Legal

Privacy Policy

Last updated June 23, 2026 · Effective June 23, 2026

Lorie AI ("Lorie", "we", "us", or "our") is a nutrition and calorie-tracking app for iOS. This Privacy Policy explains what personal data we collect, how and why we use it, who we share it with, how long we keep it, and the choices and rights you have. We have written it to be clear and honest, not to bury the important parts in legalese.

Lorie AI is operated by PT Buweno Digital Studio, a Perseroan Perorangan (an Indonesian individual limited company) established in the Republic of Indonesia, with its registered address at Indonesia Stock Exchange Tower I, Level 3, Unit 304, Jl. Jendral Sudirman Kav 52-53, Kota Administrasi Jakarta Selatan, DKI Jakarta 12190, Indonesia. For the purposes of Indonesia's Law No. 27 of 2022 on Personal Data Protection ("UU PDP") and comparable laws elsewhere, PT Buweno Digital Studio is the controller responsible for your personal data.

This policy covers the Lorie iOS app, our website at www.lorieai.app, and related services we provide (together, the "Services"). It works alongside our Terms of Use at www.lorieai.app/terms, which govern your use of the Services and the Lorie Pro subscription. By creating an account or using the Services, you acknowledge the practices described here. This version is effective June 23, 2026.

1. Who We Are and Scope

Lorie AI is operated by PT Buweno Digital Studio, a Perseroan Perorangan established in Indonesia and located at Indonesia Stock Exchange Tower I, Level 3, Unit 304, Jl. Jendral Sudirman Kav 52-53, Kota Administrasi Jakarta Selatan, DKI Jakarta 12190, Indonesia. We are the data controller for the personal data described in this policy.

This policy applies to the Lorie iOS app, the website at www.lorieai.app, and related services such as our AI food recognition, the Lorie coach, Inner Circle, Apple Health sync, and the Lorie Pro subscription. It does not apply to third-party products or websites that we do not control, even where we link to them. Your use of the Services is also governed by our Terms of Use at www.lorieai.app/terms.

Lorie is governed by the laws of the Republic of Indonesia, and our processing of personal data is designed to meet UU PDP. Because Lorie is available on the Apple App Store worldwide, we also honor additional rights that may apply to users in other regions (for example the EEA, the UK, and California) where those rights apply to them.

2. The Data We Collect

We collect only the data we need to run Lorie and deliver the features you use. The categories below describe what we collect, examples, and roughly how and why.

a. Account and identity

When you create an account we collect your email address and your chosen sign-in method (email and password, Sign in with Apple, or Google Sign-In). If you use Sign in with Apple or Google, we receive the email and basic identity the provider returns to us. Passwords are handled securely by our authentication provider; we do not keep a raw copy of your password. We use this data to create and secure your account, sign you in, let you manage connected sign-in methods, and send essential transactional emails (such as a deletion-confirmation email).

b. Profile and nutrition goals

During onboarding and in settings we collect profile details such as gender, date of birth (age), height, current weight, target weight, your goal (for example lose, maintain, or gain), activity level, and diet type, along with the daily calorie and macro targets we calculate from them. You may also set a display name or handle for Inner Circle. We use this to calculate your targets, personalize the app, and inform the Lorie coach.

c. Content you create

When you use Lorie you create content that we store so the app works for you:

  • Food and meal logs: the meals and food items you log (name, portion, calories, protein, carbs, fat, fiber, sugar, sodium), meal type, date and time, how it was logged (photo, barcode, label, or manual), and serving counts.
  • Meal photos: photos you capture or pick to scan a meal, a barcode, or a nutrition label (see Section 5).
  • Body metrics and activity: weight entries, water intake, manually logged workouts and activities, and fasting plans and sessions.
  • Lorie coach chat: the text of your messages to the Lorie coach and her replies. If you speak to the coach, your voice is transcribed to text on your device and only the resulting text is sent for processing (see Section 6).
  • Inner Circle content: your handle, circle membership, text chat messages, voice notes, shared meal posts, reactions, and join requests within the private circles you create or join.

We use this content to track your nutrition against your goals, show your history and summaries, power the Lorie coach, and operate the private Inner Circle sharing space you and the people you invite use.

d. Health and fitness data from Apple Health

If you grant permission, Lorie reads activity and recovery data from Apple Health (HealthKit): step count, walking and running distance, active energy burned, Apple exercise minutes, and sleep analysis. We use this only to display your daily activity and Health Score. This is sensitive personal data and is handled with the heightened protections described in Section 4. Note: Lorie does not read your weight from Apple Health (you enter weight manually in the app), and Lorie does not write any data back to Apple Health.

