VOID 隐私政策

生效日期：2025年12月20日 | 最新修订：2026年5月21日

欢迎使用 VOID（以下简称"本应用"）。本应用由 河南雀科信息科技有限公司（以下简称"我们"），注册地址位于【待补充】，负责运营和管理。我们深知个人健康数据的高度敏感性与私密性，并始终将保护您的隐私作为我们开发与运营的最高准则。本《隐私政策》将透明地向您说明我们如何收集、使用、存储、共享及保护您的个人信息。

🔒 核心隐私承诺：
1. 我们绝对不会将您的健康数据（包括 Apple HealthKit 数据）出售给任何第三方或用于广告营销。
2. 您的体重、饮水量、心情日志、运动等健康数据仅存储在您的设备本地及您的个人 iCloud 空间，不会上传至我们的服务器。
3. 您的断食记录与饮食记录为提供跨设备同步服务会加密传输至我们的自有服务器，详见下方说明。
4. 所有网络传输均采用 TLS 1.2/1.3 加密协议，服务器数据采用行业标准安全措施进行保护。

一、我们收集的信息及其使用目的

1. 账号与身份信息

为了保障账号安全并提供跨设备同步功能，我们仅支持通过 Apple 登录 (Sign in with Apple) 创建账号。我们仅获取 Apple 提供的匿名用户标识符，不收集您的真实姓名或私人邮箱（除非您在 Apple 登录时主动选择授权）。我们不记录、不保存您的任何密码。

2. 断食追踪数据

为了向您提供核心的断食追踪服务，我们需要记录以下信息：

断食日志：包括您的断食计划类型、开始与结束时间、计划时长以及目标达成状态。
使用目的：以上数据用于在应用内为您生成数据图表、计算代谢阶段、维护连胜记录以及提供个性化的健康建议。
数据同步：为了支持跨设备数据恢复与同步，您的断食记录将在您结束每次断食时，通过加密通道自动同步至我们位于中国大陆境内的自有服务器。

3. 饮食与热量记录

当您手动记录饮食或使用 AI 拍照识别食物时：

饮食记录：您记录的食物名称、热量、营养成分等信息将通过加密通道同步至我们的自有服务器，以便在多设备间保持数据一致。
本地缓存：饮食记录同时会在您的设备本地进行缓存，确保离线状态下也能正常使用。

4. 仅本地存储的健康数据

以下数据 仅存储在您的设备本地及您的个人 iCloud 私有空间，不会上传至我们的服务器：

体重记录
饮水量记录
心情日志
运动记录
每周计划

5. AI 视觉分析数据需授权

当您使用"拍照识别食物"功能时：

您上传的图片将通过加密通道发送至由阿里云提供的 AI 模型（通义千问视觉大模型）进行成分识别与热量估算。
隐私保障：图片仅用于即时推理分析，分析完成后，图片不会在我们的服务器或阿里云服务器上进行永久留存，也不会被用于任何模型训练。

6. Apple HealthKit 整合需授权

经您明确授权同意后，本应用将通过 Apple 的 HealthKit 框架读取或写入您的健康数据（如步数、活动消耗、静息能量、体重等）。

严格限制：我们承诺遵守 Apple App Store 审查指南的规定，绝不会将从 HealthKit 框架中获得的数据用于任何广告、营销、数据挖掘或其他非应用核心功能的用途。HealthKit 数据仅在您的设备本地使用，不会上传至我们的服务器。

7. 游戏化与账号数据

为了确保您的账号数据的安全恢复与跨设备一致性，以下汇总数据将通过加密通道同步至我们的自有服务器：

应用内虚拟货币余额（细胞币）
断食连胜记录
经验值 (XP) 与等级
订阅状态

8. 产品交互与故障分析数据

为了判断核心功能是否易用、定位同步或登录等问题，我们会收集少量一方产品交互数据，例如 App 启动、页面切换、开始/结束断食、记录饮水/体重/饮食、登录结果等事件。

使用目的：仅用于功能使用率分析、产品体验优化和故障排查。
隐私边界：分析事件不会包含您的体重数值、身高、具体食物名称、热量、营养成分、照片、邮箱、token 等敏感内容。
不用于追踪：我们不会将这些数据用于第三方广告，也不会进行跨 App 或跨网站追踪。

二、信息的存储与同步机制

1. 本地优先存储

您的所有健康数据默认使用 Apple SwiftData 技术加密存储于您的设备本地。您的登录凭证令牌存储于 iOS 系统级别的安全区域 (Keychain) 中。

