Privacy Policy

Last updated: 3 June 2026

Sprout Ventures (“we”, “us”, “our”) operates the Sprout mobile application and the sprout-ventures.ch website. This Privacy Policy explains what data we collect, why we collect it, how we use it, and the choices you have. Our short version: your biological data is the most intimate data you'll ever generate. We never sell it. We never share it. We never use it for advertising.

1. What we collect

We collect only what's necessary to make the app work and improve your experience:

• Account data — email, name, profile picture (if you sign in with Apple or Google).
• Profile data — gender, age range, sleep goal, wake / bed times (collected during onboarding).
• Health & wellness data — your morning recovery check-ins, sleep schedule, habits checked, cycle data (if you track it), meal logs from the AI Nutrition Coach.
• App-blocker selection — the opaque tokens iOS provides for the apps you choose to block. We never see your app names or usage.
• Usage data — anonymous, aggregated app crash reports and performance metrics. No identifiable personal data.

2. What we DON'T collect

• We don't track your location
• We don't read your contacts, calendar, or messages
• We don't see which apps you actually use (only the opaque iOS tokens for the apps you chose to block)
• We don't sell your data to anyone, ever
• We don't use your data to target advertising

3. Where your data lives

Most personal data is stored locally on your device using iOS's encrypted storage. Data that needs to sync across devices (your account, your sleep schedule, cycle starts, premium subscription status) is stored in Supabase — a GDPR-compliant database hosted in the EU. All data is encrypted in transit (TLS) and at rest.

Your cycle symptom logs are stored on-device only and never sent to our servers. Your app-blocker token set is stored only on your device in an iOS shared App Group container.

4. AI features & third-party processors

When you use Sprout's AI features (recipe generation, video extraction, coach chat), relevant data is sent to:

• OpenAI (San Francisco, USA) — for ingredient detection from fridge photos and recipe Q&A. Your photos are sent for analysis only, never stored by OpenAI for training. Reference: OpenAI API Data Usage Policies.
• Anthropic (San Francisco, USA) — for recipe reasoning and nutrition science. Same data-handling guarantees as OpenAI's API.
• Supabase (EU region) — for account auth, profile sync, and meal log persistence.
• Apple (Cupertino, USA) — for premium subscription processing via In-App Purchase. Payment details are handled entirely by Apple and never touch our servers.

We never send the third parties more than they need for the task. Each AI request is stateless — there is no persistent profile of you held at OpenAI or Anthropic.

5. Apple Screen Time data

Sprout uses Apple's Family Controls / Screen Time API to power the App Blocker. The apps you choose to block are stored as opaque tokens — Sprout never sees the actual app names, your usage data, or how much time you spend in any app. The block windows run inside iOS's own DeviceActivityMonitor extension; we never have visibility into what runs on your device.

6. Camera & photos

Sprout's Recovery Fuel feature uses your camera to scan meals, ingredients, or your fridge so the app can identify food items and score them for recovery. Photos are sent only for the single scan you initiate — they are processed by our AI providers (OpenAI for ingredient detection, Anthropic for nutrition reasoning) and are not stored on Sprout's servers. We never read your photo library outside of the explicit scan flow you trigger.

7. Microphone

Sprout's "type-it" voice input records a short audio clip when you tap the microphone button to describe a meal or craving. The clip is transcribed via AssemblyAI and discarded immediately after transcription — we never keep audio files. The microphone is never accessed in the background or without an explicit tap on the mic button.

8. Your rights (GDPR / CCPA)

You have the right to:

• Access a copy of all data we hold about you
• Correct inaccurate data
• Delete your account and all associated data (Settings → Delete Account, or email us)
• Export your data in a portable format
• Object to any processing you consider unjustified

Email contact@sproutventures.ch and we'll respond within 30 days.

9. Data retention

We keep your account data for as long as your account is active. When you delete your account, we delete all associated personal data within 30 days from our active databases. Aggregated, anonymised usage metrics (no personal identifiers) may be retained for product improvement.

10. Children

Sprout is not intended for users under 17. We do not knowingly collect data from children. If you believe a child has signed up, please contact us and we will delete the account immediately.

11. Changes to this policy

We may update this policy occasionally. Material changes will be communicated via the app and email. Continuing to use Sprout after a change constitutes acceptance.

12. Contact

Sprout Ventures
Switzerland
Email: contact@sproutventures.ch