Effective Date: January 25, 2026

Thank you for using InGuard ("the App"). We value your privacy deeply and are committed to protecting your data. This policy explains how we handle your information.

1. Core Principle: Offline by Default

InGuard is a "Privacy-First" application.

• Local Processing: The App's core functions (OCR text recognition, allergen matching, data storage) run entirely locally on your iOS device.
• No Silent Uploads: In default usage, we do not upload any of your photos, ingredient text, or allergy preferences to any server.
• No Tracking: We do not use IDFA (advertising identifiers) or third-party SDKs to track your behavioral data.

2. Information We Collect

Given the offline nature of the App, the information we collect is extremely limited:

2.1 Information You Voluntarily Provide (Deep Analysis Feature Only)

Only when you actively tap the "Deep Analysis / Report Issue" button on the scan result page and confirm sending an email, the following information will be sent to us:

• Image Data: The cropped image of the ingredient list you scanned (used for manual verification of OCR accuracy).
• Device Information: Your device model and system version (e.g., iPhone 15, iOS 18.1, used for troubleshooting compatibility issues).
• Feedback Content: Any text you choose to write in the email body.

Purpose: This information is used solely to improve recognition algorithms and fix bugs. We regularly delete original image data after processing.

2.2 Locally Stored Data

The following data is stored only on your device (App Sandbox/UserDefaults). We cannot access it, and it is removed if you delete the App:

• Your Custom Blocklist keywords.
• Your Pro membership status (Verified via Apple StoreKit).

3. Permissions