Privacy Policy

1. Who We Are

DateChef ("the App", "we", "us") is a mobile application designed to give couples a shared cooking experience. This Privacy Policy is effective as of April 11, 2025 and applies to the DateChef app available on iOS and Android platforms.

2. Data We Collect

2.1 Data You Provide Directly

• Account information: Full name, username, email address, profile photo
• Authentication data: Email/password (encrypted), Google account or Apple ID
• Food preferences: Disliked ingredients and dietary restrictions
• Partner connection: Information about the partner you've linked with in the app
• Social content: Recipes, photos and comments you share

2.2 Automatically Collected Data

• Approximate location: Country/city-level location for local recipe feed (IP-based, not GPS)
• Device information: Operating system version, device model, app version
• Usage data: Cooking history, recipe interactions, session durations
• Push notification token: To send app notifications (only if you grant permission)

2.3 Third-Party Integrations

• RevenueCat: Subscription management. Payment details are processed solely by App Store / Google Play; we never access your card information.
• Google / Apple Sign-In: Social login. Only basic profile information is retrieved; we never access your password.
• Microsoft Azure: Cloud infrastructure and profile photo storage.
• Google Gemini / Vertex AI: AI-powered recipe suggestions. Only anonymous preference data is sent during recipe generation; your identity is never embedded.
• OneSignal: Push notification infrastructure.

3. How We Use Your Data

• Creating accounts, signing in and security verification
• Generating personalized AI-powered recipe suggestions
• Partner matching and managing the co-cooking flow
• Approximate location detection for local recipe feed (country/city level)
• Managing your subscription status (DateChef+ / MasterChef+ plans)
• Sending push notifications (only if you grant permission)
• Improving app reliability and performance
• Marketing emails (only with your explicit consent; you may unsubscribe at any time)

4. Who We Share Your Data With

We never sell or rent your data. Sharing occurs only in these situations:

• Service providers: Technical partners required to operate the app, such as Microsoft Azure, OneSignal and Google Vertex AI
• Subscription processor: RevenueCat (for the payment flow)
• Legal requirement: In the event of a court order or legal obligation
• Business transfer: In the event of a company merger or acquisition, users will be notified in advance

5. Data Retention and Security

Your data is stored on secure Microsoft Azure servers in European regions. Passwords are hashed using BCrypt and are never stored in plain text. All transmissions are encrypted via TLS/HTTPS.

When you delete your account, your personal data is permanently removed within 30 days. Anonymous usage statistics may be retained in an anonymized form.

6. Your Rights

Under GDPR and applicable privacy laws, you have the following rights:

• Access: The right to know what data we hold about you
• Rectification: The right to correct inaccurate data
• Erasure: You can delete all your data using the "Delete Account" feature
• Portability: The right to request your data in a structured format
• Objection: The right to object to certain processing activities
• Withdraw consent: You may revoke your marketing consent at any time

7. Children's Privacy

DateChef is not directed at children under 13. We do not knowingly collect data from anyone under 13. If you become aware of such a case, please contact us.

8. Cookies and Tracking

The mobile app does not use cookies. Secure JWT tokens are used for in-app session management.

9. Policy Changes

We may update this policy. For significant changes, we will notify you in advance via an in-app notification or email. The current version will always be available on this page.