e. Purchase and subscription data

If you subscribe to Lorie Pro, your purchase is processed by Apple through the App Store, and the subscription/entitlement state (for example active, in trial, or expired) is managed for us by RevenueCat on top of Apple StoreKit. We use this to unlock Pro features, manage your 3-day free trial and auto-renewal, and restore purchases. Apple handles payment; we do not receive or store your full payment card details. Your subscription is also governed by our Terms of Use at www.lorieai.app/terms, which contain the full billing, auto-renewal, and cancellation terms; you can manage or cancel your subscription at any time in your Apple App Store account settings. To limit subscription abuse we also use a random per-install device identifier together with your device platform and model to cap how many devices share one entitlement; this is used only for anti-abuse, not for advertising.

f. Technical and diagnostic data

To keep the app stable and secure we may collect a randomly generated per-install device ID (stored in your device's secure storage), your device platform and model, and the app and runtime version. If crash reporting is enabled in a build, we collect crash reports and error logs through Sentry; these are configured to exclude personal identifiers — your IP address, email, and health or nutrition data are deliberately not attached to crash reports. We also keep limited scan diagnostics (such as identified dish name, item count, total calories, confidence, an image-quality flag, and processing time) to monitor and improve scan accuracy; the raw scan image is not included in those diagnostic logs.

g. Notifications

Lorie uses local notifications scheduled on your device (for example meal-logging reminders) based on your in-app notification settings. We do not generate or collect a remote push token, and we do not send push notifications from our servers.

We do not use Lorie to track you across other companies' apps and websites, and we do not run third-party advertising. Because we do not track you in that sense, we do not present an App Tracking Transparency (ATT) prompt for cross-app tracking. We do not build hidden profiles about you or attempt to re-identify anonymized or aggregated data, and we do not reuse data collected for one purpose for an unrelated purpose without first asking you.

3. How We Use Your Data and Our Legal Bases

We use your personal data only for the purposes described in this policy. Under UU PDP we rely on one or more of the following lawful bases for each activity:

  • Performance of our contract with you: to create and operate your account, log your meals and metrics, run the Lorie coach and Inner Circle, and provide and bill the Lorie Pro subscription.
  • Your consent: to read Apple Health data, to access your camera, photo library, microphone, and speech recognition, and to process your content with our AI service providers. You can withdraw consent at any time (see Section 9).
  • Our legitimate interests: to keep the Services secure and reliable, prevent abuse and fraud, diagnose crashes and bugs, and improve scan accuracy and the food database, balanced against your rights and expectations.
  • Compliance with a legal obligation: to respond to lawful requests and meet legal, tax, and regulatory requirements.

Our core uses are: calculating your calorie and macro targets; recognizing food from photos, barcodes, and labels and estimating macros; generating Lorie coach responses; operating Inner Circle; displaying your activity and Health Score from Apple Health; managing your subscription; sending essential service communications; and keeping the Services safe and working. We practice data minimization: we collect only what is relevant and necessary for these purposes, and we do not repurpose data for something incompatible without asking you first.

4. Apple Health (HealthKit)

Lorie can read activity and recovery data from Apple Health only after you explicitly grant permission in iOS. You stay in control: you can review and change exactly what Lorie may read at any time in the iOS Settings app under Privacy and Security, and within Lorie under account settings. If you revoke access, Lorie simply stops reading that data.

We read steps, walking and running distance, active energy burned, Apple exercise minutes, and sleep analysis. This information is shown to you and used to compute your daily activity and Health Score; the activity metrics are read live from HealthKit on your device and are not mirrored to or stored on our servers.

We treat health and fitness data as sensitive. We make these commitments about it:

  • We do not use Apple Health, fitness, or any health data for advertising, marketing, or use-based data mining, by us or by any third party.
  • We do not sell your health data, and we do not disclose it to third parties for advertising, marketing, or data-mining purposes.
  • We use health data only to provide health and fitness features directly to you.
  • We do not write false or inaccurate data to Apple Health, and Lorie does not write any data back to Apple Health.
  • We do not store your personal health information in iCloud.

5. Photos and Camera

Lorie uses your camera and, if you choose, your photo library to scan meals, barcodes, and nutrition labels. We ask for these permissions only when you use a scanning feature, and you can manage them in iOS Settings at any time.

When you scan a meal with a photo, the image is used in two ways: (1) it is sent to our AI service provider to estimate the dish and its macros, and (2) a display-sized compressed copy is uploaded and saved to our secure storage and linked to the meal so the photo appears on your meal card. We keep the compressed display copy rather than the full original. Barcode and nutrition-label scans also upload the captured photo on a best-effort basis; if that upload fails, the meal is still saved. If you log a meal manually without taking a photo, no image is stored.

