Privacy Policy
Last updated: June 2026
This Privacy Notice explains how Sejr Lund Bøyesen ("we", "us") collects, uses, and protects personal data when you use the Snap application (the "Service"). Sejr Lund Bøyesen acts as the data controller for personal data processed through the Service.
1. Data we collect
- Account data: email address, authentication credentials, and optional Google sign-in identifier.
- Profile & health inputs: body metrics (height, weight, age, sex), activity level, and calorie targets you enter for TDEE calculation.
- Meal data: photos you capture, voice corrections, AI-estimated nutrition, and timestamps.
- Usage & device data: log data, device identifiers, IP address, and language preferences.
- Subscription data: subscription status and billing period. Payment card details are handled by Paddle and are never stored by us.
2. Purposes & legal basis
- Providing the Service, calorie estimation, and history (contract performance).
- Account security, fraud prevention, and abuse detection (legitimate interests).
- Subscription management and entitlement gating (contract performance).
- Product improvement and aggregate analytics (legitimate interests).
- Customer support (contract performance / legitimate interests).
- Legal compliance (legal obligation).
3. Sharing & subprocessors
We share personal data only with the categories of recipients needed to run the Service:
- Paddle.com Market Ltd — Merchant of Record for all sales, handling payment processing, subscription billing, invoicing, tax compliance, and refunds.
- Hosting & infrastructure providers — for application hosting, database, file storage, and edge functions.
- AI processing providers — for image analysis and voice transcription used to estimate nutrition.
- Authentication providers — Google, when you choose Google sign-in.
- Authorities — where required by law.
4. International transfers
Some subprocessors may process data outside the European Economic Area. Where this happens, we rely on Standard Contractual Clauses or equivalent safeguards approved under applicable data protection law.
5. Retention
We retain account, profile, and meal data for as long as your account is active. Upon deletion of your account, personal data is deleted or anonymised within 90 days, except where retention is required by law (e.g., billing records held by Paddle).
6. Your rights (GDPR)
If you are located in the EU/EEA or UK, you have the right to access, rectify, erase, restrict, port, or object to the processing of your personal data, and to withdraw consent at any time. You may also lodge a complaint with your local supervisory authority. We will respond to verified requests within one month.
7. Security
We apply appropriate technical and organisational measures, including encryption in transit, access controls, and authenticated APIs, to protect personal data against unauthorised access, alteration, or loss.
8. Cookies
The Service uses strictly necessary cookies and local storage for authentication and session management. We do not use third-party advertising cookies.
9. Contact
To exercise your rights or ask questions about this notice, contact Sejr Lund Bøyesen via the in-app feedback option or the contact email shown at signup.
See also: Terms of Service · Refund Policy