← Back to Home
Privacy Policy
Effective Date: December 23, 2025
At Happy Munch ("we," "our," or "us"), we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you use our mobile application.
Information We Collect
Account Information:
- Email address (for account creation and authentication)
- Name (optional)
- Authentication tokens from third-party providers (Apple, Google)
Health-Related Information:
⚠️ Important Notice About Dietary Information
We collect information about your dietary preferences and restrictions, including:
- Food allergies and intolerances
- Dietary preferences (vegan, vegetarian, etc.)
- Fitness and wellness goals
- Custom dietary information you provide in "Other" fields
Please note: We are NOT a HIPAA-covered entity. The dietary information you provide is used solely to personalize your meal recommendations. This information does not constitute medical records and should not replace professional medical advice.
App Usage Data:
- Menu photos you capture (processed in real-time, not permanently stored)
- Meal recommendations you receive and select
- Your meal history and favorites
- Timestamps of your app interactions
- Subscription status and purchase history
- Number of meal analyses performed (for free tier tracking)
Technical Information:
- Device type and operating system
- App version
- Crash reports and performance data
- General location (city/region level only, if you permit)
How We Use Your Information
We use your information to:
- Provide personalized meal recommendations based on your dietary needs
- Save your preferences and dietary restrictions
- Improve our recommendation algorithms
- Send important app updates and safety notifications
- Provide customer support
- Ensure app security and prevent fraud
- Comply with legal obligations
Health Information Handling
How We Process Dietary Restrictions:
- Your dietary restrictions are encrypted and stored securely
- We use this information solely to filter and personalize meal recommendations
- Menu photos are analyzed using machine learning but are not stored with your health data
- We do NOT share your dietary information with restaurants or third parties without your explicit consent
Custom Field Data ("Other" Entries):
- Free-form text you enter in "Other" fields is processed to understand additional dietary needs
- This information is treated with the same security as predefined dietary restrictions
- We do not perform medical diagnosis or interpretation of this information
- Custom entries are limited to 40 characters to encourage concise, relevant information
Data Sharing with Third Parties
We share your data only in these specific circumstances:
- OpenAI: Menu photos are sent for analysis but are not stored. Your dietary restrictions may be included to improve recommendation accuracy
- Firebase (Google): Authentication, database, and app infrastructure services under strict data processing agreements
- Apple: Subscription processing and in-app purchase management (Apple does not share your financial information with us)
- Legal Requirements: When required by law or to protect rights and safety
- With Your Consent: Only when you explicitly authorize sharing
We NEVER:
- Sell your personal or dietary information
- Share your health data for advertising purposes
- Allow unauthorized access to your dietary restrictions
Data Retention
| Data Type |
Retention Period |
Reason |
| Account Information |
Until account deletion |
To provide ongoing service |
| Dietary Restrictions |
Until explicitly changed or account deleted |
To maintain your preferences |
| Meal History |
90 days (or until manually deleted) |
To provide history feature |
| Menu Photos |
Processed in real-time, not stored |
Privacy by design |
| Custom Field Entries |
Until changed or account deleted |
To maintain your custom preferences |
Your Rights and Choices
Your Privacy Rights Include:
- Access: Request a copy of your personal data
- Correction: Update or correct inaccurate information
- Deletion: Request deletion of your account and associated data
- Portability: Export your data in a machine-readable format
- Restriction: Limit how we process your data
- Objection: Object to certain data processing activities
- Withdrawal of Consent: Withdraw consent at any time
To exercise these rights, contact us at privacy@happy-munch.com
GDPR Compliance (For EU Residents)
Legal Basis for Processing:
- Consent: For processing dietary restrictions and health-related preferences
- Contract: To provide the meal recommendation service you requested
- Legitimate Interests: For app improvement and security
International Data Transfers:
Your data may be transferred to servers in the United States. We ensure appropriate safeguards are in place, including standard contractual clauses with our service providers.
Subscription & Payment Information
What we collect:
- Subscription status (free or premium tier)
- Subscription type (weekly, monthly, or annual)
- Subscription start and renewal dates
- Transaction identifiers from Apple
What we DON'T collect:
- Credit card numbers or payment details
- Bank account information
- Apple ID password or payment credentials
All payment processing is handled securely by Apple through the App Store. We only receive confirmation of successful transactions and subscription status updates.
Data Security
We implement industry-standard security measures including:
- Encryption of data in transit and at rest
- Regular security audits
- Access controls and authentication
- Secure infrastructure with Supabase
- Regular backups and disaster recovery procedures
Children's Privacy
Happy Munch is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately for deletion.
California Privacy Rights
California residents have additional rights under the CCPA, including:
- Right to know what personal information we collect
- Right to delete personal information
- Right to opt-out of the sale of personal information (we do not sell your data)
- Right to non-discrimination for exercising privacy rights
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes through the app or via email. The "Effective Date" at the top will be updated. Your continued use of Happy Munch after such modifications constitutes your acceptance of the updated policy.
Data Breach Notification
In the unlikely event of a data breach that affects your personal information, we will notify you within 72 hours via email and in-app notification, detailing the nature of the breach and steps we're taking to protect your data.