The Short Version
- We collect only what's necessary to provide our service
- We NEVER sell your data to anyone, ever
- You can delete your account and all data anytime
- We use industry-standard security measures
- We're transparent about how we use your information
Introduction
Welcome to Chefie! This Privacy Policy explains how Chefie ("we", "us", or "our") collects, uses, stores, and protects your personal information when you use our mobile application and services.
By using Chefie, you agree to the collection and use of information in accordance with this policy.
We Do Not Sell Your Personal Information
Our Commitment to You
Chefie does NOT sell, rent, or trade your personal information to third parties for monetary or other valuable consideration. We have never sold user data and we never will.
- ✓ We do NOT sell your data to advertisers
- ✓ We do NOT sell your data to data brokers
- ✓ We do NOT sell your data to marketing companies
- ✓ We do NOT share your data for cross-context behavioral advertising
Your data is used solely to provide you with Chefie's services. This commitment applies to all users, regardless of location.
Information We Collect
Personal Information You Provide
Account Information
- Email address (required for account creation)
- Password (stored securely using bcrypt hashing - we NEVER store plaintext passwords)
- Account creation date and last login timestamp
User-Generated Content
- Meal plans you create or generate
- Recipes you import, create, or favorite
- Pantry inventory items and expiration dates
- Shopping lists
- Dietary preferences and restrictions
- Cooking skill level and preferences
- Custom artisan recipes and cocktail recipes
- Photos you upload for recipe import
Information Automatically Collected
Usage Data
- App interactions and feature usage (via Firebase Analytics)
- Screen views and navigation patterns (via Firebase Analytics)
- Error logs and crash reports (via Firebase Analytics)
- Device type and operating system version
- App version
- Timestamp of actions within the app
- Push notification device tokens (if you grant notification permissions)
What We DON'T Collect
We do NOT collect:
- ✗ Advertising identifiers (IDFA/AAID)
- ✗ Device fingerprints
- ✗ Location data
- ✗ Contacts or photos (except those you explicitly share with the app)
App Permissions
Chefie requests the following permissions to provide its features:
Camera Access
- Why we need it: To allow you to take photos of recipes for import
- When we request it: Only when you tap "Import from Photo"
- What we do with it: Process the photo through AI to extract recipe information
- Can you deny it? Yes - you can still use all other features
Photo Library Access
- Why we need it: To allow you to select existing recipe photos from your device
- When we request it: Only when you tap "Choose from Library"
- What we do with it: Upload selected photos to Gemini AI for recipe parsing
- Can you deny it? Yes - you can still manually enter recipes
Internet/Network Access
- Why we need it: To sync your data, generate meal plans, and use AI features
- When we request it: Automatically when app launches
- What we do with it: Communicate with our backend server and Google's Gemini AI
- Can you deny it? The app requires internet for core features
Push Notifications
- Why we need it: To instantly notify you when voice assistants (Alexa, Google Home) make changes to your inventory or shopping lists
- When we request it: When you first login to the app
- What we do with it: Send silent background notifications that trigger data sync (you won't see notification banners)
- Can you deny it? Yes - voice assistant changes will still sync when you open the app, just not instantly
- Note: These are "silent" notifications that don't interrupt you - they just trigger background data syncing
Permission Management
You can revoke permissions at any time through your device settings:
- iOS: Settings -> Chefie -> Permissions
- Android: Settings -> Apps -> Chefie -> Permissions
How We Use Your Information
Core Functionality
- Account Management - Create and maintain your user account
- Meal Planning - Generate personalized meal plans based on your preferences
- Recipe Management - Store and organize your favorite recipes
- Inventory Tracking - Help you manage your pantry, fridge, and freezer
- Shopping Lists - Generate smart shopping lists from your meal plans
- AI Features - Process your requests through Google's Gemini AI
Service Improvement
- Analyze usage patterns to improve app performance
- Identify and fix bugs and crashes
- Develop new features based on user needs
Communication
- Send service-related notifications (e.g., account verification)
- Respond to your support requests
- Provide important updates about the app
Third-Party Services
Chefie uses the following third-party services that may collect information:
Google Gemini AI
- What we share: Recipe text, images you upload, your dietary preferences, inventory data
- Purpose: To generate meal plans, parse recipes, and provide AI-powered features
- Data Processing Location: Google's AI servers (may be processed in multiple regions globally)
- Data Retention: Google processes data transiently and does not store your prompts for model training
- Privacy Policy: Google Privacy Policy
Google Cloud Platform
- What we share: All data stored on our backend servers
- Purpose: Hosting our backend services and database
- Data Storage Location: United States (us-west1 region)
- Privacy Policy: Google Cloud Privacy
- Security: Data is encrypted at rest and in transit using industry-standard encryption
Firebase Analytics
- What we collect: App usage patterns (screen views, feature usage), device information (model, OS version), anonymous analytics identifiers
- Purpose: To understand how users interact with Chefie and improve the app experience
- Data Collected:
- Screen views and navigation patterns
- Feature usage (e.g., meal plan generation, recipe favorites)
- Device type and operating system version
- User properties (subscription tier, user ID)
- Crash and error reports
- What we DON'T collect: Location data, advertising identifiers (IDFA/AAID), personally identifiable information beyond your user ID
- Data Retention: Analytics data is retained for 14 months by default
- Privacy Policy: Firebase Privacy and Security
- Opt-Out: You cannot currently opt out of analytics, but we only collect usage data to improve the app
Firebase Cloud Messaging (Push Notifications)
- What we collect: Device push notification tokens, platform type (Android/iOS), device information
- Purpose: To send you instant notifications when voice assistants (Alexa, Google Home) make changes to your inventory or shopping lists
- Data Collected:
- Firebase Cloud Messaging (FCM) device tokens
- Platform type (Android or iOS)
- Notification delivery status
- How we use it: Silent push notifications sync your data when voice assistants make changes, so you see updates instantly
- Permission Required: Yes - you must grant notification permissions when prompted
- Can you opt out? Yes - deny notification permissions or revoke them in device settings
- Privacy Policy: Firebase Privacy and Security
No Advertising
We do NOT use:
- ✗ Advertising networks
- ✗ Social media pixels
- ✗ Third-party marketing tools
- ✗ Cross-site tracking
- ✗ Behavioral advertising
Note: We use Firebase Analytics solely to improve the app experience, not for advertising purposes.
