Privacy Policy

Last updated on:

1. Introduction and Scope

Pantry (“we,” “our,” “us,” or “Company”) operates a mobile food inventory management application (“Service”). This Privacy Policy describes the types of personal data we collect, how we use and protect that data, and your rights regarding your information.

This policy applies to all users of the Pantry mobile application, including users in the European Union, who are subject to the General Data Protection Regulation (GDPR), and users in California, subject to the California Consumer Privacy Act (CCPA).

We process personal data lawfully under Article 6 of the GDPR, primarily on the basis of contractual necessity (providing the Service you request) and, where applicable, your explicit consent for additional processing activities.

2. Information We Collect

2.1 Account Information

To create and manage your account, we collect your email address and, if you authenticate via Apple Sign-In, your Apple-provided identifier. We also generate and store a unique user ID to identify your account within our systems. If you choose to provide it, we store your name, preferred language, preferred recipe language for content localization, timezone for notification scheduling, and your dietary preferences (vegetarian, vegan, pescatarian, gluten-free, keto, paleo, halal, kosher, or omnivore).

2.2 Pantry and Item Data

When you create pantries and add food items, we store the pantry name, timezone settings, and all item information you enter. For each food item, we store the item name, barcode (if scanned), expiration date, and icon or image URL. We do not store photos you upload; any images associated with items are provided by the Open Food Facts database and linked via URL, not stored as user uploads.

When you create recipes, we store the recipe title, markdown-formatted recipe content, and the associated pantry. Recipes are stored as plain text and are only accessible to you and users with whom you explicitly share the pantry.

2.3 Shared Pantry and Access Data

When you invite other users to share a pantry, we record the pantry access relationship, including the invitee’s user ID, the access role (Owner or Member), and the access expiration date (if applicable). Shared pantry members can view all items, recipes, and settings within that pantry according to their assigned role.

2.4 Authentication and Session Data

To maintain secure access to your account, we store and hash your password (if using email/password authentication), refresh tokens with associated metadata including your IP address at token creation, user agent (browser/app identifier), and token expiration time. We do not retain plaintext passwords or tokens longer than necessary for your session.

2.5 Push Notification Data

To deliver expiration reminders and pantry notifications, we store push notification tokens provided by Expo (our push notification service). These tokens are associated with your user account and are automatically removed when they expire or become invalid.

2.6 Third-Party Data

When you search for or scan a product barcode, we query the Open Food Facts API, a third-party database of food products. Data returned by Open Food Facts (product names, nutritional information, barcodes, images) is provided by third-party contributors and may be incomplete, outdated, or inaccurate. We do not verify this information and assume no responsibility for its accuracy or completeness.

2.7 Logs and Diagnostic Data

Our servers automatically record access logs that include your user ID, request IDs and trace IDs for debugging, IP addresses (for rate limiting and security purposes), the actions you perform (creating items, sharing pantries, updating recipes), timestamps, and basic error information. These logs are used for system monitoring, security, and troubleshooting, and are retained for 30 to 90 days before automatic deletion.

3. How We Use Your Information

We process your personal data for the following purposes, all necessary for providing the Service:

Account Management and Authentication. We use your email address, password hash, and Apple identifier to authenticate you, create and maintain your account, and allow you to securely access your pantries and recipes. Refresh tokens with associated metadata (IP address, user agent) are used to maintain your login session and prevent unauthorized access.

Service Provision. We store pantry data, food items, recipes, and sharing configurations to enable you to manage your food inventory, create recipes, receive expiration notifications, and collaborate with other users through shared pantries.

Notification Delivery. We use your push notification tokens to send you reminders about expiring food items in your pantries and updates about shared pantries you are a member of. You can disable push notifications through your device settings or app preferences.

Localization and Personalization. We use your timezone, preferred language, and dietary preferences to deliver content in your preferred language, schedule notifications appropriately, and provide personalized recipe suggestions.

Service Improvement and Maintenance. We review access logs, error reports, and usage patterns (without connecting this data to your identity) to improve performance, fix bugs, prevent abuse, and optimize the user experience.

