Privacy Policy — Eatbook

Last updated: 28 May 2026

1. Who We Are

Eatbook ("we", "our", "us") is an AI-powered meal planning app. Our app helps you plan weekly menus, manage your pantry, create shopping lists, and personalise meals for your family.

Contact: support@eatbookfamily.com

2. What Data We Collect

Account data

When you register we collect your name, email address, and date of birth (to verify you are 13 or older as required by law). You can also sign in with Google or Apple, in which case we receive your name and email from those providers.

Authentication

Authentication is handled by Firebase Authentication (Google). Firebase manages your credentials, passwords, and login sessions. We do not store passwords on our servers.

Profile data

To personalise meal plans you may optionally provide: weight, height, age, gender, activity level, dietary restrictions, religious restrictions, taste preferences, cooking time constraints, and eating habits for yourself and family members.

App usage data

Recipes you save, weekly menus you generate, pantry items, shopping lists, staple items, meal ratings, cooking history, water intake, and scan history are stored so your data syncs across devices.

Photos (fridge scanning)

When you use the fridge scan feature, your photo is sent to Anthropic Claude AI for ingredient detection. You can take a new photo or choose one from your photo library — in both cases the photo is processed in real time and discarded immediately after analysis; it is not stored on our servers.

Apple Health data (iOS only)

If you enable Apple Health integration, the app reads your weight and activity level from HealthKit and writes nutrition data (calories, protein, fat, carbs) back to HealthKit. This data stays on your device and is never sent to our servers.

Payment data

Subscription payments are processed by RevenueCat via Apple App Store, Google Play, or Stripe (for web). We never store your card number. We only receive a subscription status confirmation.

Analytics and crash data

We use Firebase Analytics to track app usage (screen views, feature engagement) and Firebase Crashlytics to collect crash reports and error logs. This data helps us improve app stability and performance. It does not include personally identifiable information.

Push notification tokens

If you allow notifications, we store your device push token (via Firebase Cloud Messaging) to send meal reminders, shopping reminders, and family sync notifications.

3. How We Use Your Data

Generate personalised meal plans using AI (Anthropic Claude)
Sync your data across your devices
Enable family sharing (shared menus, pantry, shopping list)
Process subscription payments via RevenueCat
Send push notifications (meal reminders, shopping reminders)
Monitor app performance and fix crashes (Firebase Analytics & Crashlytics)
Respond to support requests
Comply with legal obligations

4. Data Sharing with Third Parties

Anthropic Claude AI

We use Anthropic PBC (anthropic.com) — the maker of the Claude AI model — to power AI features. Before any data leaves your device for the first time, the app shows an in-app consent dialog that names Anthropic, lists exactly what categories of data will be sent, and asks for your explicit permission. AI features are disabled until you accept; you can revoke consent at any time in Settings.

What we send to Anthropic:

Dietary preferences, allergies, religious and health restrictions
Family member age, gender, weight, height, activity level, calorie target
Pantry items, quantities, and units
Recipe ratings (likes/dislikes) when relevant for substitutions
The cooking question and recipe context when you use the cooking assistant
Current weekly meal plan context — used by meal regeneration, smart plan tips, and ingredient substitution features
Event or occasion type — only when you generate special occasion menus
A single fridge photo — only when you tap "Scan Fridge"

What we never send to Anthropic:

Your name, email address, or account ID
Device identifiers, IDFA, or IP-based location
Apple Health weight or activity values
Payment information

How Anthropic handles the data: All requests go through our server proxy over HTTPS. Anthropic processes the data under their Commercial Terms: your inputs and the AI's outputs are not used to train Anthropic's models and are retained for at most 30 days for abuse monitoring before deletion. Anthropic provides protections equivalent to those described in this policy.

