog's retention settings (typically up to one year unless a shorter period applies).
  • Location for recommendations: Not stored as a standing location profile; transmitted only to process your request.
  • Catalog reports: Retained as long as needed to investigate and improve data quality.
  • Local Device data: Remains on your Device until you delete the app or clear app data.

International Data Transfers

Your information may be processed in countries other than your own, including the United States and countries where our Service Providers operate. We take reasonable steps to ensure that Personal Data receives an adequate level of protection consistent with this Privacy Policy and applicable law.

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on appropriate safeguards (such as Standard Contractual Clauses where applicable) when transferring Personal Data internationally.

Your Privacy Rights

Depending on where you live, you may have the right to:

  • Access the Personal Data we hold about you
  • Correct inaccurate Personal Data
  • Request deletion of your Personal Data
  • Object to or restrict certain processing
  • Withdraw consent where processing is based on consent
  • Data portability, where applicable
  • Lodge a complaint with a supervisory authority

Account deletion

You may request deletion of your Account and associated Personal Data by emailing [email protected] from the email address linked to your Account. We will verify your request and respond within a reasonable period, typically within 30 days, unless we must retain certain information for legal, security, or fraud-prevention reasons.

Signing out of the app does not by itself delete your Account.

California residents (CCPA/CPRA)

We do not sell or share Personal Data for cross-context behavioral advertising as defined under California law. California residents may contact [email protected] to exercise applicable rights.

Security

We use commercially reasonable administrative, technical, and organizational measures designed to protect Personal Data. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

Children's Privacy

The Service is not directed to children under 13, and we do not knowingly collect Personal Data from children under 13. If you are a parent or guardian and believe your child has provided us Personal Data, please contact [email protected]. If we learn that we collected Personal Data from a child under 13 without verified parental consent, we will delete it.

The OutBite app requires users to be at least 18 years old under our Terms of Service.

Links to Other Websites

The Service may contain links to third-party websites or services (including restaurant ordering platforms and open-data attribution pages). We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and update the "Last updated" date. If we make material changes, we will provide additional notice where required (such as an in-app notice or email) before the changes take effect.

Your continued use of the Service after the effective date of the revised Privacy Policy constitutes acceptance of the changes.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, contact us:

For general support: [email protected]