Privacy Policy

Last Updated: May 25, 2026

Eat ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the Eat mobile application (the "App").

1. Information We Collect

Information You Provide

Account Information: Email address and display name when you create an account
Profile Data: Dietary restrictions, health goals, allergies, food preferences, and nutritional targets
Food Data: Pantry items, grocery lists, meal plans, and recipes you create
Voice Input: Audio recordings when using voice commands (processed in real-time, not stored)

Information Collected Automatically

Usage Data: App interactions, feature usage, and error logs
Device Information: Device type, OS version, and unique identifiers
Subscription Status: Purchase history for Pro features

Information from Third-Party Services

Apple Sign-In: Email address and name if you use Sign in with Apple
HealthKit: Active energy data if enabled (stays on-device and iCloud only)

2. How We Use Your Information

Provide and improve App features
Generate personalized AI meal suggestions
Provide opt-in API and MCP access for external AI tools you connect
Sync data across your devices via iCloud
Process subscriptions and manage Pro features
Send expiration reminders and notifications (if enabled)
Respond to support requests

3. AI-Powered Features

Eat uses artificial intelligence for meal suggestions, voice command parsing, and food photography. Your dietary preferences and pantry contents are sent to Google Cloud services for AI processing. Requests include only the minimum data needed and do not include your personal identity. AI-generated content is not used to train models.

4. API Access and External AI Tools

If you enable API Access, Eat creates a separate export copy of selected pantry, grocery, and meal data in Firebase so tools such as Codex, Claude Code, Hermes, OpenClaw, or other MCP/REST clients can read it with a token you generate.

API Access is opt-in and read-only
Tokens are scoped, hashed before storage, shown only once, rate-limited, and revocable
Turning API Access off revokes tokens and deletes the exported API copy
External tools receive data only when you provide a valid token and are governed by their own policies

5. Data Storage and Security

Local Storage: Most data is stored on your device using SwiftData
iCloud Sync: Data syncs through Apple's CloudKit if enabled
Firebase: Authentication and AI coordination use Google Firebase
API Export: If enabled, a limited copy of selected food data is stored in Firebase for external tool access
Security: Industry-standard encryption for data in transit and at rest

6. Data Sharing

We do not sell your personal information. We share data with service providers (Google Cloud, Apple, RevenueCat), external tools you connect with a valid token, when required by law, or in connection with business transfers.

7. Third-Party Services

The App integrates with Firebase, RevenueCat, Pexels API, Google Generative AI, and Apple Services. Each has its own privacy policy:

8. Your Rights

Access and Update: View and modify your data in the App
Delete: Delete your account from Settings
Disable Features: Turn off iCloud, HealthKit, API Access, or notifications anytime

California (CCPA) and European (GDPR) users have additional rights to access, delete, and port data.

9. Children's Privacy

Eat is not intended for children under 13. We do not knowingly collect information from children under 13.

10. Data Retention

Account data is retained until you delete your account. Local data remains until you uninstall the App. API export data is deleted when you turn off API Access or delete your account. Subscription records are retained as required for compliance.

11. Changes to This Policy

We may update this Privacy Policy. Material changes will be communicated through the App or by updating the "Last Updated" date.

12. Contact Us

If you have questions, contact us.