Firebase (Google)

Firebase provides authentication, analytics, crash reporting, performance monitoring, and push notifications. Firebase processes device identifiers, usage data, and crash logs under Google's Data Processing Terms, which provide protections equivalent to those described in this policy. Firebase Analytics is configured as a first-party product analytics tool only — IDFA collection is disabled and no data is shared with advertising networks.

RevenueCat

RevenueCat manages subscription billing across App Store, Google Play, and web (via Stripe). RevenueCat receives only your internal user ID (a random UUID, not your email or name) and subscription status. RevenueCat handles this data under their Data Processing Addendum, which provides protections equivalent to those described in this policy.

Apple / Google (mobile subscriptions)

If you subscribe via the App Store or Google Play, payment is handled by Apple or Google respectively.

We do not sell your data

We never sell, rent, or trade your personal data to any third party for marketing or advertising purposes.

No cross-app tracking, no advertising IDs

Eatbook does not perform any cross-app or cross-website tracking as defined by Apple's App Tracking Transparency framework. Specifically:

We do not collect Apple's IDFA (Identifier for Advertisers). IDFA collection is explicitly disabled at the SDK level (GOOGLE_ANALYTICS_IDFA_COLLECTION_ENABLED = NO).
We do not collect Google's Advertising ID on Android. The com.google.android.gms.permission.AD_ID permission is blocked.
We do not integrate any advertising SDKs and do not share data with advertising networks, attribution services, or data brokers.
Firebase Analytics is used solely for first-party product analytics (which screens are used, which AI features are tapped, crash rates) and is configured so it cannot be linked to advertising identifiers.

5. Family / Household Sharing

Eatbook includes an optional household feature that lets people in the same home share meal planning data. Household sharing is opt-in and never enabled automatically.

How it works

The first member creates a household and receives an invite code. Other members enter that code to join. Before either action completes, the app shows an explicit consent dialog enumerating exactly what becomes visible to other members. You can decline at any point, and you can leave the household later from the same screen.

What is shared with other household members

Pantry items and quantities
The current weekly meal plan and any saved recipes
Shopping list (items, quantities, checked/unchecked state)
Family member profiles (display name, age group, dietary preferences, allergies)
Recipe ratings and recently-cooked history

What is NOT shared with other household members

Your email address, account ID, or password
Your subscription tier or payment information
Your Apple Health data
Your individual app analytics or device identifiers

Scope and access

Households are invite-only and private. There is no public discovery, friend graph, or chat. Only people who hold the current invite code can join. The household administrator can remove any member at any time, after which that member's device stops syncing with the household. Leaving a household keeps your data on your device — it is not deleted.

6. Data Storage and Retention

Your data is stored on our servers (PostgreSQL database hosted on a secure VPS) and locally on your device. All data is transmitted over encrypted HTTPS connections.

Your data is stored for as long as your account is active. If you delete your account, all your personal data is permanently deleted from our servers within 30 days, except where we are required by law to retain it longer.

7. Data Export

You can export all your data at any time from Settings in the app. The export includes your profile, recipes, meal plans, pantry items, ratings, and all other stored data in JSON format.

8. Children's Privacy (COPPA)

Eatbook requires users to be at least 13 years old. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has registered, please contact us at support@eatbookfamily.com and we will delete their account immediately.

9. Your Rights

Depending on where you live (including under GDPR, CCPA, and similar laws), you may have the right to:

Access the personal data we hold about you
Correct inaccurate data
Delete your account and all associated data (via Settings or our account deletion page)
Export your data (via Settings in the app)
Object to or restrict certain processing

To exercise these rights, contact: support@eatbookfamily.com

10. Data Security

All data is transmitted over encrypted HTTPS connections. Authentication is handled by Firebase with industry-standard security. We use rate limiting, input validation, and server-side authorization to protect your data.

11. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes by displaying a notice in the app. The latest version is always available in Settings and at eatbookfamily.com/privacy.

12. Contact Us

Eatbook
Email: support@eatbookfamily.com
Website: eatbookfamily.com