Data Storage and Security
How We Protect Your Data
Security Measures
- All passwords are hashed using bcrypt (12 rounds) before storage
- Data transmission is encrypted using HTTPS/TLS
- JWT tokens for secure authentication (30-day expiration)
- Backend API rate limiting to prevent abuse
- Regular security updates and dependency patching
Data Location
- Your data is stored on secure servers provided by Google Cloud Platform
- Server location: United States (us-west1)
- Data is backed up regularly to prevent loss
Data Retention
- Active Accounts: We retain your data as long as your account is active
- Deleted Accounts: When you delete your account, all associated data is permanently deleted within 30 days
- Backup Data: Deleted data may persist in backups for up to 90 days before permanent removal
Security Vulnerability Reporting
If you discover a potential security vulnerability in Chefie, please report it responsibly to chefieInfo@gmail.com. We take all security reports seriously and will:
- Acknowledge your report within 48 hours
- Investigate and assess the issue
- Work to resolve confirmed vulnerabilities promptly
- Keep you informed of our progress
Your Rights and Choices
You have the following rights regarding your personal information:
Access and Export
- View all your data within the app at any time
- Request a copy of your data by contacting chefieInfo@gmail.com
Modification
- Update your profile settings, dietary preferences, and recipes anytime
- Change your password in the app settings
Deletion
- Delete individual recipes, meal plans, or inventory items
- Delete your entire account and all associated data via:
- In-app settings (Account -> Delete Account)
- Email request to chefieInfo@gmail.com
Data Portability
- Export your recipes and meal plans manually from the app
- Request a complete data export by emailing chefieInfo@gmail.com
Children's Privacy
Chefie is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.
If Your Child Has Created an Account
If you are a parent or guardian and believe your child under 13 has created an account or provided us with personal information, we will take immediate action:
How to Request Deletion:
- Email us at chefieInfo@gmail.com with subject line: "Minor Account Deletion Request"
- Provide the child's email address used to create the account
- Include proof of parental/guardian relationship (we may request verification)
What We Will Do:
- Acknowledge your request within 24 hours
- Verify your identity as parent/guardian
- Permanently delete the account and all associated data within 72 hours
- Send you confirmation once deletion is complete
California Privacy Rights (CCPA)
If you are a California resident, you have additional rights:
- Right to Know: Request details about the personal information we collect
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: Opt-out of the "sale" of personal information (Note: We do NOT sell your data)
- Right to Non-Discrimination: We will not discriminate against you for exercising your rights
To exercise these rights, email chefieInfo@gmail.com with your request.
European Privacy Rights (GDPR)
If you are in the European Economic Area (EEA), you have rights under GDPR:
- Legal Basis for Processing: We process your data based on your consent and to provide our services
- Right to Access: Request a copy of your personal data
- Right to Rectification: Correct inaccurate data
- Right to Erasure: Request deletion of your data
- Right to Restriction: Limit how we use your data
- Right to Data Portability: Receive your data in a portable format
- Right to Object: Object to certain types of processing
- Right to Withdraw Consent: Withdraw consent at any time
To exercise these rights, email chefieInfo@gmail.com.
International Data Transfers
Your information may be transferred to and maintained on servers located outside your country, state, or jurisdiction where privacy laws may differ. By using Chefie, you consent to such transfers.
We ensure appropriate safeguards are in place to protect your data in compliance with applicable data protection laws.
Data Breach Notification
In the unlikely event of a data breach that affects your personal information, we will:
- Notify affected users within 72 hours
- Provide details about the breach
- Explain steps we're taking to mitigate harm
- Offer guidance on protective measures you can take
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Posting the new Privacy Policy in the app
- Updating the "Last Updated" date
- Sending an email notification for significant changes
Your continued use of Chefie after changes constitutes acceptance of the updated policy.
Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data:
Get in Touch
Email: chefieInfo@gmail.com
Response Time: We aim to respond to all inquiries within 48 hours.
Chefie Support
3405 Bratton Heights
Austin, TX 78728
Compliance
This Privacy Policy complies with:
- Apple App Store Requirements
- Google Play Store Data Safety Requirements
- California Consumer Privacy Act (CCPA)
- General Data Protection Regulation (GDPR)
- Children's Online Privacy Protection Act (COPPA)