Back to Home

Privacy Policy

Effective Date: October 2025

Last Updated: March 2026 (Version 1.6)

1. Introduction

Welcome to Alimio ("we", "us", "our"). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our mobile application.

Key Privacy Principles

  • Your data is synced securely to the cloud and backed up
  • We collect minimal data necessary for app functionality
  • We don't sell or share your personal information
  • You control your data
  • We operate under EU GDPR rules

Important: By signing in to Alimio, you consent to the collection and processing of data as described in this Privacy Policy, including anonymous analytics data. This consent is required to use the app's cloud sync features.

2. Information We Collect

2.1 User Account Information

To use Alimio, you must sign in using:

  • Apple Sign-In (iOS devices)
  • Google Sign-In (Android devices)

What We Collect:

  • User ID: A unique identifier provided by Apple or Google
  • Email Address: Your email address associated with your Apple or Google account
  • Display Name: Your name as provided by Apple or Google (if available)
  • Authentication Token: Securely stored to keep you signed in

How Your Email is Used:

  • • Account identification and recovery
  • • Important service notifications (e.g., security alerts)
  • • We do NOT send marketing emails without separate consent

What We Do NOT Collect from Sign-In:

  • • Your profile photo
  • • Your contacts
  • • Your calendar or other personal data

Lawful Basis (GDPR): Performance of Contract (Article 6(1)(b)) - sign-in is necessary to provide cloud sync services.

2.2 Information Synced to Cloud

When you sign in, the following data is synced to our secure cloud servers (Supabase, hosted in the EU):

  • Food items and expiry dates
  • Shopping lists
  • Saved recipes
  • App preferences and settings
  • Notification preferences
  • Dietary preferences
  • Custom food categories

Data Storage Location: All cloud data is stored on Supabase servers located in the European Union for GDPR compliance.

Why We Sync:

Cloud sync enables you to:

  • • Access your data across multiple devices
  • • Restore your data if you lose or change devices
  • • Share household inventory with family members

2.3 Information Also Stored Locally

A copy of your data is also stored locally on your device for offline access:

  • All synced data (see Section 2.2)
  • AI Photo Scan history
  • AI Vision analysis results (processed results only, not photos)

Information Transmitted for Service Functionality

Device Identifier

What: Pseudonymous device ID derived from iOS Identifier for Vendor (IDFV) or Android ID and hashed on-device

Purpose: Enforce usage limits, prevent abuse, and verify subscription entitlements on our secure endpoints

Storage: Stored locally on your device and sent with requests to our Cloudflare Worker. In our usage store (Cloudflare KV), it is retained only as needed to enforce limits: Free tier recipe quota: up to 30 days, Plus tier daily limits: up to 24 hours, Regeneration cache keys: up to 1 hour

Linked to you: Not linked to your name, email, or contact details

Recipe Generation Requests

What: List of food items when you request a recipe, along with subscription tier and a pseudonymous RevenueCat app user ID

Purpose: Generate AI recipes and enforce subscription entitlements

Storage: We do not store your ingredients on our servers beyond transient processing. Usage counts (keyed by pseudonymous device ID) are stored as described above to enforce limits. We do not store your RevenueCat app user ID.

Linked to you: Not linked to your name, email, or contact details

Subscription Information

What: Subscription status and purchase history

Purpose: Enable premium features

Processed by: RevenueCat

Storage: Secure cloud storage by RevenueCat

Linked to you: Anonymous user ID only

Cloud Photo Processing (Photo Scan Feature)

What: Photos you capture using the Photo Scan feature to identify food items and extract expiry dates

Purpose: Analyse food packaging to automatically identify items and extract expiry dates using AI vision technology

Processing: Images are sent to Microsoft Azure AI Vision (hosted in Azure West Europe region, Netherlands) for analysis

Data Processor: Microsoft Azure (acting as data processor under GDPR; we are the data controller)

Data Residency: All photo processing occurs exclusively in the Azure West Europe region (Netherlands) - within the European Economic Area (EEA) for GDPR compliance

Retention: Photos are NOT stored or retained. Images are processed transiently (in-memory) for analysis and immediately discarded after processing completes (typically within seconds)

Linked to you: Photos are not linked to your name, email, device ID, or any personal identifiers. Processing is completely anonymous.

