Privacy Policy for DishMatch

Introduction

DishMatch ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our mobile application.

Information We Collect

Information You Provide

• Account Information: Email address and password when you create an account
• Profile Data: Dietary preferences, cuisine preferences, and ingredient dislikes (optional)
• User Content: Saved recipes, grocery lists, and swipe history

Automatically Collected Information

• Usage Data: Recipes viewed, swipes, saves, and app interactions
• Device Information: Device type, operating system, and app version
• Analytics Data: Session duration, screen views, and feature usage

Information We Do NOT Collect

• We do NOT collect your name, phone number, or physical address
• We do NOT access your contacts, photos, or other apps
• We do NOT track your location
• We do NOT use facial recognition or biometric data

How We Use Your Information

We use your information to:

• Provide and improve the DishMatch service
• Personalize recipe recommendations based on your preferences
• Maintain your saved recipes and grocery lists
• Send important service notifications (password resets, etc.)
• Analyze app usage to improve features
• Prevent fraud and ensure security

We do NOT:

• Sell your personal information to third parties
• Use your data for advertising purposes
• Share your information with data brokers

Data Storage and Security

Storage

• Your data is stored securely using Supabase (a secure, encrypted database service)
• All data is encrypted in transit using HTTPS/TLS
• Passwords are hashed and never stored in plain text

Security Measures

• Industry-standard encryption (AES-256)
• Secure authentication using JWT tokens
• Regular security audits and updates
• Row-level security policies on database

Data Retention

• Active Accounts: Data retained while your account is active
• Deleted Accounts: All personal data deleted within 30 days of account deletion
• Inactive Accounts: Accounts inactive for 2+ years may be deleted after notification

Your Rights

You have the right to:

• Access: Request a copy of your personal data
• Rectify: Correct inaccurate information
• Delete: Request deletion of your account and data
• Export: Download your saved recipes and preferences
• Opt-out: Disable analytics tracking (contact support)

To exercise these rights, email us at privacy@dishmatch.app

Children's Privacy

DishMatch is not intended for users under 13 years old. We do not knowingly collect information from children under 13. If you believe a child has provided us with personal information, please contact us immediately.

Third-Party Services

We use the following third-party services:

Supabase (Database & Authentication)

• Stores user accounts, recipes, and preferences
• Privacy Policy: https://supabase.com/privacy
• Location: USA (with optional EU hosting)

Expo (App Framework)

• Development and analytics infrastructure
• Privacy Policy: https://expo.dev/privacy
• Limited analytics data only

We may integrate additional services in the future (analytics, error tracking). We will update this policy accordingly.

Cookies and Tracking

DishMatch uses:

• Session Tokens: To keep you logged in (required for functionality)
• Analytics: To understand app usage (can be disabled)
• NO third-party advertising cookies

International Users

GDPR Compliance (EU Users)

If you are in the European Union, you have additional rights under GDPR:

• Right to data portability
• Right to restrict processing
• Right to object to processing
• Right to lodge a complaint with your supervisory authority

Data Transfers

Your data may be processed in the United States. We ensure adequate protection through:

• Standard Contractual Clauses
• Encryption in transit and at rest
• Regular security assessments

California Privacy Rights (CCPA)

California residents have the right to:

• Know what personal information is collected
• Know if personal information is sold or shared (we do not sell data)
• Request deletion of personal information
• Opt-out of data sales (not applicable as we don't sell data)

Changes to This Policy

We may update this Privacy Policy occasionally. Changes will be notified through:

• In-app notification
• Email to registered users (for major changes)
• Updated "Last Modified" date at the top

Continued use of DishMatch after changes constitutes acceptance of the updated policy.

Contact Us

Questions about this Privacy Policy? Contact us at:

• Email: privacy@dishmatch.app
• Response Time: Within 48 hours

Disclaimer

Ingredient Cost Estimates: Recipe cost estimates are approximate and based on average grocery prices. Actual costs may vary by location, season, and store. DishMatch is not responsible for pricing inaccuracies.

Recipe Information: Recipes are provided for informational purposes only. We make no guarantees about nutritional accuracy, allergen information, or dietary suitability. Always verify ingredients if you have allergies or dietary restrictions.