KetoCypher pairs your food log with real biometric data — heart rate, sleep, glucose, weight, electrolytes — and shows you exactly which foods and patterns move your body.
And yes — every entry is encrypted on your device. We can't read your data, even if compelled. That's the architecture, not the headline.Illustrative mockup — actual UI is in development.
KetoCypher is built for a specific reader: someone running keto or carnivore who wants to know what's actually working. Not generic advice. Not a database that rounds ribeye and ground beef to the same row. Real signals, accurate food, and electrolytes treated like the first-class metric they are.
Accurate organ meats. Real beef cuts that distinguish ribeye from chuck. Animal-fat profiles other apps round to zero. Electrolytes — sodium, potassium, magnesium — promoted alongside protein and net carbs, not buried as micronutrients.
Reads heart rate, sleep, glucose, weight, and electrolytes from Google Health Connect when it's connected — or enter them by hand. Either way they're paired against your food log locally, on your phone, so "Why does my energy drop when sodium is low?" becomes answerable with your data, not generic claims.
Every value is encrypted on your device before anything leaves. The server can't read it. We're not charging for that — it's the floor everything else stands on. A side-effect of doing the math locally is that we never see your data.
Each day, KetoCypher pairs your food log with your biometrics — from Health Connect, or entered by hand — and surfaces the single-signal join in plain English. Not a wall of charts. Not aggregate advice. One pattern at a time, computed on your phone.
Most databases collapse "beef, ground" and "ribeye" into one entry. Drop animal-fat profiles. Treat organ meats as an afterthought. KetoCypher's food data is curated for the diets it serves — backed by USDA FoodData Central, with carnivore-specific overrides where the mainstream gets it wrong.
Electrolyte loss is the number-one failure point in keto adaptation. Most apps bury sodium, potassium, and magnesium as micronutrients. KetoCypher promotes them to first-class metrics — per-meal targets, daily totals, deficit alerts, and correlations to your sleep and energy.
No new wearables. No separate logins. KetoCypher reads from Google Health Connect — the single source of truth on Android — and pairs your weight, heart rate, sleep, and glucose against your food log. The data stays in your device's sandbox; nothing is uploaded to "personalize" anything.
Every food entry, weight reading, and biometric value is encrypted on your phone before it leaves. The server stores ciphertext only. There is no admin key, no break-glass, no "email us to reset." A 12-word recovery phrase you generated on first install is the only off-device record of your master key.
It isn't a marketing line — it's the architecture. Built that way because the alternative is a backdoor.
The things prospective users keep asking. If yours isn't here, write to hello@ketocypher.com.
Three things. One: the food data is curated for keto and carnivore — accurate organ meats, real beef cuts, animal fats not rounded to zero. Two: sodium, potassium, and magnesium are first-class metrics tracked alongside protein and carbs, with daily targets and deficit alerts. Three: your food log is correlated against real biometric data (heart rate, sleep, glucose, weight) from Google Health Connect — locally, on your phone.
Privacy is a bonus: nothing leaves your device in plaintext. Most other trackers monetize your food log and health data; we cannot, by design.
Yes, genuinely free — full app, all features, forever. Your food log, weight, and biometrics live encrypted on your phone. We see only your email address and an unguessable password verifier; no logged data, no biometric data, no telemetry.
The catch: cloud backup is the paid upgrade. Premium Backup ($2/mo or $20/yr) stores an encrypted copy of your data on our servers so you can recover after losing your phone without using your recovery phrase. The server still can't read it.
No — but if you have one that talks to Google Health Connect (Fitbit, Garmin, Oura, Whoop, Pixel Watch, Samsung Health), KetoCypher gets a lot smarter. Without one, you can still manually enter weight and feel-energy, and you'll get carnivore-native nutrition tracking plus electrolyte intelligence. With one, you also get sleep, heart rate, and glucose correlated to your food log.
Two recovery paths. Your 12-word recovery phrase (generated on-device at first install) restores your data on any new phone — same as your password would, since both unwrap the same master key. Free tier: use the phrase + a recent .kcbak file you exported. Premium Backup: the phrase pulls down your encrypted cloud backup automatically.
Keep the phrase somewhere safe — written down, password manager, both. It is the only off-device record of your master key.
Honestly: we cannot help, and that's the point. There is no "email us to reset." A reset without the phrase intentionally destroys the encrypted data, because the alternative is a server-held backdoor — and the moment that exists, the privacy guarantee is gone.
So: write the phrase down. Put a photo in your password manager. The 90 seconds it takes to save it properly is the entire price of admission for zero-access privacy.
Android V1 enters closed beta soon — join the waitlist below and you'll get the install link when it's ready. iOS is on the roadmap but unscheduled; V1 ships Android-first because Health Connect is the cleanest way to pull biometrics automatically (manual entry works regardless). iOS HealthKit support follows once V1 is stable.
The base dataset is USDA FoodData Central, the same source most reputable trackers use. The difference is the curation layer on top: KetoCypher overrides USDA entries that get organ meats, beef cuts, or animal fats wrong, and adds entries the USDA doesn't track precisely (e.g. distinguishing tallow from beef fat from suet). All macros stored at 0.1 g precision.
Custom foods you create stay on your device — they're not crowdsourced.
It means the server cannot decrypt your data — even if it wanted to, even if compelled by court order, even if breached. Your master key is derived from your password (via Argon2id) on your phone and never sent to us. Each value is encrypted with XChaCha20-Poly1305 before it leaves the device. The server stores ciphertext only.
The "zero-access" part is falsifiable: a complete inventory of what the server sees is published, and there's no admin override anywhere in the schema. The architecture is the guarantee — not a privacy promise.
Anytime. Free and Premium users can export a portable .kcbak file containing all your data (still encrypted with your master key). You can re-import it into a fresh install — or keep it as your own off-device backup forever, even if you stop using KetoCypher. We deliberately built export as a first-class feature, not a buried setting.
The free tier is genuinely free — full app, all features, on your phone. Premium adds encrypted cloud backup, nothing else.
* We price Premium to cover infrastructure and maintenance — nothing more — and keep it as low as we can. Costs may shift over time; if pricing ever changes, we'll say so upfront.
Get notified when the Android beta opens. No drip campaigns. Two emails, one to confirm sign-up and one when beta is ready to install.
Two emails, one to confirm sign-up and one when beta is ready to install.
Want off the list? Reply to your confirmation email or email hello@ketocypher.com and we'll remove you.