Privacy Policy

Introduction

Welcome to Foodio ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application Foodio (the "App").

Please read this privacy policy carefully. By using the App, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Information You Provide to Us

Account Information

• Email address - Used for authentication and account recovery
• Full name - Used for profile display and personalization
• Password - Securely hashed and stored for authentication

User-Generated Content

• Food and restaurant photos - Photos you take or upload of meals and dining experiences
• Restaurant reviews and ratings - Your opinions and ratings of restaurants
• Food dish reviews - Your reviews of specific dishes including ratings and comments
• Visit dates and times - When you visited restaurants
• Price information - Optional pricing data you provide for dishes
• Tags and categories - Labels you apply to organize your reviews

Information Automatically Collected

Location Information

• GPS coordinates - Used to find nearby restaurants and provide location-based suggestions
• Restaurant locations - Addresses and coordinates of restaurants you review

Device Information

• Device ID - Anonymous identifier for your device
• Device type and model - For optimizing app performance
• Operating system version - For compatibility and bug fixes
• App version - For support and updates

Usage Data

• App interaction data - How you navigate and use features within the app
• Crash reports and performance data - Via Sentry for improving app stability
• Sync status - Information about data synchronization success/failures

How We Use Your Information

We use the information we collect to:

Provide Core Functionality

• Create and maintain your account
• Store and sync your restaurant and food reviews across devices
• Display your reviews and photos within the app
• Enable offline access to your data

Enhance User Experience

• Provide personalized restaurant suggestions based on your location and preferences
• Organize and categorize your dining experiences
• Enable search and filtering of your reviews
• Generate analytics about your dining patterns (kept private to you)

Improve Our Services

• Fix bugs and improve app performance
• Develop new features based on usage patterns
• Ensure data synchronization works properly
• Provide customer support

Location-Based Services

• Find restaurants near your current location
• Provide directions to restaurants
• Suggest nearby dining options

Third-Party Services

We use the following third-party services that may collect information:

Supabase

• Purpose: Authentication, database storage, and file storage
• Data shared: Email, profile information, reviews, and photos
• Privacy Policy: https://supabase.com/privacy

Google Places API / Google Maps

• Purpose: Restaurant information, maps, and location services
• Data shared: Location queries, restaurant searches
• Privacy Policy: https://policies.google.com/privacy

PowerSync

• Purpose: Offline-first data synchronization
• Data shared: All app data for sync purposes
• Privacy Policy: https://www.powersync.com/privacy-policy

Sentry

• Purpose: Error tracking and performance monitoring
• Data shared: Crash reports, error logs, performance metrics
• Privacy Policy: https://sentry.io/privacy/

Expo

• Purpose: App framework and update services
• Data shared: App usage metrics, update checks
• Privacy Policy: https://expo.dev/privacy

Data Storage and Security

Where We Store Data

• Local storage: SQLite database on your device for offline access
• Cloud storage: Supabase servers (hosted on AWS) for backup and sync
• Photo storage: Supabase Storage for image files

Security Measures

• All data transmissions are encrypted using HTTPS/TLS
• Passwords are hashed using industry-standard algorithms
• Authentication tokens expire and are regularly refreshed
• Row-level security policies protect your data in the cloud
• Local data is isolated by user ID

Data Retention

• Your account data is retained as long as your account is active
• Deleted reviews and photos are removed from our servers within 30 days
• You can request complete account deletion at any time

Your Rights and Choices

Access and Portability

You have the right to:

• Access all personal data we have about you
• Export your data in a machine-readable format
• Receive a copy of your reviews and photos

Correction and Deletion

You can:

• Update your profile information at any time
• Delete individual reviews and photos
• Request complete account deletion
• Contact us to correct any inaccurate data

Location Permissions

You can:

• Deny location access (limiting some features)
• Grant location access only while using the app
• Revoke location permissions at any time in device settings

Photo Permissions

You can:

• Deny camera/photo library access
• Use the app without uploading photos
• Delete photos you've previously uploaded

Data Sharing and Disclosure

We do NOT sell, rent, or trade your personal information. We may share your information only in the following situations:

With Your Consent

• When you explicitly agree to share information
• When you enable sharing features (future feature)

Legal Requirements

We may disclose information if required to do so by law or in response to valid requests by public authorities.

Business Transfers

If we are involved in a merger, acquisition, or asset sale, your information may be transferred. We will provide notice before your information is transferred.

Children's Privacy

Our App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

International Data Transfers

Your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction. By using the App, you consent to such transfers.

California Privacy Rights (CCPA)

California residents have additional rights under the CCPA:

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to say no to the sale of personal information
• Right to equal service and price

European Privacy Rights (GDPR)

If you are a European resident, you have rights under GDPR including:

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing

Legal Basis for Processing

We process your personal data under the following legal bases:

• Consent: For marketing communications
• Contract: To provide app services you've requested
• Legitimate Interests: For improving our services and app functionality

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy in the app
• Updating the "Last Updated" date
• Sending you an email notification for significant changes

Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: support@foodio-app.com
Website: https://foodio-app.com
Mailing Address: Please contact us via email for mailing address information

---

By using Foodio, you acknowledge that you have read and understood this Privacy Policy.