Skip to content

Privacy Policy

Last updated: March 8, 2026

1. Data Controller

Cetona (cetona.app) is the data controller responsible for your personal data. Contact: contact@cetona.app

2. Data Collected

We collect the following data when you use Cetona: • Physical profile: age, weight, height, sex • Health goals: primary and secondary objectives • Country of residence (to adapt recipes to your local cuisine) • Dietary restrictions and preferences (excluded foods, halal, vegetarian, etc.) • Kitchen preferences: budget, cooking level, preparation time, servings • Eating window (first meal time) • Email address (if provided for account or notifications) • Browsing data: language, device, pages visited

3. Purpose of Processing

Your data is used exclusively to: • Generate your personalized ketogenic meal plan using artificial intelligence • Calculate your basal metabolic rate (BMR) and ideal macros • Adapt recipes to your country, restrictions and preferences • Improve the service and personalize your experience • Send you plan-related communications (with your consent)

4. Legal Basis

Data processing is based on your explicit consent, collected during the onboarding quiz. You may withdraw consent at any time by contacting contact@cetona.app.

5. Storage and Security

• Local storage: your quiz answers are saved in your browser’s localStorage • Servers: account data is stored on Supabase (secure servers, AES-256 encryption at rest) • Transmission: all communications are encrypted via HTTPS/TLS 1.3 • Access: only authorized Cetona team members have access to data

6. Data Retention

Your personal data is retained for 2 years after your last login. After this period, it is automatically deleted. LocalStorage data is removed when you clear your browser data.

7. Data Sharing

We never sell your personal data. Data is shared only with: • Anthropic API (Claude): for AI generation of your meal plan. Only data necessary for personalization is transmitted (profile, preferences, restrictions). No directly identifying data is sent. • Stripe: for secure payment processing. Your banking details are managed exclusively by Stripe and never stored on our servers. • Supabase: secure hosting of your account and preferences.

8. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights: • Right of access: obtain a copy of your personal data • Right to rectification: correct inaccurate or incomplete data • Right to erasure: request deletion of your data • Right to portability: receive your data in a structured, readable format • Right to object: oppose the processing of your data • Right to restriction: restrict processing in certain cases To exercise these rights, contact us at contact@cetona.app. We will respond within 30 days. You may also file a complaint with your local data protection authority.

9. Cookies and Trackers

Cetona uses two categories of cookies: • Essential analytics cookies (always active): Microsoft Clarity, in anonymized mode (IP masked, sensitive content automatically hidden). No personally identifiable data is collected. Used to understand aggregate visitor behavior (heatmaps, navigation paths) to improve the service. • Marketing cookies (optional, after consent): Google Analytics to measure communication effectiveness. • Technical cookies: language preference, session, A/B test bucket. No third-party advertising cookies are used. You can change your choice anytime by clearing your browser cookies.

10. Changes

This policy may be updated. In case of substantial changes, we will notify you by email or in-app notification. The last update date is shown at the top of this page.

Cetona — cetona.app