Privacy Policy

We collect the following categories of information when you use FridgeChef:

Account Information

When you register, we collect your full name, email address, username, password (stored as a bcrypt hash — never in plain text), and optional profile avatar. If you sign in with Google, we receive your Google account ID and email from Google's OAuth service.

Device Information

We assign a unique device identifier to your installation. We also store your Expo push notification token to deliver in-app alerts and reminders to your device.

Location Information

With your permission, we collect your approximate country, city, and precise GPS coordinates (latitude and longitude) to power geofencing grocery reminders available on Plus and Chef plans. Location data is only collected when the feature is actively enabled.

Camera and Images

When you use the ingredient scanning feature, photos you capture are temporarily sent to OpenAI's Vision API for ingredient detection. Images are not stored on our servers after processing is complete.

Usage and Activity Data

We track daily recipe generation counts, daily scan counts, last active timestamp, saved favourite recipes, recipe interactions, shopping lists, and meal plans to provide and personalise our service.

Chat and Social Data

If you use in-app messaging, we store your conversations and messages to deliver them to recipients. Friendship connections and discoverability preferences are also stored.

Subscription and Billing Data

Your subscription tier (Basic, Plus, or Chef) is stored in our database. Payment processing is handled entirely by RevenueCat and the respective app store (Google Play). We do not store any credit card or payment details on our servers.

• To create and manage your account and authenticate your identity.
• To generate AI-powered recipe suggestions based on your ingredients.
• To analyse camera images and identify ingredients via OpenAI's Vision API.
• To send push notifications for expiration reminders, meal plan alerts, and feature updates.
• To enforce subscription tier limits (daily recipe and scan quotas).
• To power geofencing reminders when you are near a grocery store (Plus and Chef plans).
• To enable social features such as in-app messaging and community discovery.
• To process and verify in-app purchases via RevenueCat webhooks.
• To respond to contact form submissions and support requests.
• To maintain security, prevent fraud, and debug issues.

FridgeChef integrates with the following third-party services. Each has its own privacy policy governing how they handle data shared with them:

• OpenAI — processes camera images for ingredient detection. Images are transmitted over HTTPS and are not retained after analysis.
• Google Sign-In (OAuth 2.0) — used for optional social login. We receive only your Google ID and email address.
• RevenueCat — manages in-app subscriptions and purchase verification. Payment details never touch our servers.
• Expo Push Notifications — delivers push alerts to your device using your Expo push token.
• Google Play — distributes the app and processes payments under Google's own terms and privacy policy.

We do not sell, rent, or share your personal data with advertisers or any unrelated third parties.

We retain your account data for as long as your account is active. If you request account deletion, we will permanently remove your personal data — including name, email, device identifiers, location history, messages, and saved content — within 30 days. Camera images used for ingredient scanning are deleted immediately after processing and are never stored. Aggregated, anonymised usage statistics may be retained indefinitely.

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate or incomplete data.
• Request deletion of your account and all associated personal data.
• Withdraw consent for location access or push notifications at any time via your device settings.
• Opt out of social discoverability within the app settings.

To exercise any of these rights, please contact us at adnanmaneri2015@gmail.com.

All data is transmitted over HTTPS. Passwords are hashed using bcrypt and are never stored or logged in plain text. We maintain a password history to prevent reuse. Access to our production database is restricted to authorised personnel only. While we take reasonable technical and organisational measures to protect your data, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

FridgeChef is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. When we do, we will revise the "Effective Date" at the top of this page. We encourage you to review this policy periodically. Continued use of the app after changes are posted constitutes your acceptance of the updated policy.

If you have any questions or concerns about this Privacy Policy or how your data is handled, please contact us at adnanmaneri2015@gmail.com. We are based in Islamabad, Pakistan and will respond to all privacy-related requests within 30 days.