NattyAI Privacy Policy

Last updated: May 4, 2026

NattyAI ("we", "the app") is built and operated by Coleman Digital. This policy explains what data the app handles, how it is processed, and your choices.

Data we collect

• Photos you submit for analysis. Images you capture or pick are sent over HTTPS to our analysis server, forwarded to Anthropic's Claude API for scoring, and discarded. They are not stored on our servers, not used to train any model, and not associated with your identity.
• Profile inputs you provide. Optional height, weight, and training-years values are stored locally on your device (iOS Keychain) to personalize results. They are sent with each scan request but not persisted server-side.
• Anonymous device identifier. A random UUID is generated on first launch and stored in the iOS Keychain. It is used as your RevenueCat App User ID so that subscription entitlements survive reinstalls and restore correctly. It is not linked to any personal information.
• Scan history. Past scan results, including the scored image references, are stored only in a local SQLite database on your device. We do not have a copy.

What we do not collect

• No name, email address, phone number, or account credentials. NattyAI has no sign-in.
• No location, contacts, calendar, microphone, or health-kit data.
• No advertising identifiers or third-party analytics SDKs.

Third-party processors

• Anthropic, PBC — receives photos and profile inputs to generate scan results. See anthropic.com/legal/privacy.
• Cloudflare, Inc. — hosts the analysis proxy at the network edge. Standard request logs (IP, timestamp, status) may be retained per Cloudflare's policy.
• RevenueCat, Inc. — manages subscription receipts. Receives only the anonymous UUID and Apple receipt. See revenuecat.com/privacy.
• Apple, Inc. — processes purchases through StoreKit and iCloud-tied subscription state.

Your choices

• Wipe local data. Settings → "wipe all data" deletes your profile, scan history, and resets your anonymous identifier.
• Cancel subscription. Settings → "manage subscription" opens the Apple subscription manager.
• Revoke camera or photo library access. Use iOS Settings → NattyAI.

Children

NattyAI is rated 17+ and is not directed to anyone under 17. We do not knowingly collect data from children.

Security

All network traffic uses TLS. The analysis endpoint is gated by a per-build API token and rate-limited at the edge. Sensitive on-device data is stored in the iOS Keychain via expo-secure-store.

Changes

If this policy materially changes, we will post the updated version at this URL with a new "last updated" date.

Contact

Questions: nathantcoleman21@gmail.com