Your gut is yours.

Crohn's data is medical data. We treat it that way. Crohnicle is built offline-first — your scans, symptoms, and meals live on your device by default. We don't sell, share, or analyze your data for ads.

"If we wouldn't be comfortable with our own gut history being treated this way, we wouldn't ship the app."

What we collect

On your device (always). When you scan a food, log a symptom, or log a medication, that data is stored locally on your phone using SQLite. It never leaves the device unless you sign in for cloud sync.

If you sign in (optional). If you create an account to sync across devices, your data is stored in our cloud database (Supabase) under your account. We collect:

Email address — for sign-in and password reset only. We will never email you marketing.
Profile inputs — disease state, dietary phase, resection status. Drives the food scoring engine.
Your logs — food scans, symptoms, medications, hydration, mood. Same data the app shows you.

What we don't collect. No analytics SDKs, no ad SDKs, no third-party trackers, no "anonymous usage data" sold to data brokers. No location, no contacts, no microphone, no clipboard scraping. The camera is used only for barcode scanning, in-process, and frames are never stored or transmitted.

How we use your data

To run the app. Your profile inputs drive food scoring. Your scan history powers pattern detection. Your medication log triggers reminders. That's it.

To improve the engine. We may, with your explicit opt-in, use anonymized and aggregated data (e.g., "30% of users who logged dairy reported flares within 24h") to improve trigger detection and recipe recommendations. This is opt-in, off by default, and toggleable in Settings.

What we never do. We never sell your data. We never share it with advertisers, insurers, employers, or data brokers. We never train AI models on it without explicit consent. We never message you with marketing.

Your rights, made simple

Export anytime — Settings → Data → Export. Get a JSON of everything we have on you.
Delete anytime — Settings → Data → Delete account. Wipes your account and all server-side data within 30 days. No "contact support" runaround.
Use offline forever — you can use Crohnicle without ever creating an account. All data stays on-device.

Third-party services

Open Food Facts — open-source food database. We send barcode lookups to their public API. They don't know who you are.
Supabase — our cloud database provider, only used if you sign in. Your data is encrypted in transit and at rest. Read their privacy policy at supabase.com/privacy.
Cloudflare — hosts crohnicle.com. They see anonymized request logs (IP, user agent) for spam/DDoS protection. Read their policy at cloudflare.com/privacy.

Children

Crohnicle is not designed for users under 13. If you're under 13, please don't sign in. If we learn we've collected data from a user under 13, we'll delete it.

Changes to this policy

If we update this policy in any way that affects your data, we'll email everyone with an account before the change takes effect, and post a notice in the app for 30 days. Material changes require fresh consent.

Contact

Privacy questions, data requests, or concerns: privacy@crohnicle.com

Last updated · April 2026