Security and Fraud Prevention. We use IP addresses from access logs and rate-limiting data to detect suspicious activity, prevent unauthorized access, and maintain platform security.

4. Data Sharing with Third Parties

4.1 Service Providers and Infrastructure

We do not sell your personal data to any third party. However, we share personal data with the following service providers who act as data processors under our instruction and applicable data protection agreements:

Amazon Web Services (AWS) hosts our infrastructure, including our database, application servers, and storage systems. Your personal data is stored on AWS servers located in the United States with encryption in transit (TLS) and at rest. AWS is SOC 2 certified and complies with GDPR Standard Contractual Clauses for international data transfers.

Expo provides our push notification service. We share your push notification token and user ID with Expo solely to deliver notifications to your device. Expo does not use this data for marketing or third-party purposes.

Open Food Facts is queried when you search for or scan product barcodes. We send the barcode number to their API and receive product information in return. Open Food Facts is a community-maintained database and their privacy policy should be reviewed separately.

4.2 Shared Pantries and Data Visibility

When you share a pantry with other users, those users can view all items, recipes, and settings within that pantry according to their access role. Shared pantry members see your name, the items you added, and the recipes you created. We do not limit visibility of data within shared pantries—all members see all data.

We may disclose your personal data without notice if required by applicable law, court order, or government request, or if we believe in good faith that disclosure is necessary to protect our legal rights, your safety, or the safety of others.

5. Data Security and Storage

We implement industry-standard security measures to protect your personal data from unauthorized access, alteration, and loss:

Encryption in Transit. All communication between your device and our servers uses TLS 1.2 or higher encryption, protecting data from interception during transmission.

Encryption at Rest. Personal data stored in our database is encrypted using AES-256 encryption, protecting data from unauthorized access if storage media is compromised.

Access Control. We implement role-based access control (RBAC) for pantry sharing, ensuring users can only access pantries and data for which they have explicit permission. Access tokens are issued using JSON Web Tokens (JWT) with cryptographic signatures and expiration times.

Session Management. Refresh tokens used to maintain your session are hashed before storage and include metadata such as the IP address and user agent at the time of creation. Tokens automatically expire after a defined period and are invalidated upon account deletion.

Push Notification Security. Push notification tokens are stored separately from other personal data and are automatically removed when they expire or become invalid.

Rate Limiting and DDoS Protection. We monitor and limit API requests based on IP address and user account to prevent abuse and maintain service availability.

Logging and Monitoring. Access logs and error reports are monitored for suspicious activity. Logs are stored securely and are only accessible to authorized personnel for security investigations and service maintenance.

While we maintain reasonable security practices, no system is completely secure. We cannot guarantee absolute protection of your data against all possible threats.

6. Data Retention and Deletion

We retain your personal data for the duration of your account and for the time necessary to provide the Service. When you delete your account or specific data, the following occurs:

Upon Account Deletion. When you request account deletion, we immediately delete your user profile, email address, authentication credentials, push notification tokens, and all personal settings. Your owned pantries are deleted, and your access to shared pantries is revoked. Refresh tokens associated with your account are invalidated. Access logs containing your user ID are retained for 30-90 days for security purposes, then automatically deleted.

Individual Data Types. Account data (email, password hash, preferences) is retained until account deletion. Pantry and recipe data is retained until you delete the specific pantry or recipe, or delete your account. Food items are retained until deleted by you or a pantry owner. Push notification tokens are retained for the lifetime of the token (as managed by Expo) or until deleted by you through device settings. Access logs are retained for 30 to 90 days before automatic deletion. Refresh tokens are retained for their validity period (typically 30 days) and are deleted upon expiration or logout.

Data Portability. Before account deletion, you may request a copy of your personal data in a machine-readable format (CSV/JSON). This export includes your account information, all pantries you own, all shared pantries, all items, and all recipes.

Cached Data. In-memory caches (Redis) containing pantry permissions and user data automatically expire after a configured time-to-live period (typically 1 hour). Cache expiration does not affect data durability in the primary database.