Saved meal photos are stored in a per-user folder in our storage and are served through links that are not publicly listed but may be accessible to someone who has the specific link. We retain a meal photo until you delete that meal or delete your account, after which it is removed (see Section 8). The image sent to our AI provider for analysis is transmitted for processing and is not retained by us as a separate copy beyond the meal photo you saved.

6. AI Features and Automated Processing

Several Lorie features use generative AI provided by our AI service provider (currently Google's Gemini API). With your use of these features:

  • Meal, barcode, and label scans: your photo (and, for barcodes, the product name resolved from a public food database) is sent to our AI provider to estimate the dish, read nutrition labels, or fill in nutrition values.
  • Lorie coach: the text of your messages is sent to our AI provider to generate responses. If you speak to the coach, your voice is transcribed to text on your device using Apple's speech recognition, and only the resulting text is sent to our AI provider. Depending on your iOS settings and language, Apple's speech recognition may process some audio on Apple's servers; that behavior is controlled by Apple.
  • Goal and activity estimates: free-text descriptions (for example of a workout) and your goals may be processed to generate calorie, water, and meal suggestions.

We apply safeguards to AI processing. Our AI keys are held server-side and are never placed on your device. For the Lorie coach we run a safety pipeline that sanitizes input, classifies and filters off-topic or abusive content, validates output, and rate-limits requests to prevent abuse. We keep a record of each coach turn (your message and the reply, truncated, plus safety flags and timing) to operate, audit, and protect this feature. These AI estimates are informational and may be approximate; Lorie is not a medical device and does not provide medical advice. You can avoid AI processing of a given meal by logging it manually without a photo.

7. How We Share Data and Third Parties

We do not sell your personal data. We share personal data only with the service providers that help us run Lorie, and only as needed for them to perform their role. Each provider acts as our processor (or sub-processor), is bound to process data only on our instructions and to maintain appropriate security and confidentiality, and we remain accountable for your data. We require these third parties to provide protections for your data that are comparable to those in this policy and consistent with applicable app-store and legal requirements.

  • Supabase: our primary backend for authentication, our database (profile, meals, logs, coach chat, Inner Circle), and file storage (meal photos, avatars, voice notes, banners).
  • Google (Gemini API): our AI service provider, which receives meal and label photos, barcode-derived product names, and Lorie coach text to generate estimates and responses.
  • Apple: the App Store and StoreKit for payments and the Lorie Pro subscription; HealthKit for the health data you authorize; Sign in with Apple for authentication; and Apple's speech recognition for transcribing voice input.
  • RevenueCat: manages your subscription and entitlement state on top of Apple StoreKit.
  • Sentry: crash and error diagnostics (only when enabled in a build), configured to exclude personal identifiers and health or nutrition data.
  • Resend: delivery of essential transactional emails, such as the account-deletion confirmation.
  • Expo (EAS): app builds and over-the-air app updates.
  • Google Sign-In: optional Google authentication, if you choose it.
  • Open Food Facts and USDA FoodData Central: public food databases we query by barcode for product identity and nutrition; we send a product code, not your personal data.

Inner Circle is a private, invite-only space. The content you post there (text messages, voice notes, shared meal posts, reactions) is shared with the people you invite to your circle, and is not posted to any public feed. You should be aware, however, that the underlying media files (such as voice notes, shared meal-post photos, and circle banners) are stored in our file storage and served through links that are not publicly listed but may be accessible to someone who has the specific link. Please only share what you are comfortable sharing with the people in your circle.

We may also disclose personal data if required to do so by law, regulation, legal process, or an enforceable governmental request; to enforce our terms; or to protect the rights, safety, and security of our users, the public, or Lorie. If Lorie is involved in a merger, acquisition, or sale of assets, we will continue to protect your data and notify you of any change in control over it.

8. Data Retention and Deletion

We keep your personal data for as long as your account is active and you continue to use the Services, so that your meals, history, photos, and coach context remain available to you. We delete or anonymize personal data when it is no longer needed for the purpose it was collected, when you withdraw consent (where consent was the basis), when you ask us to, or when we are required to do so by law.

You can delete your account directly in the app. Go to Settings, then account settings, then Delete Account, and confirm by typing the requested phrase. Deletion is scheduled to take permanent effect after a 30-day recovery window, during which you can sign back in to restore your account. After 30 days, we permanently delete your app data, including your profile, meals, activity and weight logs, daily summaries, fasting data, scan diagnostics, onboarding responses, and all meal photos in your storage folder, and we delete your authentication records.

Inner Circle works differently because it is shared with other people. The text history you posted to a circle is anonymized to a deleted account rather than removed from other members' conversations, so their threads remain intact. For the same reason, media you uploaded to a circle (voice notes and shared meal-post photos) may remain available within those members' threads after your account is deleted, detached from your identity; circle banners you uploaded may likewise remain with the circle. We may also retain limited safety and audit records (such as Lorie coach moderation logs) and information we are legally required to keep; we minimize and protect any such residual data.