Your Control: You control when photos are sent by choosing to use the Photo Scan feature. Don't use Photo Scan if you don't want photos analysed.

Security: All photo uploads use HTTPS/TLS 1.3 encryption in transit. Azure's secure infrastructure provides encryption at rest during transient processing.

Third-Party AI: Azure AI Vision may use underlying AI models (such as Azure OpenAI Vision) for image analysis. These models process images transiently and do not retain your photos.

What We Extract:

  • • Food product names and categories
  • • Expiry dates from packaging
  • • No faces, people, or personally identifiable information

GDPR Compliance:

  • Lawful Basis: Consent (Article 6(1)(a) GDPR) and Performance of Contract (Article 6(1)(b) GDPR)
  • Data Minimisation: Only photos you choose to scan are processed
  • Purpose Limitation: Photos used solely for food item identification and expiry date extraction
  • Storage Limitation: Zero retention - immediate deletion after processing
  • Right to Object: Stop using Photo Scan feature at any time
  • Data Protection Agreement: Microsoft Azure provides GDPR-compliant data processing agreements

While we process photos in the cloud, they are never added to your photo library, never stored on our servers, and are deleted immediately after analysis. This is more private than on-device processing that would require storing ML models and processing history on your device.

Live Household Sync (Plus Feature)

What: Food inventory data, display names, and sync metadata when you create or join a household

Purpose: Enable real-time sharing of food inventory between household members

Processing: Data is synced via our Cloudflare Worker to other household members' devices

Storage:

  • • Household membership data: Stored in Cloudflare KV for up to 1 year (refreshed on activity)
  • • Pending sync changes: Stored for up to 14 days, then automatically deleted
  • • Device-to-household lookup: Stored for up to 1 year
  • • Invite codes: Stored for 7 days, then automatically deleted

Data Shared with Household Members:

  • • Food item names, categories, and expiry dates
  • • Your chosen display name (e.g., "Mum", "Dad", "Alex")
  • • When you last synced
  • • Who added each food item (display name only)

Linked to you: Linked to your pseudonymous device ID and display name within the household. Not linked to your real name, email, or contact details.

Your Control:

  • • You choose to create or join a household
  • • You choose your display name
  • • You can leave a household at any time (removes your membership data)
  • • Only household members can see shared inventory data

Plus Requirement: Creating a household requires an active Plus subscription. Joining an existing household does not require Plus. If the household creator's Plus subscription expires, syncing pauses for all members.

GDPR Compliance:

  • Lawful Basis: Consent (Article 6(1)(a) GDPR) - you explicitly opt-in by creating or joining a household
  • Data Minimisation: Only food inventory and display names are shared, not personal contact information
  • Purpose Limitation: Data used solely for household inventory synchronisation
  • Storage Limitation: Sync changes deleted after 14 days; membership data deleted when you leave
  • Right to Erasure: Leave household to remove your membership data

2.5 Information We Do NOT Collect

Phone numbers
Location data
Browsing history
Contacts
Social media information
Health or medical data

2.4 Newsletter Communications (Optional)

When you explicitly opt-in to our newsletter, we collect:

What We Collect:

  • • Email address (required)
  • • App usage tier (free or premium) - optional
  • • Platform type (iOS or Android) - optional
  • • CO2 savings at signup - optional
  • • Signup source (milestone celebration or settings) - optional

How We Collect It:

  • • Newsletter signup dialog after 1kg CO2 milestone achievement (appears once)
  • • Settings screen manual subscription option (available anytime)

