Learn how Allerly collects, uses, and protects your personal information.
Effective Date: May 12, 2026
1. Introduction
Welcome to Allerly.
This Privacy Policy explains how Allerly collects, uses, stores, shares, and protects your personal data when you use the Allerly mobile application, website, services, and related technologies.
We are committed to protecting your privacy and processing your personal data transparently and in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR).
By using Allerly, you acknowledge that you have read and understood this Privacy Policy.
2. Who We Are
“Allerly,” “we,” “our,” or “us” refers to Allerly and its operators.
If you have questions about this Privacy Policy or your personal data, you may contact us at:
3. Information We Collect
We may collect the following categories of information.
3.1 Information You Provide
When you use Allerly, you may provide:
Name
Account credentials
Email address
User generated content
Profile information
Customer support messages
Dietary preferences
Survey responses
Allergy preferences
Payment related information
Food sensitivities
3.2 Automatically Collected Information
We may automatically collect:
Device information
Usage activity
Operating system
Interaction data
Browser type
Scan history
App version
Session information
IP address
Crash reports
Language settings
Analytics data
3.3 Camera and Scan Data
If you use scanning features, Allerly may process:
Barcode scans
Product images
Ingredient labels
Food packaging information
Uploaded photos
3.4 Location Information
With your permission, we may collect approximate or precise location information to:
Improve local recommendations
Show nearby grocery options
Enhance regional product matching
You may disable location access through your device settings.
3.5 Health Related Preferences
You may voluntarily provide allergy and dietary preference information.
This information is used only to personalize your experience and recommendations.
Allerly does not provide medical diagnosis or healthcare services.
4. How We Use Your Information
We may use your information to:
5. Legal Bases for Processing
Under GDPR and applicable laws, we process personal data based on:
Your consent
Performance of a contract
Legitimate interests
Legal obligations
Protection of vital interests
You may withdraw consent at any time where processing is based on consent.
6. AI and Automated Processing
Allerly may use artificial intelligence and automated systems to:
Analyze ingredient lists
Detect allergens
Generate product recommendations
Assess compatibility risks
Personalize user experiences
Automated outputs may not always be accurate or complete.
Users remain responsible for verifying information before consuming products.
7. Sharing of Information
We may share information with:
7.1 Service Providers
Third party vendors that help us operate the Services, including:
Cloud hosting providers
Analytics providers
Payment processors
Customer support platforms
Authentication providers
AI infrastructure providers
7.2 Business Transfers
If Allerly is involved in a merger, acquisition, financing, or asset sale, your information may be transferred as part of that transaction.
Analytics providers
Payment processors
Customer support platforms
Authentication providers
AI infrastructure providers
7.3 Legal Requirements
We may disclose information if required by law or if necessary to:
Comply with legal obligations
Protect rights and safety
Investigate fraud or abuse
Enforce our Terms and Conditions
7.4 With Your Consent
We may share information with third parties when you explicitly authorize us to do so.
8. Data Retention
We retain personal data only for as long as necessary to:
Provide the Services
Fulfill legal obligations
Resolve disputes
Enforce agreements
Improve the Services
Retention periods may vary depending on the type of data and legal requirements.
9. Data Security
We implement reasonable technical and organizational measures to protect your information.
These measures may include:
Encryption
Access controls
Secure infrastructure
Monitoring systems
Authentication safeguards
However, no system can guarantee absolute security.
10. International Data Transfers
Your information may be processed and stored in countries outside your country of residence.
Where required, we implement safeguards for international transfers in accordance with applicable data protection laws.
11. Your Privacy Rights
Depending on your jurisdiction, you may have rights including:
Access to your personal data
Correction of inaccurate data
Deletion of personal data
Restriction of processing
Data portability
Objection to processing
Withdrawal of consent
Complaint to a supervisory authority
To exercise your rights, contact us at privacy@allerly.nl.
12. Cookies and Tracking Technologies
Allerly may use cookies and similar technologies to:
Remember preferences
Analyze usage
Improve functionality
Measure performance
Support authentication
You may manage cookies through your browser or device settings.
13. Children’s Privacy
Allerly is not intended for children under the age required by applicable law without parental consent.
We do not knowingly collect personal data from children without appropriate authorization.
If you believe a child has provided personal data unlawfully, contact us immediately.
14. Third Party Services
Our Services may contain links or integrations with third party services.
We are not responsible for the privacy practices of third parties.
We encourage you to review their privacy policies before using external services.
15. Marketing Communications
We may send promotional communications where permitted by law.
You may opt out of marketing emails at any time using the unsubscribe link or by contacting us.
Service related messages may still be sent when necessary.
16. Changes to This Privacy Policy
We may update this Privacy Policy from time to time.
If material changes are made, we may notify users through the Services or other appropriate channels.
Your continued use of Allerly after updates become effective constitutes acceptance of the revised Privacy Policy.
17. Supervisory Authority
If you are located in the European Economic Area, you have the right to lodge a complaint with your local data protection authority.
In the Netherlands, the supervisory authority is:
Dutch Data Protection Authority
Autoriteit Persoonsgegevens
18. Contact Us
If you have questions, requests, or concerns regarding this Privacy Policy or personal data processing, contact us at: