Privacy Policy – SmartCart+

SmartCart+ ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your personal information when you use the SmartCart+ mobile application (the "App").

1. Information We Collect

a. Personal Information

• Email address, name, and profile picture
• Display name and uploaded profile photo (if provided)

b. Biometric Data

Face ID / Touch ID used solely for on‑device authentication. Biometric templates remain in the device's Secure Enclave and never leave your device or sync to iCloud.

c. Usage Data

• Shopping lists created, scanned items, and saved preferences
• Photos of groceries or products taken by the user

d. Data We Do Not Collect

• Precise or coarse location data
• Contacts or calendar data
• Persistent voice recordings

f. Cookies & Similar Technologies

The App does not use web cookies. Limited first‑party analytics relies on the device identifier.

2. How We Use Your Information

We use your information to:

• Generate smart shopping suggestions and insights
• Recognize items from grocery scans
• Authenticate and manage user accounts

3. How Data Is Stored and Processed

a. On Your Device (Local)

• Cached list data and settings
• Biometric authentication data (Secure Enclave)
• Temporary photo files

b. In the Cloud

• User account details and saved shopping lists

c. Third‑Party Processors

(all GDPR/CCPA & Apple‑compliant)

• Google Gemini API – grocery photo recognition and smart list suggestions
• Firebase – secure authentication & cloud data storage
• Apple – subscription billing & account recovery

No third‑party service is permitted to use your data for advertising or cross‑app tracking.

4. Data Sharing

We do not sell or rent your personal information. We only share data with:

• The service providers listed above, strictly to operate core App features
• Apple and Google services as required for functionality

We do not share data for marketing or advertising purposes.

5. Data Protection Measures

• End‑to‑end encryption (TLS) during data transfer
• Firebase App Check & secure user authentication
• Biometric locks for sensitive actions
• Secure, monitored backend infrastructure

6. User Rights

You may:

• Access your profile data and preferences
• Delete individual entries or your entire account
• Contact us for assistance at: support@ingredients2meals.com

When you delete your account, all personal data is permanently erased immediately.

7. Data Retention

• Data is retained while your account is active
• Upon account deletion, all data is erased immediately

8. Children's Privacy

SmartCart+ is not directed to children under 13. We do not knowingly collect personal data from anyone under 13. If we learn that we have inadvertently collected such information, we will delete it promptly. Parents or guardians who believe that their child has provided us with personal information may contact us at support@ingredients2meals.com.

9. Cookies & Tracking

The App does not use advertising identifiers (IDFA) or third‑party tracking SDKs.

No data is shared for advertising or cross‑site tracking.

10. Legal Compliance

We comply with:

• Apple App Store Privacy Requirements
• GDPR (for EU users)
• CCPA (for California residents)
• Children's Online Privacy Protection Act (COPPA)