Purpose:

To send you:

  • • Seasonal recipes using expiring ingredients
  • • Food waste reduction tips and tricks
  • • Sustainability challenges and updates
  • • Product feature announcements and updates

Storage:

  • • Emails stored in Cloudflare D1 (serverless database)
  • • Encrypted in transit (HTTPS/TLS 1.3)
  • • We own and control your data (no third-party email provider has access until export)
  • • Stored on Cloudflare's secure, GDPR-compliant infrastructure

Your Control:

  • • Unsubscribe anytime from Settings → Newsletter section
  • • Future emails will include one-click unsubscribe link
  • • Re-subscribe anytime if you change your mind
  • • Your subscription preference is stored locally on your device

Data Sharing:

  • • We do NOT sell or share your email with third parties
  • • We do NOT send marketing emails without your explicit consent
  • • Your email stays in our secure database until you unsubscribe
  • • When we begin sending newsletters, we may export the email list to a reputable email service provider (see Section 4.7)

Retention:

  • • Active subscriptions: Retained indefinitely while subscribed
  • • Unsubscribed: Status marked as inactive, email retained for re-subscription capability
  • • You can request complete deletion by contacting privacy@alimio.app

GDPR Rights (Fully Applicable)

Unlike our anonymous analytics data, newsletter subscriptions involve personal data (your email address). Therefore, all GDPR data subject rights fully apply:

  • Right to access: Request a copy of your stored email and subscription metadata
  • Right to rectification: Update your email address (unsubscribe old, subscribe with new)
  • Right to erasure: Request complete deletion of your email from our database
  • Right to data portability: Export your data in CSV format (available on request)
  • Right to withdraw consent: Unsubscribe anytime via Settings or email link
  • Right to object: Object to newsletter processing (same as unsubscribe)
  • Right to restrict processing: Pause newsletter sending (contact privacy@alimio.app)

Lawful Basis: Consent (Article 6(1)(a) GDPR) - you explicitly opt-in

Data Controller: Alimio App is the data controller for newsletter data

To Exercise Your Rights: Contact privacy@alimio.app or use the unsubscribe function in Settings

3. How We Use Information

Primary Uses

  • Generate AI-powered recipes based on your ingredients
  • Manage subscription access and premium features
  • Prevent abuse through rate limiting
  • Process subscription payments (via RevenueCat)
  • Send optional newsletter communications (only with your explicit consent)
  • Provide customer support when requested

AI Processing

When you request a recipe:

  • 1.Your ingredient list is sent to our secure AI service
  • 2.The AI generates a recipe based on these ingredients
  • 3.The recipe is returned to your device
  • We do not store your ingredient lists or generated recipes

Anonymous Analytics

To improve Alimio and understand how users interact with the app, we collect anonymous usage data. By signing in to Alimio, you consent to this data collection as part of using our service. This data is collected once per day (the first time you open the app each day) and includes:

Feature Usage:

  • • Number of recipes generated
  • • Number of AI Photo Scan sessions

Sustainability Metrics:

  • • Total CO2 saved (kilograms)
  • • Food waste prevention rate
  • • Items saved vs. wasted

App Information:

  • • Subscription tier (Plus or Free)
  • • Platform (iOS or Android)
  • • App version number
  • • Top food categories in your inventory (e.g., "vegetables," "meat," "dairy" - category names only, not specific items)

What We DON'T Collect in Analytics:

  • • Personal information (name, email, phone number)
  • • Device identifiers or tracking IDs
  • • Location data
  • • IP addresses
  • • Your actual food items (only category counts like "5 vegetables")
  • • Real-time activity (only daily summaries)
  • • Unique user identifiers that link to you

How We Use Analytics Data:

  • • Understand which features are popular and should be improved
  • • Measure our collective environmental impact across all users
  • • Set fair subscription limits based on actual usage patterns
  • • Guide product development decisions
  • • Identify and fix bugs

