Privacy Policy
Last updated: May 2026
1. Introduction
NutriBakes and Beyond ("we", "us", "the App") respects your privacy. This policy explains what information we collect, how we use it, and the choices you have. By using the App you agree to this policy.
2. Information we collect
Account information: When you sign in, we collect your email address and basic profile details (such as your name and avatar) provided by your sign-in provider (e.g. Google).
Content you submit: Recipes, ingredients, dietary preferences, and other inputs you provide to the AI tools.
Usage data: Basic technical data such as device type, browser, and pages visited, used to keep the App running and improve it.
Billing data: If you subscribe, payment is processed by our payment provider (Stripe). We do not store your full card details.
3. How we use your information
We use your information to: provide and operate the App, process AI requests, manage your account and subscription, respond to support requests, prevent fraud and abuse, and improve our features.
3a. Email communications & marketing consent (CASL)
We may send you transactional emails related to your account, including welcome messages, billing receipts, and security notices. These are sent as part of operating the App and do not require separate consent.
We will only send you promotional emails, including recipe inspiration, product updates, newsletter content, and offers, if you have given us express consent by checking the relevant opt-in box during registration or at another point of contact. Your consent is recorded with a timestamp and the method by which it was given.
You may withdraw consent and unsubscribe from promotional emails at any time by clicking the unsubscribe link in any email we send, or by contacting us directly. Withdrawal of consent does not affect the lawfulness of messages sent before withdrawal.
We retain records of consent in compliance with Canada's Anti-Spam Legislation (CASL).
4. AI processing
When you use AI-powered features, your inputs are sent to third-party AI providers (such as Google and OpenAI via the Lovable AI Gateway) to generate responses. Do not submit sensitive personal information, medical records, or confidential data to the AI tools.
5. Sharing your information
We do not sell your personal information. We share data only with service providers that help us run the App, including:
• Authentication and database hosting (Lovable Cloud / Supabase)
• AI model providers (Google, OpenAI)
• Payment processing (Stripe)
• Analytics and error monitoring
We may also disclose information if required by law.
6. Cookies
We use essential cookies to keep you signed in and to remember your preferences. We do not use advertising cookies.
6a. Guest usage tracking (free swap tool)
When you use the free ingredient swap tool without signing in, we store your usage count and timestamp locally on your device using localStorage. This information does not leave your device and is not sent to our servers. It is used solely to manage the guest usage limit and is automatically cleared after 24 hours.
6b. Referral tracking
We use localStorage to track referral links when you visit our app through an ambassador referral link. This stores a referral code on your device to attribute your signup to the correct ambassador if you create an account. This data is stored locally on your device and is not shared with third parties. It is cleared after your account is created or after 30 days whichever comes first.
7. Data retention
We keep your account data for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us.
8. Security
We use industry-standard measures to protect your data, including encrypted connections (HTTPS) and access controls. No method of transmission over the internet is 100% secure, however.
9. Your rights
Depending on where you live, you may have the right to access, correct, export, or delete your personal data, and to object to certain processing. Contact us to exercise any of these rights.
10. Children
The App is not directed to children under 13, and we do not knowingly collect personal information from children under 13.
11. Changes to this policy
We may update this policy from time to time. Material changes will be reflected by updating the "Last updated" date above.