Privacy Policy

隐私政策

生效日期：2026-06-08

本政策说明 Can I Eat 如何处理你在使用拍照识别、相册选图、手动输入、饮食关注项和订阅功能时产生的信息。Can I Eat 是饮食风险提醒和健康科普信息工具，不是医疗设备，不诊断、治疗、治愈或预防任何疾病，也不提供个体化医疗决策。

1. 我们提供什么服务

Can I Eat 提供 AI 食物识别、营养标签识别和日常饮食风险提醒。你可以通过拍照、上传图片或手动输入食物描述，获取结合饮食关注项生成的提醒和更安全吃法建议。

Can I Eat 不是医疗设备，不提供诊断、治疗、处方、用药、急救、过敏安全认证、营养治疗或个体化医疗决策，不替代医生、营养师或其他专业人士建议。

2. 我们处理哪些信息

• 匿名设备 ID：用于请求签名、限流、防滥用、错误排查、反馈关联和分析归属。
• 饮食关注项：例如过敏原、孕期、控糖、高尿酸/痛风、血压、血脂、脂肪肝、肾病相关饮食限制、肠胃敏感和体重管理。默认保存在本机，并在你发起分析时匿名提交给后端。
• 图片或文字输入：包括食物照片、包装、配料表、条码、营养标签、菜单或你输入的食物描述。
• 分析结果和反馈：用于向你展示结果、定位识别错误、改进规则和服务质量。
• 订阅和购买状态：用于确认 Pro 权益、恢复购买和提供更多分析额度。
• 技术日志：例如请求时间、接口状态、错误码、延迟、模型调用成本、设备和网络诊断信息。

3. 权限和本地数据

当你使用拍照或相册选图时，App 会请求相机或照片权限。你可以在系统设置中撤回这些权限；撤回后，相关功能可能无法继续使用。饮食关注项默认保存在设备本机，你可以在 App 中修改或清除。

除你主动拍照、选图、输入文字或发起分析外，Can I Eat 不会主动读取你的照片、相机内容或精确位置。Can I Eat 当前不接入 Apple HealthKit、Google Health Connect 或外部医疗设备。当前官网和 App 不以第三方广告定向为目的处理你的食物照片或饮食关注项。

4. 图片和文字如何处理

App 可能在上传前压缩图片、限制尺寸并移除 EXIF 元数据。服务端会检查文件大小、MIME 类型和上传策略，以减少异常文件和滥用风险。

图片和文字默认仅用于你请求的本次分析。图片可能通过签名上传链接进入对象存储，并由服务端按 asset_id 进行分析和管理。服务端按配置短期留存图片，例如 24 小时内清理；日志和反馈可能为安全、排障和质量改进目的保留更长时间。

5. 第三方 AI、存储和订阅服务

为提供食物识别、文字解析和建议文案生成，我们可能将图片、文字输入和本次分析所需的饮食关注项发送给后台配置的 AI 服务商处理。当前后端默认支持 OpenAI-compatible 模型服务，并可按部署配置接入 Anthropic Claude 或 Google Gemini。

我们会尽量减少发送的信息，并在发送前避免包含不必要的设备信息。第三方服务商会按照其服务条款、隐私政策和数据处理约定处理相关数据。

图片可能通过对象存储服务短期保存。上传可能采用签名上传链接，客户端直接上传到存储 bucket，服务端再通过 asset_id 进行分析和清理。

订阅和购买状态可能由 Apple App Store、Google Play 和 RevenueCat 等支付或订阅基础设施处理，用于购买、续订、取消、退款、恢复购买和权益同步。

6. 我们如何使用信息

• 提供食物识别、配料和营养标签解析、风险提醒、原因说明和更安全吃法建议。
• 处理手动修正、关键问题回答、错误反馈和客服请求。
• 进行限流、防滥用、安全审计、故障排查和服务稳定性维护。
• 在脱敏或聚合后改进规则库、模型提示、产品体验和服务质量。
• 管理订阅权益、恢复购买、同步 Pro 状态和处理账单相关问题。

7. 信息共享

除为提供服务所必需的 AI、对象存储、支付/订阅、云基础设施和分析诊断服务商外，我们不会出售你的个人信息。我们也不会将你的食物照片或饮食关注项用于第三方广告定向。

8. 信息保留、删除和你的选择

你可以在 App 中修改或清除本地饮食关注项，也可以在系统设置中撤回相机或照片权限。订阅可在 Apple App Store 或 Google Play 的系统订阅设置中管理或取消。

你可以通过产品内反馈或联系邮箱请求访问、更正或删除与你的匿名设备 ID 相关的数据。我们会在合理时间内处理，但法律、安全、争议处理、支付记录或审计要求可能要求我们保留部分记录。

9. 跨境处理

根据服务器、对象存储、AI 服务商、支付和诊断服务商的部署位置，你的信息可能在你所在国家或地区以外被处理。我们会按照适用法律和服务商数据处理约定保护相关信息。

10. 未成年人

Can I Eat 不面向儿童提供独立医疗、营养或饮食决策服务。未成年人应在监护人指导下使用本产品。

11. 安全措施

我们通过 HTTPS/TLS 传输、服务端保存模型 API key、请求签名、签名上传、访问控制、文件大小限制、日志脱敏和异常监控等措施保护信息安全。但任何互联网服务都无法保证绝对安全。

12. 政策更新

当产品功能、数据处理方式、服务地区或第三方服务发生变化时，我们可能更新本政策。重大变更会通过 App 或网站提示。

13. 联系我们

如对本政策或数据处理有疑问，请通过产品内反馈或发送邮件至 support@lookoo.app 与我们联系。

Privacy Policy

Privacy Policy

Effective date: June 8, 2026

This policy explains how Can I Eat handles information related to photo scanning, album images, manual food input, dietary focus areas and subscriptions. Can I Eat is a dietary risk reminder and general health information tool. It is not a medical device and does not diagnose, treat, cure or prevent any disease or medical condition.

