Privacy Policy
1. Scope
This Privacy Policy applies to Pantry’s website, mobile application, and related backend services, including waitlist signups, account creation, pantry management, shared pantries, notifications, analytics, and paid features.
Pantry acts as the controller of the personal data described in this Privacy Policy. For privacy questions or to exercise your rights, contact privacy@pantryapp.net.
If you are in the European Economic Area, the United Kingdom, or Switzerland, we process personal data in accordance with applicable data protection law, including the GDPR.
2. Personal Data We Process
2.1 Website and Waitlist Data
When you visit the Pantry website, we process basic technical data such as IP address, browser and device information, language, and pages requested so that the site can be delivered securely.
If you join the waitlist, we process the email address you submit and limited anti-abuse information needed to protect the form and service from spam or misuse.
2.2 Account and Authentication Data
When you use the mobile app or API, we process account and sign-in data such as your user ID, email address, Apple Sign In identifier, one-time passcode verification data, selected language, timezone, and name if you choose to provide it.
We also support anonymous or guest access flows in some contexts. In those cases, we create and process an internal account identifier until the account is linked, upgraded, or deleted.
To keep your session active and secure, we process refresh tokens and related security metadata such as issuance time, expiration time, IP address, and user agent. Refresh tokens are stored in hashed form.
2.3 Pantry, Item, and Recipe Data
We process the pantry names, pantry timezone settings, item names, quantities, icons, barcodes, expiry dates, and other pantry data that you create or edit.
We also process recipes you create or save, including recipe titles, markdown content, pantry links, and recipe-generation prompts or refinements you submit.
2.4 Shared Pantry Data
If you invite other users into a pantry, we process pantry access records, including the pantry ID, invitee or member user ID, role, and any access expiry settings.
Shared pantry members can see pantry content made available within that pantry, including items, recipes, pantry settings, and contributor names where shown by the product.
2.5 Notification and Subscription Data
If you enable notifications, we process push notification tokens, pantry notification subscriptions, and related delivery or invalidation events.
If you purchase paid features, we process subscription and entitlement status and identifiers needed to validate, sync, restore, and manage in-app purchases.
2.6 Product Lookup and Third-Party Content Data
If you scan or search for a product barcode, we send the barcode to our product lookup service and upstream food-product data sources to retrieve product information such as name, images, and nutrition-related metadata.
2.7 AI and Image Processing Data
If you use AI-supported features, we process the inputs needed to provide them.
This can include:
- Pantry item and recipe data that is sent to an LLM provider to generate or refine recipes.
- Base64-encoded item images submitted to the item-recognition endpoint.
- Labels extracted from those images using AWS Rekognition.
- The resulting prompt and structured output used to suggest an item name, icon, or estimated expiry date.
2.8 Logs, Security, and Analytics Data
We process logs and diagnostic data such as request IDs, trace IDs, user IDs, IP addresses, timestamps, error details, and rate-limit events to operate, secure, and troubleshoot the service.
We also process analytics data through PostHog on the website and mobile app when analytics is enabled. On the website, analytics is consent-based through the cookie banner. In the mobile app, analytics is disabled by default and only enabled if the user grants analytics consent.
3. How We Use Personal Data and Our Legal Bases
We use personal data for the following purposes:
- To provide the Service, including authentication, pantry management, sharing, recipe storage, barcode lookup, notifications, and subscription functionality. Legal basis: contract performance under Article 6(1)(b) GDPR.
- To maintain account and service security, including session management, fraud prevention, abuse prevention, and rate limiting. Legal basis: legitimate interests under Article 6(1)(f) GDPR.
- To operate AI-assisted features that you request, including recipe generation and image-based item recognition. Legal basis: contract performance under Article 6(1)(b) GDPR.
- To run consent-based website and app analytics, improve UX, and understand feature usage where analytics consent has been granted. Legal basis: consent under Article 6(1)(a) GDPR.
- To communicate with you about service operation, security, account events, and where applicable paid features. Legal basis: contract performance under Article 6(1)(b) GDPR and legitimate interests under Article 6(1)(f) GDPR.
