Privacy Policy

FeastAhead ("we", "us", "our") is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share your information when you use our meal planning service.

1. Data Controller

FeastAhead Ltd is the data controller responsible for your personal data. If you have questions about this policy or your data, contact us at privacy@feastahead.app.

2. Data We Collect

We collect the following categories of personal data: account information (name, email address, profile image), authentication data (encrypted passwords, OAuth tokens), content you create (recipes, meal plans, shopping lists, pantry items), usage data (household membership, friend connections, notification preferences), and technical data (IP addresses, browser information, session data).

3. Legal Basis for Processing

We process your data based on: contractual necessity (to provide the FeastAhead service), your consent (for marketing communications and optional features), legitimate interests (service improvement, security, fraud prevention), and legal obligations (tax records, regulatory requirements).

4. Data Retention

We retain your personal data for as long as your account is active. Notifications are automatically deleted after 90 days. If you delete your account, your personal data is erased within 30 days, except where retention is required by law. Public recipes from deleted accounts are anonymised and attributed to 'Deleted User'.

5. Your Rights

Under GDPR, you have the right to: access your personal data (via the data export feature in account settings), rectify inaccurate data (via your profile settings), erase your data (via the account deletion feature), restrict processing, data portability (your data export is provided in JSON format), and object to processing. To exercise these rights, use the relevant features in your account settings or contact privacy@feastahead.app.

6. Data Sharing

We share your data with: Stripe (payment processing), Resend (transactional emails), and Sentry (error monitoring). We do not sell your personal data to third parties. Recipes you share publicly are visible to all authenticated users.

7. Security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit (TLS), secure password hashing, session management, and regular security reviews.

8. Contact

For privacy-related enquiries, contact us at privacy@feastahead.app. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) in the United Kingdom.