Last Updated: January 2026
1. Introduction
Welcome to Sugar.no (“Sugar.no”, “we”, “us”, “our”), a service provided by INTENDUM LTD (“Company”). This Privacy Policy explains how we collect, use, disclose, and protect information when you use our website and mobile application (together, the “Service”).
The Service is available to users in the European Union/EEA and the United States, among other locations.
By using the Service, you agree to this Privacy Policy.
2. What the Service does (high-level)
Sugar.no helps you log meals and lifestyle signals and provides personalized insights. The Service is for informational purposes only and is not medical advice.
3. Information we collect
We collect information in the following categories:
3.1 Information you provide
- Account information: email, authentication details; name (optional).
- User content: meal logs (text/photos), notes, preferences, goals, and any information you choose to enter.
- Support communications: messages you send to us (e.g., via email or in-app support).
3.2 Information collected automatically
- Device & app data: device type, operating system, app version, language, time zone, identifiers (e.g., advertising ID where permitted), crash logs, diagnostic data.
- Usage data: interactions with features, screens viewed, session duration, referral data (if you use an invite link), and approximate location derived from IP address.
3.3 Payments and subscription data
- If you purchase a subscription via the Apple App Store, Apple processes the payment. We may receive limited information such as subscription status (active/expired), product identifier, and country/region.
- If you purchase via other authorized methods (e.g., web checkout), payments are processed by third-party payment providers. We do not store full card details.
4. How we use your information
We use information to:
- Provide and operate the Service (including personalization and core functionality)
- Process subscriptions and provide access to paid features
- Improve, test, and debug the Service (analytics, performance, crash diagnostics)
- Communicate with you (service updates, support responses, and important notices)
- Prevent fraud, abuse, and security incidents
- Comply with legal obligations and enforce our Terms
5. Legal bases for processing (EEA/UK/Switzerland)
Where GDPR (or similar laws) apply, we process personal data based on:
- Contract (to provide the Service)
- Consent (where required, e.g., certain marketing communications)
- Legitimate interests (security, product improvement, fraud prevention, service reliability)
- Legal obligations
6. How we share information
We do not sell your personal information.
We may share information with:
- Service providers (processors) that help us run the Service (hosting, analytics, crash reporting, customer support, email delivery, payment processors). They may process data only on our instructions and under contractual safeguards.
- Legal and safety: when required by law, to protect rights/safety, or to respond to lawful requests.
- Business transfers: if we are involved in a merger, acquisition, restructuring, or sale of assets (with appropriate safeguards).
7. Cookies and similar technologies (website)
Our website may use cookies and similar technologies for functionality and analytics. You can control cookies through your browser settings.
8. International data transfers
Your information may be processed outside your country/state, including the European Union and the United States. Where required, we rely on appropriate safeguards for international transfers (such as Standard Contractual Clauses or other lawful mechanisms).
9. Data retention
We keep information only as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required by law. You may request deletion (see Section 11).
10. Security
We use reasonable administrative, technical, and organizational measures to protect information. However, no method of transmission or storage is 100% secure.
11. Your rights and choices
11.1 EEA/UK/Switzerland privacy rights
Depending on your location, you may have rights to:
- Access, correct, or delete your personal data
- Object to or restrict certain processing
- Withdraw consent (where processing is based on consent)
- Request data portability (where applicable)
- Lodge a complaint with a supervisory authority
11.2 United States privacy rights
Depending on your state of residence, you may have rights to:
- Request access to personal information we hold about you
- Request deletion of certain personal information
- Request correction of inaccurate personal information
- Opt out of certain processing where applicable
Do Not Sell/Share: We do not sell personal information. We also do not share personal information for “cross-context behavioral advertising” in a way that would require an opt-out under certain state laws. If this changes, we will update this policy and provide required choices.
11.3 How to exercise your rights
To exercise any of the rights above, contact us at support@sugar.no. We may need to verify your request before completing it. You will not be discriminated against for exercising your rights.
Account deletion: You can request deletion by contacting support@sugar.no. We may retain certain information as required by law or for legitimate purposes (e.g., security and fraud prevention).
12. Children
The Service is not intended for children under 16. If we learn we have collected personal information from a child under 16, we will delete it.
13. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. We will post the updated version and change the “Last Updated” date. Continued use of the Service after updates means you accept the updated Privacy Policy.
14. Contact us
INTENDUM LTD
Vasili Michailidi 9
3026 Limassol, Cyprus
Tel: +357 25262283
Email: support@sugar.no