Data Collection Frequency:

  • • Analytics data is collected once per day maximum
  • • Only collected the first time you open the app each day
  • • No background collection when app is closed
  • • No real-time tracking

How Analytics Data is Stored:

  • • All data is immediately aggregated on our servers
  • • Individual user data is never stored
  • • Only combined statistics are retained (e.g., "50 recipe generations today across all users")
  • • Aggregated data is retained for 90 days, then automatically deleted
  • • Processed on Cloudflare's global network (GDPR-compliant infrastructure)

Your Control Over Analytics:

  • Sign-In Consent: By signing in to Alimio, you consent to anonymous analytics collection as part of using our cloud-synced service
  • Opt-Out Option: You may request to opt out of analytics by contacting privacy@alimio.app
  • Account Deletion: Deleting your account removes all associated data

Privacy by Design:

  • Analytics data is anonymous and cannot identify you
  • No cross-session user tracking in analytics
  • Data aggregated immediately, individual data discarded
  • Consent obtained at sign-in (GDPR compliant)
  • Full transparency about what's collected

Important: GDPR Data Subject Rights

Because analytics data is truly anonymous and cannot be linked to any identifiable person, GDPR data subject rights (right to access, right to erasure, right to data portability) do not apply to this analytics data.

Under GDPR Article 26, "the principles of data protection should not apply to anonymous information, namely information which does not relate to an identified or identifiable natural person."

We cannot fulfill requests like "show me my analytics data" or "delete my analytics data" because there is no way for us to identify which data belongs to you. All analytics data is immediately aggregated and individual data points are indistinguishable.

This is different from the newsletter feature (Section 2.4), where GDPR rights fully apply because we collect email addresses (personal data).

Diagnostics and Support

If you choose to share a debug report for support, it may include device model, OS version, and app version to help troubleshoot issues. This is only shared if you explicitly send it to us.

4. Third-Party Services

RevenueCat (Subscription Management)

Purpose: Manage subscriptions and entitlements (payments are processed by Apple/Google)

Data shared: Anonymous user ID, purchase events

Privacy Policy: https://www.revenuecat.com/privacy

Apple App Store / Google Play Store

Purpose: App distribution and payment processing

Data shared: As required for purchase processing

Privacy Policies:

Cloud Infrastructure

Supabase (Primary Cloud Database)

Provider: Supabase (PostgreSQL-based)

Purpose: User authentication, cloud data sync, and storage

Data stored: User accounts, food inventory, recipes, shopping lists, settings, household data

Data location: European Union (EU region)

Security: TLS encryption, Row Level Security (RLS), encrypted at rest

GDPR Compliance: Supabase provides GDPR-compliant data processing with EU data residency

Privacy Policy: https://supabase.com/privacy

Cloudflare Workers (API Services)

Provider: Cloudflare Workers

Purpose: Secure API endpoints for recipe generation

Data shared: Ingredient lists (not stored)

Security: TLS encryption, ephemeral processing

AI Providers (OpenAI and OpenRouter)

Purpose: Generate recipes from your provided ingredients

Data shared: Textual ingredient lists and prompt context needed to generate content

Retention: We instruct providers to process requests only for generation. Providers may retain data per their policies for abuse prevention or legal compliance.

Privacy Policies:

Microsoft Azure (Photo Processing)

Purpose: Cloud-based photo analysis to identify food items and extract expiry dates

Service: Azure AI Vision (including Azure OpenAI Vision for image analysis)

Data shared: Photos captured via Photo Scan feature only

Data Residency: Azure West Europe region (Netherlands) - fully within the EEA for GDPR compliance

Processing: Transient in-memory processing only - no storage or retention of images

Duration: Images processed and discarded within seconds of upload

Security: TLS 1.3 encryption in transit, Azure enterprise-grade security infrastructure

GDPR Compliance: Microsoft Azure acts as data processor under GDPR Article 28; we are the data controller

