Privacy Policy
Effective July 13, 2026 · Applies to the MacroPair iOS app and macropair.com
1. Who we are
MacroPair is made by HarbingerScope LLC, doing business as WhiteBoxForge, in Richmond, Texas, USA ("we", "us"). We are the data controller for the personal information described here. You can reach us at support@macropair.com.
The short version: MacroPair is a paid product. We make money from subscriptions — not from advertising, and not from your data. We collect what the coaching needs, we share it with no one beyond the service providers who run the app, and you can delete all of it yourself, in the app, at any time.
2. What we collect
Account information
- Email address and name — to create and secure your account.
- Password — stored only as a one-way cryptographic hash (scrypt). We cannot read it.
- Sign in with Apple or Google identifiers — if you choose a provider sign-in, we store the provider's stable account identifier and the email it shares. We never receive your Apple or Google password.
Health and wellness data you log
- Biometrics — age, height, weight entries and sex as used by the energy equations, with your chosen units in lb or kg.
- Food diary — the foods, portions in g or oz, recipes and meals you log, including entries a household partner logs for you (always attributed).
- Goals and plan data — goal weight, pace, diet style, training days and the targets the engine computes.
- Photos you choose to scan — barcode frames are processed on-device; nutrition-label photos are sent to our server to extract the printed nutrition facts and are not used for anything else.
Technical data
- Sync metadata — timestamps and device-generated identifiers that keep offline changes consistent across devices.
- Crash and error reports — if the app crashes, a diagnostic report (device model, OS version, stack trace) may be sent so we can fix it. Crash reports are not linked to your food or weight data.
- Subscription status — whether your subscription is active, via Apple and our subscription processor. We never see your card number.
3. How we use it
- To run the coaching. Your logs and weight trend feed the adaptive engine that computes your targets in kcal and g.
- To operate your household — showing shared meals and partner visibility exactly as you have consented to.
- To provide support when you contact us.
- To secure the service — rate limiting, abuse prevention and account protection.
- To improve MacroPair using aggregate, de-identified usage patterns — never your identifiable diary.
We do not use your personal data to train machine-learning models, and we do not build advertising profiles.
4. Household sharing
MacroPair's defining feature is a two-person household, so we are explicit about what linking means:
- Joining a household is mutual and consent-based — one partner invites, the other accepts.
- While linked, each partner can see the other's diary, weights, targets and progress, and can log entries to the other's day. Every entry records who created it.
- Either partner can leave at any time. Leaving — or removing a partner — immediately severs access in both directions, including access to history.
- Deleting your account removes your data from your former partner's view as part of the same action.
5. Service providers
We use a small number of processors to run MacroPair. Each receives only what its job requires:
| Provider | Role | What it handles |
|---|---|---|
| Railway (USA) | Cloud hosting | The MacroPair server and database — your account and logged data, encrypted in transit |
| Apple | Sign in with Apple; App Store billing | Provider sign-in identifiers; subscription payments (we never see payment details) |
| Google sign-in | Provider sign-in identifiers only | |
| RevenueCat | Subscription management | Subscription status tied to an anonymous app identifier |
| Sentry | Crash reporting | Crash diagnostics — no diary contents |
| Anthropic | Label-photo text extraction | Nutrition-label photos you scan, to read the printed facts panel |
We do not transfer your data to any party for that party's own purposes.
6. What we never do
- We never sell your personal data, and we never share it with data brokers or advertisers.
- We show no ads and use no third-party advertising or marketing SDKs in the app.
- We do not use your health data for marketing, and we do not "de-identify then monetize" individual-level records.
7. Retention and deletion
- Your data is kept for as long as your account exists, so your history can power your coaching.
- Delete your account in the app — Settings → Account → Delete account. Deletion is immediate: your profile, diary, weights, recipes, household links and provider sign-in links are removed from the production system. Encrypted backups age out on a fixed schedule shortly after.
- If you cannot access the app, email us from your account address and we will complete the deletion for you.
- Support emails are retained as ordinary business correspondence.
8. Security
- All traffic between the app and our servers uses TLS encryption.
- Passwords are hashed with scrypt; provider sign-ins are verified cryptographically against Apple's and Google's published keys.
- Access to any household's data is enforced by server-side authorization checks on every request, and our release process includes an automated cross-tenant isolation audit — a release does not ship if any account can read another's data outside a consented household.
- No system is perfectly secure. If a breach affects your data, we will notify you as required by law.
9. Your rights
Depending on where you live — including under the GDPR, UK GDPR, the California Consumer Privacy Act and the Texas Data Privacy and Security Act — you may have the right to:
- Access the personal data we hold about you, and receive a portable copy;
- Correct inaccurate data (most data is directly editable in the app);
- Delete your data (available in-app, always, to everyone);
- Object to or restrict certain processing;
- Not be discriminated against for exercising any of these rights.
To exercise a right, email support@macropair.com. We verify requests against the account's email address and respond within the timeframe your law requires. We do not sell or share personal information as defined by the CCPA, so there is nothing to opt out of. If you are in the EEA or UK, you may also lodge a complaint with your supervisory authority.
Washington State residents: our Consumer Health Data Privacy Policy covers the categories, sources and rights specific to the My Health My Data Act.
10. This website
macropair.com sets no cookies unless you opt in. If you choose "Allow analytics" in the consent banner, we use PostHog (US region) to measure visits, page engagement and where visitors come from — first-party only, never for advertising, never sold, no session recording. Choose "Essential only" and nothing is set beyond the stored answer itself; the site works identically. The TDEE calculator runs entirely in your browser — nothing you type in it is transmitted or stored. Standard web-server logs (IP address, request path, timestamp) are kept briefly for security and capacity purposes. Details: Cookie Notice.
11. Children
MacroPair is not directed to children under 13, and we do not knowingly collect personal information from them. Calorie tracking is an adult tool; if you believe a child has created an account, contact us and we will delete it.
12. Changes
If we change this policy in a way that matters, we will update the date at the top and note the change in the app before it takes effect. We will never quietly weaken the "what we never do" section.
13. Contact
HarbingerScope LLC (WhiteBoxForge) · Richmond, Texas, USA
support@macropair.com