1. What We Provide

Can I Eat provides AI food recognition, nutrition label recognition and everyday dietary risk reminders. You can take a photo, upload an image or type a food description to receive reminders and safer eating suggestions based on the dietary focus areas you choose.

Can I Eat is not a medical device. It does not provide diagnosis, treatment, prescriptions, medication advice, emergency advice, allergy clearance, nutrition therapy or personalized medical decisions, and it does not replace advice from doctors, dietitians or other professionals.

2. Information We Process

• Anonymous device ID: used for request signing, rate limiting, abuse prevention, troubleshooting, feedback association and analysis ownership.
• Dietary focus areas: such as allergens, pregnancy, glucose control, uric acid/gout, blood pressure, blood lipids, fatty liver, kidney-related diet limits, gut sensitivity and weight management. These are stored on your device by default and submitted anonymously when you request an analysis.
• Images or text input: including food photos, packages, ingredient lists, barcodes, nutrition labels, menus or food descriptions you type.
• Analysis results and feedback: used to display results, locate recognition errors, improve rules and improve service quality.
• Subscription and purchase status: used to confirm Pro access, restore purchases and provide additional analysis capacity.
• Technical logs: such as request time, API status, error codes, latency, model cost, device diagnostics and network diagnostics.

3. Permissions and Local Data

When you use photo capture or album selection, the app may request camera or photo permissions. You can revoke these permissions in system settings; related features may stop working after revocation. Dietary focus areas are stored on your device by default and can be edited or cleared in the app.

Can I Eat does not access your photos, camera content or precise location unless you actively take a photo, choose an image, enter text or request analysis. Can I Eat does not currently integrate with Apple HealthKit, Google Health Connect or external medical devices. The website and app do not process your food photos or dietary focus areas for third-party ad targeting.

4. How Images and Text Are Handled

The app may compress images, limit dimensions and remove EXIF metadata before upload. The server checks file size, MIME type and upload policy to reduce abnormal files and abuse.

Images and text are used by default only for the analysis you request. Images may be uploaded through signed upload URLs to object storage, then managed by the server through an asset ID. Images are retained for a configured short period, such as 24 hours, before cleanup. Logs and feedback may be retained longer for security, troubleshooting and quality improvement.

5. Third-Party AI, Storage and Subscription Services

To provide food recognition, text parsing and advice copy generation, we may send images, text input and the dietary focus areas needed for the current analysis to configured backend AI providers. The backend currently supports OpenAI-compatible model services by default and may be configured to use Anthropic Claude or Google Gemini depending on deployment.

We try to minimize the information sent and avoid unnecessary device information. Third-party providers process data according to their own terms, privacy policies and data processing agreements.

Images may be stored temporarily through object storage services. Uploads may use signed upload URLs, with the client uploading directly to a storage bucket and the server analyzing and cleaning up assets by asset ID.

Subscription and purchase status may be processed by payment or subscription infrastructure such as Apple App Store, Google Play and RevenueCat for purchase, renewal, cancellation, refund, purchase restoration and entitlement sync.

6. How We Use Information

• Provide food recognition, ingredient and nutrition label parsing, risk reminders, reasons and safer eating suggestions.
• Handle manual corrections, follow-up questions, error feedback and support requests.
• Perform rate limiting, abuse prevention, security auditing, troubleshooting and service maintenance.
• Improve rule sets, prompts, product experience and service quality after de-identification or aggregation.
• Manage subscription access, restore purchases, sync Pro status and handle billing-related issues.

7. Information Sharing

Except for AI, object storage, payment/subscription, cloud infrastructure and diagnostic providers needed to operate the service, we do not sell your personal information. We do not use your food photos or dietary focus areas for third-party ad targeting.

8. Retention, Deletion and Your Choices

You can edit or clear local dietary focus areas in the app and revoke camera or photo permissions in system settings. Subscriptions can be managed or canceled through Apple App Store or Google Play system subscription settings.

You may request access, correction or deletion of data associated with your anonymous device ID through in-app feedback or the contact email. We will process requests within a reasonable time, although legal, safety, dispute, payment record or audit requirements may require us to retain some records.

9. International Processing

Depending on the deployment location of servers, object storage, AI providers, payment providers and diagnostic providers, your information may be processed outside your country or region. We protect related information according to applicable law and service provider data processing terms.

10. Children

Can I Eat is not designed to let children make independent medical, nutrition or dietary decisions. Minors should use the product under guardian supervision.

11. Security

We protect information through HTTPS/TLS transmission, server-side model API keys, request signing, signed uploads, access controls, file size limits, log redaction and anomaly monitoring. No internet service can guarantee absolute security.

12. Updates

We may update this policy when product features, data processing, service regions or third-party services change. Material changes may be announced through the app or website.

13. Contact

If you have questions about this policy or data processing, contact us through in-app feedback or email support@lookoo.app.