Data Processing Agreement: Microsoft provides GDPR-compliant Data Processing Addendum (DPA) and Standard Contractual Clauses (SCCs)

Privacy Policy: https://privacy.microsoft.com/en-us/privacystatement

Azure Trust Center: https://www.microsoft.com/en-us/trust-center

What Microsoft Processes:

  • • Photograph content (food packaging images only - not stored)
  • • Extracted text (expiry dates, product names - transient processing)
  • • No personal identifiers, device IDs, or user accounts linked to photos

Microsoft's Commitments:

  • • No use of your photos for AI model training (per Azure AI Services terms)
  • • No retention of image data beyond transient processing
  • • GDPR-compliant processing within EU boundaries
  • • Enterprise-grade security and compliance certifications (ISO 27001, ISO 27018, SOC 2, etc.)

Email Newsletter Platform (Future)

Current Status: Email addresses are stored in our Cloudflare D1 database. We are not yet sending newsletter emails.

Future Plans: When we begin sending newsletters, we will export the email list to a reputable email service provider such as:

  • • Mailchimp (Intuit)
  • • EmailOctopus
  • • SendGrid
  • • Or similar GDPR-compliant email platform

What This Means:

  • • Your email will be transferred to the email platform only when we're ready to send newsletters
  • • You can unsubscribe before any emails are sent
  • • The email platform will process your email to deliver newsletters
  • • Email platforms comply with GDPR and industry standards
  • • We will update this privacy policy with the specific provider before first send

Privacy Policies:

Your Rights: All GDPR rights (access, erasure, portability) remain fully applicable regardless of email platform used.

5. Payment Information

Payment Processing

  • We do NOT directly handle payment information
  • All payments are processed by Apple or Google
  • Credit card details never reach our servers
  • RevenueCat manages subscription status only

Subscription Data

RevenueCat collects:

  • • Purchase timestamps
  • • Subscription status
  • • Anonymous customer ID
  • • Product identifiers
  • • No personal payment information

6. Data Storage and Security

Local Storage

  • • Your personal data is stored in a SQLite database on your device
  • • Data is protected by your device's security features
  • • Enable device lock screen for additional protection
  • • Regular backups are recommended

Cloud Processing

  • • API communications use TLS encryption
  • • No personal data is permanently stored in the cloud
  • • Recipe requests are processed and immediately discarded
  • • Rate limiting uses temporary session data only
  • • Pseudonymous device IDs used for quota enforcement are stored in Cloudflare KV for up to 30 days (free monthly quota) or up to 24 hours (Plus daily limits). Regeneration cache keys live up to 1 hour.

Security Measures

  • End-to-end encryption for API communications
  • No storage of sensitive personal information
  • Regular security updates
  • Secure coding practices

7. Data Retention

Local Data

  • • Retained indefinitely on your device
  • • Deleted when you uninstall the app
  • • You can delete specific items at any time

Cloud Data

  • • Device IDs (pseudonymous): Retained only for quota enforcement (up to 30 days for free monthly limits, up to 24 hours for Plus daily limits, and up to 1 hour for regeneration cache keys)
  • • Recipe requests: Not stored
  • • Subscription data: As per RevenueCat policies
  • • Support inquiries: As needed for resolution

8. Your Rights and Controls

You Can:

Access all your local data within the app
Delete individual food items, recipes, or lists
Clear all app data through device settings
Cancel subscriptions at any time
Request support or information about your data

Data Portability

  • • Export your data using device backup features
  • • Screenshot or share individual recipes
  • • Manually backup shopping lists

Data Deletion

To delete all your data:

  1. 1.Uninstall the app from your device
  2. 2.Cancel any active subscriptions
  3. 3.Contact support for cloud data removal requests

9. Children's Privacy

  • • Our app is not intended for children under 13
  • • We do not knowingly collect data from children
  • • Parents should monitor children's app usage
  • • Contact us immediately if a child has provided information

10. International Data Transfers

Recipe generation may process data internationally (e.g., through Cloudflare's global network and AI providers). All transfers use secure, encrypted connections. No personal contact information is permanently stored outside your device's region by us.