7. Your Privacy Rights

Depending on your jurisdiction, you have the following rights regarding your personal data:

7.1 GDPR Rights (EU Residents)

If you are a resident of the European Union, you have the following rights under the General Data Protection Regulation:

Right of Access (Article 15). You have the right to request a copy of the personal data we hold about you. We will provide this information in a structured, commonly used, machine-readable format within 30 days of your request.

Right to Rectification (Article 16). If your personal data is inaccurate or incomplete, you may request correction. You can update your name, email, timezone, language preferences, and dietary preferences directly in the app settings.

Right to Erasure (Article 17). You have the right to request deletion of your account and all associated personal data. Upon request, we will delete your data and confirm deletion within 30 days (with exceptions for legal retention obligations). Account deletion is available through the app settings.

Right to Restrict Processing (Article 18). You may request that we restrict our use of your data while we address a dispute about accuracy or lawful basis for processing.

Right to Data Portability (Article 20). You may request your data in a machine-readable format (CSV/JSON) for transfer to another service. The app provides a data export function; alternatively, contact privacy@pantry.app.

Right to Object (Article 21). You may object to our processing of your data for our legitimate interests. However, processing may continue if we demonstrate compelling legitimate interests or legal obligations.

Rights Related to Automated Decision Making (Article 22). Our service does not use automated decision-making or profiling that produces legal effects.

To exercise any of these rights, contact privacy@pantry.app with a clear description of your request and proof of your identity. We will respond within 30 days.

7.2 CCPA Rights (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act:

Right to Know. You may request what personal information is collected, used, shared, or sold about you.

Right to Delete. You may request deletion of personal information collected from you, subject to certain exceptions.

Right to Opt-Out. You have the right to opt out of the sale or sharing of your personal information. We do not sell or share your data, so this right does not apply.

Right to Correct. You may request correction of inaccurate personal information.

Right to Non-Discrimination. We will not discriminate against you for exercising your CCPA rights.

To exercise California privacy rights, contact privacy@pantry.app or use account settings in the app.

7.3 Push Notification Preferences

You can disable push notifications at any time through your device settings or within the app preferences. Disabling notifications will prevent you from receiving expiration reminders, but will not affect your ability to use the app.

8. Children’s Privacy

The Pantry service is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you are under 13, please do not use this service.

If we become aware that a child under 13 has created an account and provided personal data, we will immediately delete the account and all associated data. If you believe we have collected information from a child under 13, please contact us immediately at privacy@pantry.app.

For users ages 13-17, your parents or guardians may request access, deletion, or modification of your data by contacting privacy@pantry.app with proof of parental relationship.

9. International Data Transfers

Your personal data is stored on servers operated by Amazon Web Services in the United States. If you are located outside the United States, your data will be transferred to and processed in the United States, which may have different data protection laws than your country.

For European Union residents, we rely on the Standard Contractual Clauses (SCCs) approved by the European Commission to authorize the transfer of personal data from the EU to the United States. These clauses ensure that your data receives an adequate level of protection equivalent to that under GDPR.

By using the Pantry service, you consent to the transfer of your personal data to the United States as described in this privacy policy. If you do not consent to this transfer, you should not use the service.

10. Policy Changes and Updates

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date at the top of the policy.

If we make material changes to how we process your personal data, we will obtain your consent before implementing those changes, where required by applicable law.

Your continued use of the Pantry service after changes to this privacy policy constitutes your acceptance of the updated policy. If you do not accept any changes, you may delete your account using the account deletion feature in the app settings.

11. Data Breach Notification

If we discover or become aware that a data breach has occurred that affects your personal data, we will notify you and relevant authorities as required by applicable law (typically within 72 hours for GDPR-regulated breaches). Notification will be sent to the email address associated with your account and/or through the app.

12. Contact Information

For questions about this privacy policy, to exercise your privacy rights, or to report a privacy concern, please contact us at:

Email: privacy@pantry.app

We will respond to all privacy inquiries within 30 days. For data subject access requests, we will provide a response within 30 days or request an extension as permitted by applicable law.