2. iCloud 私有库同步

如果您开启了 iCloud，您的本地 SwiftData 数据库将通过 Apple CloudKit 框架自动加密同步至您的私有 iCloud 空间。该同步过程由 Apple 系统框架自动管理，数据端对端加密，我们无法访问您的 iCloud 私有数据。

3. 自有服务器同步

为了提供跨设备数据恢复功能（尤其是在用户未开启 iCloud 的情况下），您的断食记录、饮食记录和游戏化数据将通过 TLS 1.2/1.3 加密协议同步至我们在 中国大陆境内 的自有服务器。服务器端数据采用访问控制与加密存储措施进行保护。

4. 数据保留期限

在您的账号处于正常使用状态期间，我们将持续保留您的数据以提供服务。当您主动注销账号后，我们将在 30 个自然日内 从服务器上永久、不可逆地删除与您账号关联的所有数据。

三、数据共享与第三方披露

我们坚持最小化披露原则。除以下情形外，我们绝不向任何第三方共享您的数据：

合法合规：为遵守适用的法律法规、法院命令或政府机构的强制性要求。
服务提供商：如提供 AI 推理能力的服务商（仅限用于食物图片分析），这些服务商受到严格的数据保密协议（NDA）约束。

我们坚决不包含任何第三方广告 SDK，也绝不进行跨应用追踪。

四、您的用户权利

您对您的个人信息拥有完全的控制权，并可以随时行使以下权利：

查阅与更正：您可以在应用内随时查看、编辑或删除您记录的任何一条断食或饮食数据。
撤销授权：您可以在 iOS 系统设置中随时关闭 HealthKit、相机或相册的访问权限。
数据导出：您可以通过应用内功能导出您的个人健康数据。
彻底注销账号：您可以在"设置 → 账号安全"页面发起账号注销申请。一旦注销，我们在服务器上与您关联的所有数据将在 30 个自然日内被永久、不可逆转地抹除。

五、未成年人隐私保护

本应用并非为 13 周岁（或您所在司法管辖区规定的其他法定最低年龄）以下的未成年人设计。我们不会故意收集 13 周岁以下儿童的个人信息。如果我们发现无意中收集了儿童信息，将立即采取措施予以删除。

六、适用法律及争议解决

本隐私政策的订立、执行、解释及争议的解决均适用中华人民共和国法律（为本政策之目的，不包括香港特别行政区、澳门特别行政区及台湾地区的法律）。如双方就本隐私政策或其执行发生任何争议，应尽量友好协商解决；协商不成时，任何一方均可向我们所在地有管辖权的人民法院提起诉讼。

七、政策变更与联系我们

随着业务发展及法律法规的变化，我们可能会不定期更新本政策。重大更新将通过应用内弹窗显著通知您。

如您对本隐私政策有任何疑问、意见或建议，请通过以下方式联系我们的隐私保护团队：

邮箱：myqq246@qq.com

VOID Privacy Policy

Effective Date: Dec 20, 2025 | Last Updated: May 21, 2026

Welcome to VOID ("the App"). VOID is operated by Henan Queke Information Technology Co., Ltd., registered at [To be supplemented]. We understand that your health data is deeply personal and highly sensitive. "Privacy First" is the foundational principle of our product design. This Privacy Policy outlines how we collect, use, store, share, and protect your personal information in a transparent manner.

🔒 Core Privacy Commitments:
1. We will NEVER sell your health data (including Apple HealthKit data) to any third parties or use it for advertising purposes.
2. Your weight, water intake, mood logs, and exercise data are stored exclusively on your device and in your personal iCloud container — they are never uploaded to our servers.
3. Your fasting records and food intake records are synced to our servers via encrypted channels to enable cross-device synchronization, as described below.
4. All network transmissions use TLS 1.2/1.3 encryption, and server-side data is protected with industry-standard security measures.

1. Information We Collect and How We Use It

Account and Identity Information

To ensure account security and enable cross-device synchronization, we exclusively use Sign in with Apple. We only receive an anonymous user identifier provided by Apple and do not collect your real name or personal email (unless you explicitly choose to share it via Apple). We do not record or store any passwords.

Fasting Tracking Data

To provide core fasting tracking services, we process:

Fasting Logs: Fasting plan type, start/end timestamps, planned duration, and goal achievement status.
Purpose: This data is used to generate visual charts, calculate metabolic stages, maintain streak records, and provide personalized coaching advice within the app.
Data Sync: To support cross-device data recovery and synchronization, your fasting records are automatically synced to our proprietary servers located in mainland China via encrypted channels upon completion of each fasting session.

Diet and Calorie Records

When you manually log meals or use AI food recognition:

Diet Records: Food names, calorie counts, and nutritional information you record are synced to our servers via encrypted channels to maintain data consistency across devices.
Local Cache: Diet records are also cached locally on your device to ensure offline functionality.

