Privacy Policy
Effective date: June 10, 2026
1. Who we are (Controller)
This Privacy Policy explains how Cleem (“we”, “us”, “our”) collects and processes information when you use the Cleem website and mobile application (the “Service”).
Controller: Individual Entrepreneur (Sole Proprietor) Faig Novruzov, AGHDAM DISTR., JAVAHIRLI VIL. Contact email: [email protected]
2. What information we collect
Depending on how you use the Service, we may collect:
- Account data: identifiers needed to create/sign in to an account (e.g., email, username), authentication tokens.
- Profile and goals: information you choose to provide such as height, weight, age, activity level, goals, preferences.
- Nutrition diary data: meals, foods, calories/macros, notes, timestamps.
- Images (optional): photos you choose to analyze or attach to entries (if the feature is enabled in the app).
- Social and chat data: direct messages, group messages, shared media, delivery/read status, and Cleek-related metadata such as open and expiration status.
- Feed and publications: posts you publish (photos, captions, timestamps), likes, comments, view/interaction metadata, and settings such as whether comments are disabled on a post.
- Friends, search, and social graph: friend requests and friendships, people you search for, recent profile views in Search, and related interaction metadata needed to operate social features.
- Ranks and leaderboards: rank score, league, level, daily rank activity summaries, streak-related rank data, step counts used for rank points (when applicable), and leaderboard placement within friends, league, or global scopes you can access.
- Privacy, safety, and moderation data: blocked users, content reports, enforcement actions, and settings such as profile visibility, publications visibility, steps visibility, and notification preferences.
- Health data (optional, Apple Health / HealthKit): if you connect Apple Health, we may read your step count and active energy burned to show activity and progress inside the app. You can grant or revoke Health permissions at any time in iOS.
- Push notification data: your device token (APNs) and notification preferences (e.g., whether push is enabled).
- Device and usage data: device identifiers, IP address, app version, language, timestamps, performance metrics.
- Diagnostics: crash logs and error reports to improve stability.
- Support communications: messages you send to us and the information you choose to share.
3. How we use information
- Provide the Service: create accounts, sync data, show diary and progress, deliver core functionality.
- Health and activity features: if you connect Apple Health, show steps and calories burned in the app and sync them with your account.
- Social and chat features: deliver messages, group updates, media, Cleek interactions, and related status events.
- Feed and publications: display posts, likes, comments, recommendations, and notifications related to social activity you choose to share or view.
- Friends and discovery: operate friend requests, friend lists, profile discovery, Search, and related social interactions.
- Ranks and leaderboards: calculate rank points, show progress, leagues, streak-related rank bonuses, and leaderboard placement according to app rules and your visibility settings.
- Safety and moderation: investigate reports, enforce community rules, prevent abuse, and apply blocks, restrictions, or removals where appropriate.
- Notifications: deliver push notifications you enable (e.g., reminders, social/chat updates) and route you when you open a notification.
- Improve and secure: monitor reliability, prevent abuse, troubleshoot issues, maintain security.
- Support: respond to requests and provide customer support.
- Payments and subscriptions: enable purchases and manage subscriptions through App Store / Google Play.
- Legal: comply with applicable laws, resolve disputes, enforce our Terms.
4. Legal bases (EEA/UK users)
Where GDPR/UK GDPR applies, we rely on: performance of a contract (providing the Service), legitimate interests (security, analytics, improvement), consent (where required, e.g., certain optional features), and legal obligations.
5. Sharing and disclosures
We may share information with:
- Service providers that process data on our behalf (hosting, databases, and diagnostics/crash reporting, if enabled).
- App stores (Apple / Google) for billing, subscription management, and fraud prevention.
- Apple services such as Apple Push Notification service (APNs) to deliver push notifications, and Apple Health / HealthKit to read health data you authorize.
- Google services if you choose Google Sign‑In (to authenticate you via Google).
- Legal authorities when required by law or to protect rights, safety, and security.
- Business transfers (if the Service is sold/merged), subject to this Policy.
- Other Cleem users, when you choose to share content or participate in social features — for example, friends who can see your publications, users in the same rank league or leaderboard scope, or people who view your public profile according to your privacy settings.
We do not sell your personal data.
5A. AI services, data sent, and your permission
Some optional features (such as AI Chat and food photo analysis) require sending data to third-party AI providers.
When these features are used, the app may send:
- User prompts/messages entered in AI Chat.
- Food photos you choose to analyze, including image content needed for recognition.
- Related nutrition context required to generate responses (for example diary or goal-related nutrition values).
Third-party recipients for these AI features include:
- Gemini (AI chat and related AI processing).
- Edamam (nutrition and food analysis services).
Before sending data to third-party AI services, the app presents an in-app permission prompt. If you do not grant permission, data is not sent and those AI features will not run.
5B. Social features and temporary content
If you use social features such as chats, groups, media sharing, feed publications, friends, ranks, or Cleek, we process the data needed to deliver those features, keep them in sync across devices, and support message status, moderation, security, and abuse prevention.
Some content may be temporary by design. For example, Cleek-related media or visibility may expire or become unavailable in the app, while certain related records, logs, or backup copies may still be retained for a limited period where necessary for security, troubleshooting, legal compliance, enforcement, or dispute resolution.
5C. What other users can see (feed, profile, ranks, and privacy settings)
Cleem includes social features. Depending on your settings, activity, and relationship with other users, others may see information such as:
- Profile information you choose to make visible (for example username, profile photo, bio, and selected profile details).
- Publications / feed posts you publish, including photos, captions, like counts, and comments allowed by your post settings and account privacy settings.
- Rank information such as league, level, score, streak-related rank status, and leaderboard position within the scope you participate in (for example friends, league, or global rankings), subject to product rules and visibility settings.
- Steps in ranks only if steps are synced and your steps visibility setting allows the viewer to see them.
- Friendship status where relevant to social features (for example whether users are friends).
If you set publications or profile visibility to friends-only or otherwise restrict visibility in the app, we apply those settings in the Service. Other users whom you block, or who block you, should not see each other’s restricted social content according to the product’s block and privacy rules.
You control important visibility choices in the app settings. Please review them before publishing content or participating in leaderboards.
5D. Content reports and enforcement records
If you report a post, comment, profile, or other content, we process the report, the reported content, your account identifier, and related metadata to review the issue, enforce our Terms, protect users, and improve safety. We may retain report and moderation records for a limited period as needed for security, legal compliance, and dispute resolution.
6. Data retention
We retain personal data as long as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. You may request deletion of your account and associated data, subject to applicable law.
7. Security
We use reasonable technical and organizational measures to protect data. However, no system is 100% secure. Please use a strong password and keep your device secure.
8. Your rights
Depending on your location, you may have rights to:
- access, correct, delete your personal data;
- object to or restrict certain processing;
- data portability;
- withdraw consent where processing is based on consent.
To exercise rights, contact us at [email protected].
9. Children
The Service is not intended for children under 13. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has provided us personal data, please contact us and we will take steps to delete such information.
10. International transfers
Your information may be processed in countries other than your own. Where required, we use appropriate safeguards for transfers.
11. Cookies (website)
Our website may use essential technical logs and may use cookies for basic functionality. If we add non‑essential analytics cookies, we will provide appropriate notice/choices as required by law.
12. Changes to this Policy
We may update this Privacy Policy from time to time. The updated version will be posted here with a new effective date.
13. Contact
If you have questions about this Privacy Policy, contact us at [email protected].
14. Language
English is the authoritative version of this Privacy Policy. Translations are provided for convenience; in case of discrepancy, the English version prevails.