Decode Your Body
Last updated: 2026-04-19
This Privacy Policy explains how Torrico Sales Group LLC (“we”) collects, uses, and protects your information when you use Caloricode.
Account data. Email address and a password hash (bcrypt, via Supabase Auth). We never store your password in plaintext.
Profile data. Name, biological sex, age, height, weight, body measurements (waist, neck, hips), activity level, and fitness goals.
Logs. Daily weigh-ins, nutrition (calories and macros), workouts (exercises, sets, reps, weight, duration), and hydration.
Feedback. Bug reports including console errors, browser info, page URLs, and session duration for triage; improvement suggestions you submit.
Usage. Pages visited and actions taken within the app, used for product improvement.
We do not sell your data. We share data with the following processors strictly as needed to operate the service:
Active accounts retain their data indefinitely. When you request deletion, your data is purged within 30 days.
You can access, correct, export, or delete your data. Contact us to exercise these rights.
We only use authentication session cookies (managed by Supabase). We do not use third-party advertising or tracking cookies.
We use TLS in transit, Row-Level Security at the database layer, password hashing, and least-privilege service accounts. No system is perfectly secure, but we work to minimize risk.
Caloricode is not for users under 13. If we learn that we have collected data from a child under 13, we will delete it.
The service is hosted in the United States (Vercel and Supabase us-east-1). If you access Caloricode from outside the United States, you consent to your information being processed in the United States.
We may update this Privacy Policy from time to time. Material changes will be emailed to registered users.
Questions about this policy? Contact us.