Local-Only Health Data

The following data is stored exclusively on your device and in your personal iCloud private container, and is never uploaded to our servers:

Weight records
Water intake records
Mood logs
Exercise records
Weekly plans

AI Vision Analysis Data Requires Authorization

When you use the "Snap to Log" feature:

Images you upload are transmitted via encrypted channels to our AI service provider (Alibaba Cloud Qwen Vision Model) for food recognition and calorie estimation.
Privacy Guarantee: Images are only used for immediate real-time analysis. Once the analysis is complete, the images are not permanently stored on our servers or the provider's servers, nor are they used for AI model training.

Apple HealthKit Integration Requires Authorization

With your explicit permission, the App reads from or writes to Apple's HealthKit database (e.g., step count, active energy, basal energy, body weight).

Strict Limitations: In compliance with Apple's App Store Review Guidelines, we will never use data obtained from the HealthKit framework for advertising, marketing, data mining, or any non-core app functionality. HealthKit data is processed locally on your device and is not uploaded to our backend servers.

Gamification and Account Data

To ensure secure recovery and cross-device consistency of your account data, the following aggregated data is synced to our servers via encrypted channels:

In-app virtual currency balance (Cellular Coins)
Fasting streak records
Experience points (XP) and level
Subscription status

Product Interaction and Diagnostics Data

To understand whether core features are easy to use and to diagnose issues such as login or sync failures, we collect limited first-party product interaction events, such as app launch, tab changes, fasting start/end, water/weight/meal logging, and login outcomes.

Purpose: Used only for feature usage analytics, product improvement, and troubleshooting.
Privacy Boundary: These analytics events do not include body weight values, height, specific food names, calories, nutrition details, photos, email addresses, tokens, or other sensitive content.
No Tracking: We do not use this data for third-party advertising or cross-app/cross-site tracking.

2. Data Storage and Synchronization

Local-First Storage

All your health data is encrypted and stored locally on your device by default using Apple's SwiftData technology. Login tokens are securely stored in the iOS Keychain.

iCloud Private Database Sync

If you have iCloud enabled, your local SwiftData database is automatically encrypted and synced to your private iCloud container via Apple's CloudKit framework. This synchronization is managed entirely by Apple's system framework with end-to-end encryption. We cannot access your iCloud private data.

Proprietary Server Sync

To provide cross-device data recovery (especially for users without iCloud enabled), your fasting records, diet records, and gamification data are synced to our proprietary servers located in mainland China via TLS 1.2/1.3 encryption. Server-side data is protected with access controls and encrypted storage measures.

Data Retention

We retain your data for as long as your account remains active. Upon account deletion, all data associated with your account will be permanently and irreversibly removed from our servers within 30 calendar days.

3. Data Sharing and Third-Party Disclosure

We adhere to the principle of data minimization. We do not share your data with any third parties except under the following circumstances:

Legal Compliance: To comply with applicable laws, court orders, or mandatory requests from government agencies.
Service Providers: Such as AI inference providers (strictly for food image analysis). These providers are bound by strict Non-Disclosure Agreements (NDAs).

We firmly refuse to include any third-party advertising SDKs or engage in cross-app tracking.

4. Your User Rights

You retain full control over your personal information and may exercise the following rights at any time:

Access and Rectification: You can view, edit, or delete any fasting or dietary record directly within the app.
Revoke Authorization: You can revoke access to HealthKit, Camera, or Photos at any time via iOS Settings.
Data Export: You can export your personal health data through the in-app export feature.
Permanent Account Deletion: You can initiate an account deletion request in "Settings → Account Security." Upon deletion, all data associated with your account on our servers will be permanently and irreversibly erased within 30 calendar days.

5. Children's Privacy

The App is not intended for children under 13 (or the equivalent minimum age in your relevant jurisdiction). We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected such data, we will take immediate steps to delete it.

6. Governing Law and Dispute Resolution

For users in mainland China, the establishment, execution, interpretation, and dispute resolution of this Privacy Policy shall be governed by the laws of the People's Republic of China. Any disputes shall first be resolved through friendly negotiation. If negotiation fails, either party may bring a lawsuit before a competent court in our jurisdiction.

For users outside mainland China, the laws of your jurisdiction shall apply.

7. Policy Updates and Contact Us

We may update this Privacy Policy from time to time. Significant changes will be prominently communicated to you via in-app notifications.

If you have any questions, comments, or concerns regarding this Privacy Policy, please contact our privacy team at:

Email: myqq246@qq.com