Privacy Policy

1. Data controller

The data controller responsible for your personal data is Coplango B.V., Posthoornstraat 11, 3011 WD Rotterdam, The Netherlands, registered with the Dutch Chamber of Commerce (KVK) under number 42010520. You can reach us regarding any privacy matter by email at hello@coplango.com.

2. What data we collect

PetCal collects only the personal data needed to track your pet's nutrition, store their profile, and synchronize that data across your devices. The data we process depends on which features you use.

Account information. When you create an account we store an email address (if you sign up with email and password) or an Apple-issued user identifier and optional private-relay email (if you choose Sign in with Apple). Apple provides your real name only on the first sign-in, which we store with your profile.

Pet profile information you provide. Each pet's name, species, breed, sex, date of birth, weight history, body condition, activity level, dietary preferences, health conditions, and any photo you choose to attach.

Meal and nutrition data you log. Food entries (kibble, wet food, treats, raw, homemade), portion sizes, calorie counts, timestamps, the photo of the food itself if you scanned it, and any notes you attach. Weight log entries, treat budget settings, and reminder schedules.

Household data. If you share a pet with another caregiver via the household feature, we store the household name, the list of members and their roles, and an activity feed of meals logged for shared pets so all members see the same nutrition history.

Notification data. Your in-app reminder preferences and timezone, the history of notifications we have sent you, and — only if you opt in to push notifications — the Apple-issued device push token for your iPhone.

Subscription state. Whether you have an active PetCal Premium subscription, the product purchased, and the renewal or cancellation state. This is managed by our subscription processor (RevenueCat) and keyed by an anonymous identifier we generate.

Device and diagnostic information. iOS version, device model, app version, and anonymous identifiers used for crash reporting and analytics — collected only if you have not turned analytics off in Settings → Privacy.

What we do not collect. Your contacts, files, precise device location, or payment-card details. Payment is handled entirely by Apple; we never see your card. The camera and photo library permissions are used only when you actively scan or attach a food image — we do not scan your library in the background.

3. Why we process your data

We process your data to provide the core service (track meals, calculate calorie targets, store pet profiles, generate insights), recognize food in photos you submit, deliver reminders you have opted into, maintain your subscription state and unlock Premium features, and investigate crashes or bugs (only if analytics is enabled). We never use your data for advertising and never sell or rent it to third parties.

4. Legal basis

Our legal basis for processing your account, pet profiles, meal log, household, notification, and subscription data is Article 6(1)(b) GDPR (performance of a contract — providing the PetCal service to you). Diagnostic analytics, where enabled, are processed on the basis of Article 6(1)(a) GDPR (consent), which you can withdraw at any time from Settings → Privacy.

5. How AI food recognition works

When you scan a food photo, the image and any text description you provide are sent to our backend, which forwards them to a third-party AI vision provider so it can identify the food and estimate calories. The AI provider receives only the image and prompt context — your account email and personal identifiers are not included in the request. The recognized food entry is stored in your account against the pet you selected, and you can edit or delete it at any time. You can disable AI scanning entirely and log meals manually in Settings → Privacy.

6. How long we keep your data

We keep your data for as long as your account exists. When you delete your account (Settings → Delete Account, requires typing “DELETE” to confirm), your account is marked for deletion and your push token, notification schedules, and sole-owner households are removed immediately. The full account, pet profiles, meal history, and weight logs are permanently deleted from our active databases within 30 days, and from backups shortly thereafter. Anonymous aggregated analytics data (if you had it enabled) may be retained longer because it cannot be linked back to you.

7. Your rights under the GDPR

You have the right to access, rectify, erase, restrict the processing of, or port your personal data, and the right to object to processing based on legitimate interest. Most of these rights are available directly inside the app: you can view and edit your pet profiles, meal log, and preferences in the app itself, and permanently delete your account from Settings → Delete Account. To make any other request, email us at hello@coplango.com — we will respond within 30 days. You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

8. Third-party processors

We use a small number of sub-processors under data processing agreements: Supabase (managed Postgres backend and authentication, EU region — AWS eu-west-2) stores your account, pet profiles, meal log, weight history, household data, notification preferences, and inbox; OpenAI and Google (Gemini) provide the AI vision models that identify food in the photos you scan, invoked via our backend; RevenueCat (subscription state management) stores your PetCal Premium subscription status keyed by an anonymous identifier; Apple handles Sign in with Apple, App Store payments, and Apple Push Notification service delivery; Sentry (operated by Functional Software, Inc.) collects crash reports and diagnostic events when analytics is enabled; and Expo (operated by 650 Industries, Inc.) delivers push notifications via its push relay service. None of these processors receive data beyond what is strictly necessary for their role, and your account identifiers are never sent to the AI vision providers.

9. International data transfers

Our backend data (Supabase) is stored in EU data centers. OpenAI, Google Gemini, RevenueCat, Sentry, and Expo may process data in the United States under appropriate safeguards (Standard Contractual Clauses or an equivalent transfer mechanism). Apple processes Sign in with Apple, payment, and APNs data per its own policy at apple.com/legal/privacy.

10. Security

We use Supabase Row Level Security so that only you (and household members you have invited) can read your data. All data is transmitted over HTTPS. We follow industry-standard practices for storing credentials and tokens, but no system is 100% secure — if you believe your account has been compromised, email us right away.

11. Children

PetCal is not directed at children under 13 (or the equivalent minimum age in your jurisdiction), and we do not knowingly collect data from them. If you believe a child has provided data to us, please email hello@coplango.com and we will delete it.

12. Changes to this policy

If we make material changes, we will update the “Last updated” date at the top and, where appropriate, notify you inside the app. Continued use of PetCal after the change means you accept the new policy.

13. Contact

Questions or concerns? Email hello@coplango.com, or write to Coplango B.V., Posthoornstraat 11, 3011 WD Rotterdam, The Netherlands.