- To comply with legal obligations, resolve disputes, enforce our terms, and respond to lawful requests. Legal basis: legal obligation under Article 6(1)(c) GDPR and legitimate interests under Article 6(1)(f) GDPR.
Where we rely on consent, you can withdraw it at any time for future processing. Withdrawal does not affect processing that took place before withdrawal.
4. Recipients and Processors
We do not sell your personal data.
We share personal data with service providers and processors that support the Service, including:
- Amazon Web Services, which hosts core infrastructure and cloud services used by the API, database, logging, queueing, and image-recognition workflows.
- Expo, which is used to deliver push notifications.
- PostHog, which is used for consent-based product analytics.
- OpenAI, which is used for AI-supported recipe generation and certain structured AI outputs.
- RevenueCat, which is used to sync and manage subscription status and purchase entitlements.
- Open Food Facts and related product lookup infrastructure, which is used for barcode and product lookups.
- Platform providers such as Apple or Google, where relevant to sign-in or app-store purchases.
We may also disclose data to courts, regulators, law enforcement, or advisors where required by law or reasonably necessary to protect rights, users, or the Service.
5. Cookies and Similar Technologies
On the website, Pantry uses strictly necessary cookies or storage technologies to remember consent preferences and keep the site functioning securely.
Pantry also uses optional analytics technologies on the website through PostHog. These are only activated when you give consent through the cookie banner.
In the mobile app, analytics is disabled by default and only enabled if you grant analytics consent in onboarding or settings.
6. International Transfers
Pantry primarily deploys infrastructure in the EU, but some processors and sub-processors may process or access data outside your country or outside the EEA.
Where personal data is transferred outside the EEA, UK, or Switzerland, we rely on appropriate safeguards such as Standard Contractual Clauses or another lawful transfer mechanism where required.
7. Retention
We keep personal data only for as long as needed for the purposes described above, including to provide the Service, comply with legal obligations, and resolve disputes.
In practice, this means:
- Account, pantry, item, recipe, sharing, and subscription data is generally kept until you delete it, your account is deleted, or retention is required for legal or operational reasons.
- Refresh tokens are retained for their active lifetime or until revoked.
- Push tokens are kept until they expire, are replaced, are removed, or are determined to be invalid.
- Security and application logs are generally retained for about 30 to 90 days, unless a longer period is required for a specific incident or legal obligation.
- Waitlist data is retained until the waitlist is no longer needed or you request deletion.
- Cached data in systems such as Redis is temporary and expires automatically based on configured TTLs.
If you ask for deletion, we may retain limited information where necessary to comply with legal obligations, prevent fraud, establish or defend claims, or document the handling of your request.
8. Your Rights
If you are in the EEA, UK, or Switzerland, you may have the right to:
- Access the personal data we hold about you.
- Correct inaccurate or incomplete data.
- Delete your personal data.
- Restrict certain processing.
- Object to processing based on legitimate interests.
- Receive a portable copy of certain data.
- Withdraw consent where processing is based on consent.
- Lodge a complaint with your local supervisory authority.
To exercise your rights, contact privacy@pantryapp.net.
Account deletion is available in the app. Pantry currently supports deletion flows for the account and associated application data. If you want a portable export of your data, contact privacy@pantryapp.net and we will handle the request manually unless and until an in-product export feature is released.
9. Automated Decision-Making
Pantry does not use automated decision-making that produces legal effects or similarly significant effects on you within the meaning of Article 22 GDPR.
AI-supported outputs such as recipe suggestions or image-based item suggestions are assistive features and should be reviewed by you before reliance.
10. Children’s Privacy
Pantry is not intended for children under 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us personal data, contact privacy@pantryapp.net.
If local law requires a higher minimum age for digital consent, the higher age threshold applies to the extent required by that law.
11. Security
We use reasonable technical and organizational measures designed to protect personal data, including encryption in transit, access controls, token hashing for refresh tokens, role-based access controls for pantry sharing, and monitoring for abuse or suspicious activity.
No system is completely secure, and we cannot guarantee absolute security.
12. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we will update the date above and provide additional notice where required by law.
13. Contact
For privacy questions, rights requests, or complaints, contact privacy@pantryapp.net.