If you cannot use the in-app flow, you can also request deletion by emailing privacy@lorieai.app and we will action it.

9. Your Rights and Choices

Under UU PDP you have rights over your personal data. We honor the following, subject to verification of your identity and any legal limits:

  • Be informed about how we process your data (this policy).
  • Access your data and obtain a copy of it.
  • Correct or update inaccurate or incomplete data (you can edit much of your profile directly in the app).
  • Erase your data and exercise your right to be forgotten (delete your account in-app, or ask us).
  • Withdraw consent at any time for processing based on consent (for example revoke Apple Health, camera, microphone, or speech permissions in iOS Settings).
  • Object to or request that we restrict or delay certain processing.
  • Object to decisions based solely on automated processing, including profiling, that significantly affect you.
  • Data portability: receive certain data you provided in a structured, commonly used format, or have it transmitted where technically feasible.
  • End processing and have your data deleted.
  • Seek compensation for harm caused by a violation of the law, and pursue available legal remedies.

You control much of your data directly: edit your profile and goals, manage sign-in methods, adjust notification settings, and connect or disconnect Apple Health, all in the app. To access, correct, export, restrict, or delete data, or to exercise any right, contact us at privacy@lorieai.app. We do not currently offer a one-tap in-app data download; if you would like a copy of your data for portability, email privacy@lorieai.app and we will provide a copy of the personal data you provided to us (such as your profile, meals, and logs), subject to verification of your identity and any legal limits. Some operational records, such as safety and audit logs, may be subject to those limits. We will respond within the timeframes required by applicable law.

If you are in the EEA, the UK, California, or another region with additional data rights, those rights may also apply to you and we will honor them where applicable. You also have the right to lodge a complaint with your local data protection authority, and in Indonesia with the supervisory authority for personal data protection.

10. Security

We apply reasonable technical and organizational measures to protect your personal data against unauthorized access, loss, misuse, alteration, and disruption. These include encryption in transit, access controls, server-side handling of sensitive keys (such as AI provider keys), and configuring diagnostics to exclude personal identifiers and health data. We maintain records of our processing activities and our accountability measures.

If a personal data breach occurs that affects you, we will notify affected users and the relevant supervisory authority within 3x24 hours (72 hours) as required by UU PDP, and we will explain what data was affected, when and how the breach happened, and the steps we are taking to handle and remediate it.

No method of transmission or storage is completely secure, so we cannot guarantee absolute security. Please help protect your account by using a strong, unique password and keeping your device secure.

11. Children and Minors

You must be at least 13 years old to create a Lorie account. This account-creation minimum is separate from the App Store age-suitability rating, which describes content rather than who may register.

If you are under the age of majority where you live (18 in Indonesia), you may use Lorie only with the involvement and consent of a parent or legal guardian, who agrees to this policy on your behalf. Where we process the data of a minor, we treat it as sensitive personal data with heightened protection and rely on parental or guardian consent as required by law.

We do not knowingly collect personal data from children under 13. If we learn that we have collected data from a child under 13 without appropriate consent, we will delete it promptly. If you believe a child under 13 has provided us data, contact privacy@lorieai.app.

12. International Data Transfers

We are based in Indonesia, but some of our service providers store or process data on servers located outside Indonesia. As a result, your personal data may be transferred to, and processed in, countries other than your own.

When we transfer personal data across borders, we apply a safeguard consistent with UU PDP: we transfer to a country that provides an adequate level of personal data protection; or, where that is not established, we put in place binding appropriate safeguards (such as standard contractual clauses with the recipient); or, failing those, we rely on your consent. In all cases we require recipients to protect your data to a standard comparable to this policy.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, features, or legal requirements. When we make material changes, we will update the effective date at the top, post the new version on this page, and where appropriate notify you in the app or by email.

We will keep prior versions identifiable by date. Your continued use of the Services after an update takes effect means you accept the updated policy. If a change requires your consent under applicable law, we will ask for it before relying on that change.

14. Contact Us

If you have questions, requests, or complaints about this policy or your personal data, contact our data controller:

  • Controller: PT Buweno Digital Studio (Perseroan Perorangan)
  • Registered address: Indonesia Stock Exchange Tower I, Level 3, Unit 304, Jl. Jendral Sudirman Kav 52-53, Kota Administrasi Jakarta Selatan, DKI Jakarta 12190, Indonesia
  • Privacy and data requests: privacy@lorieai.app
  • General support: support@lorieai.app
  • Terms of Use: www.lorieai.app/terms

We will respond to privacy requests within the timeframe required by applicable law. You also have the right to contact the supervisory authority for personal data protection in Indonesia, or your local data protection authority if you are elsewhere.