Privacy Policy

Last Updated: January 8, 2025

Summary: We collect minimal data necessary to provide our service. Your ingredient photos are processed but not permanently stored. We never sell your personal information to third parties.

1. Introduction

Welcome to Franken-Recipe ("we," "our," or "us"). We are committed to protecting your privacy and being transparent about how we collect, use, and share information about you when you use our mobile application and related services (collectively, the "Service").

This Privacy Policy explains our practices regarding data collection and use. By using Franken-Recipe, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide Directly

  • Account Information: Email address and password when you create an account
  • Profile Information: Optional profile details you choose to provide
  • Cooking Sessions: When you mark a recipe as cooked, we record the recipe name, servings, cooking time, ingredients used, and completion date
  • Recipe Feedback: Star ratings (1-5) and optional comments you provide on recipes you've cooked
  • Feedback & Support: Messages, feedback, or support requests you send to us

2.2 Information We Collect Automatically

  • Device Information: Device type, operating system version, unique device identifiers
  • Usage Data: Features used, time spent in app, interaction patterns
  • Log Data: IP address, access times, app crashes, and system activity

📸 About Your Ingredient Photos

We process your photos but do NOT permanently store them.

  • Photos are sent to Google Gemini AI for ingredient detection
  • Photos are processed in real-time and immediately discarded after analysis
  • We do not store, archive, or share your photos
  • Only the detected ingredient list (text) is saved with your recipes

2.3 Information from Third Parties

  • Social Login: If you sign in with Apple or Google, we receive your name and email from those services
  • Payment Providers: We receive transaction confirmations from Apple App Store and Google Play (we do NOT receive your full payment details)

3. How We Use Your Information

We use the information we collect to:

  • Provide the Service: Detect ingredients, generate recipes, save your favorites
  • Personalize Your Experience: Remember preferences, provide relevant suggestions
  • Improve Our Service: Analyze usage patterns to enhance features and fix bugs
  • Communicate With You: Send service updates, respond to support requests
  • Process Payments: Handle premium subscription transactions
  • Ensure Security: Detect fraud and abuse, protect user accounts

4. Data We Store (Detailed Breakdown)

What We Store:

Email & Password Stored securely with encryption
Saved Recipes Recipe details, ingredients list (text only)
Subscription Status Premium tier, expiry date
Cooking Sessions All users: recipe name, servings, cooking time, ingredients used, completion date (one entry per recipe)
Impact Statistics All users: calculated estimates of money saved vs. eating out, food waste prevented (derived from cooking sessions)
Recipe Feedback All users: star ratings (1-5) and optional comments on cooked recipes
Detailed Analytics Premium only: cooking streaks, weekly/monthly trends, most used ingredients
Chat History Premium only: AI Chef conversations
Meal Plans Premium only: saved meal prep plans

What We Do NOT Store:

  • ❌ Your photos (processed in real-time, immediately deleted)
  • ❌ Payment card details (handled by Apple/Google)
  • ❌ Precise location data
  • ❌ Contacts or phone numbers
  • ❌ Health data beyond nutrition information in recipes

5. Data Sharing & Third Parties

5.1 Service Providers We Use

5.2 Community Recipes Feature (Premium)

Premium users can discover popular recipes that match their ingredients. Here's how this works:

  • What's Shared: Recipe names, ingredients list, and aggregate statistics (average rating, number of cooks)
  • What's NOT Shared: Your identity, personal information, or individual feedback - all data is anonymized
  • How Matching Works: We compare your scanned ingredients against community recipes to show relevant matches
  • Opt-Out: Your recipes are only included in community data if you rate them. Don't rate = don't share

5.3 We Never:

  • Sell your personal data to advertisers or data brokers
  • Share your ingredient photos with third parties for marketing
  • Use your data for targeted advertising
  • Share your information without your consent (except as required by law)

6. Data Security

We implement enterprise-grade security measures to protect your data:

6.1 Encryption & Authentication

  • All data transmitted using TLS/SSL encryption
  • Passwords hashed using secure algorithms (never stored in plain text)
  • Strong password requirements: minimum 8 characters with uppercase, lowercase, numbers, and special characters
  • JWT-based authentication with secure token handling

6.2 API Protection

  • Rate Limiting: All API endpoints are protected with intelligent rate limiting to prevent abuse
  • Brute Force Protection: Login attempts limited to 5 per 15 minutes per IP address
  • Input Validation: All user inputs are sanitized and validated to prevent injection attacks
  • Image Size Limits: Maximum 10MB per upload to prevent denial of service

6.3 Premium Security

  • Receipt Validation: All in-app purchases verified directly with Apple App Store and Google Play
  • Server-Side Validation: Premium features validated on our servers, not client-side
  • Secure Storage: Purchase receipts stored as secure hashes, never in plain text

6.4 Infrastructure Security

  • Database hosted with Row-Level Security (RLS) policies
  • Access to user data restricted to authorized personnel only
  • Regular security audits and updates
  • Automatic cleanup of expired data and sessions

7. Your Rights & Choices

You have the following rights regarding your data:

  • Access: Request a copy of all data we have about you
  • Correction: Update or correct your account information
  • Deletion: Request deletion of your account and all associated data
  • Export: Download your saved recipes and data
  • Opt-out: Disable optional analytics and marketing communications

To exercise these rights, contact us at privacy@frankenrecipe.app

8. Data Retention

  • Active Accounts: Data retained while your account is active
  • Deleted Accounts: All personal data deleted within 30 days of account deletion
  • Anonymized Analytics: Aggregated, non-identifiable usage statistics may be retained indefinitely
  • Legal Requirements: Some data may be retained longer if required by law

9. Children's Privacy

Franken-Recipe is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

10. International Data Transfers

Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses where applicable.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new policy on this page with an updated date
  • Sending an email notification for significant changes
  • Displaying a notice within the app

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Your Privacy Matters: We believe in transparency and giving you control over your data. If you ever have concerns about how your information is being used, don't hesitate to reach out.