11. California Privacy Rights (CCPA)

California residents have additional rights:

Right to know what information we collect
Right to delete information
Right to opt-out of data sales (we don't sell data)
Right to non-discrimination

12. European Privacy Rights (GDPR)

EU residents have additional rights:

Right to access your data
Right to rectification
Right to erasure ("right to be forgotten")
Right to data portability
Right to restrict processing
Right to object to processing

Legal Basis for Processing

  • • Contract performance (providing app services)
  • • Legitimate interests (app improvements, security)
  • • Consent (for optional features)

13. Changes to This Policy

Updates

We may update this Privacy Policy to reflect:

  • • Changes in our practices
  • • New features or services
  • • Legal requirements

Notification

We will notify you of significant changes through:

  • • In-app notifications
  • • App update descriptions
  • • Our website

Continued Use

Using the app after changes means you accept the updated policy.

14. Data Breach Notification

In the unlikely event of a data breach:

  • 1.We will investigate immediately
  • 2.Affected users will be notified within 72 hours
  • 3.We will provide information on potential impact
  • 4.We will offer guidance on protective measures

15. Contact Information

For privacy questions, concerns, or requests:

Email: privacy@alimio.app

Website: https://alimio.app/privacy

Support: Through app store support systems

Data Protection Officer:
If applicable, contact: dpo@alimio.app

Mailing Address:
Alimio App
[Address to be provided]
United Kingdom

16. Supervisory Authority

EU residents may lodge complaints with their local supervisory authority.

UK residents may contact:
Information Commissioner's Office (ICO)
Website: https://ico.org.uk

17. Cookies and Tracking

Mobile App

  • The mobile app does not use cookies
  • No web tracking technologies are employed
  • No advertising identifiers are collected

Website

Our website uses minimal necessary cookies. See our website cookie policy for details.

18. Marketing Communications

  • Newsletter emails: Only sent with your explicit opt-in consent (see Section 2.4)
  • No push notifications for marketing
  • All app notifications are functional only (expiry alerts)
  • Unsubscribe from newsletter anytime in Settings

21. Permissions We Request

Camera

Used to capture food packaging photos for the AI Photo Scan feature.

AI Photo Scan Feature: Photos are sent to Microsoft Azure AI Vision (West Europe region) for transient cloud processing to identify food items and extract expiry dates. Images are not stored - they are processed in-memory and immediately discarded after analysis (within seconds).

Your Photo Library: We do not save images to your photo library or device storage

Control: You choose when to use AI Photo Scan by tapping the feature. Camera access is only used when you explicitly activate it.

Notifications

Used for local expiry reminders. No remote push tokens are collected; notifications are scheduled and delivered locally on your device.

19. Automated Decision Making

  • • No automated decision making affecting legal rights
  • • AI recipe generation is supplementary only
  • • You maintain full control over all decisions

20. Privacy Policy Acceptance

By using Alimio, you acknowledge that you have read and understood this Privacy Policy and agree to our data practices.

Your Privacy Matters

We built Alimio with privacy in mind. Your food data is yours alone. We're committed to keeping it that way.

Privacy Policy Version 1.6 - March 2026
Last Review Date: March 2026
Next Review Date: March 2027

Version History

Version 1.6 (March 2026)

  • Removed voice input feature and microphone permission disclosure
  • Removed meal planning references
  • Updated analytics metrics collected

Version 1.5 - January 22, 2026

  • Major Update: Added user account and cloud sync disclosure
  • Added Apple/Google Sign-In requirements
  • Added cloud sync to Supabase (EU hosted)
  • GDPR Enhancement: Explicit statement about EU GDPR rules