Privacy Policy

Last updated: May 4, 2026

1. Information We Collect

When you use the Argos Nutrition API, we collect:

• Account data: Organization name, email address, and API usage metrics
• Food images: Photos you submit for analysis are transmitted to our AI provider and cached solely to improve API response latency and reduce duplicate external calls
• Barcode scans: Barcodes you query are cached locally and may be sent to Open Food Facts
• Log data: Meal entries and nutrition data you create through the API

2. How We Use Data

Your data is used solely to operate the Service:

• Process food recognition and nutrition lookups
• Track API usage for rate limiting
• Improve cache hit rates by storing past results
• Monitor service health and diagnose errors

3. Data Sharing

We share data only with necessary third-party providers:

• AI vision provider: Food images (for AI analysis)
• Open Food Facts: Barcode lookups (public database)
• USDA FoodData Central: Nutrition search queries (public database)

We never sell your personal data or API keys to third parties.

4. Data Retention

We retain your data only as long as necessary to provide the Service:

• Food images: 30 days after submission
• Usage metrics: 36 months after collection
• Log entries and meal data: 12 months after your last activity
• Account information: Until account deletion or inactivity exceeding 36 months

5. Data Deletion

You may request deletion of your data at any time by contacting us. We will fulfill deletion requests within 30 days. Note that a self-service data deletion API is not yet available — this is a planned feature for a future release.

6. Security

API keys are stored as bcrypt hashes. All traffic is encrypted via HTTPS. We perform daily encrypted backups of the database, retained for 14 days.

7. Your Rights

You may request access to, correction of, or deletion of your personal data at any time. Email the organization owner with your request.

8. Children's Privacy

The Service is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal data, please contact us so we can delete it. This policy complies with the Children's Online Privacy Protection Act (COPPA).

9. Cookies

The dashboard uses sessionStorage (client-side only) for state management. No tracking cookies or analytics are employed.

10. Changes

We may update this policy. Material changes will be communicated via the email address associated with your account.

← Back to Sign Up