1. Information We Collect
Account Information
When you create an account, we collect:
- Email address — required for account creation and communication
- Full name — optional, used for display purposes
- Authentication provider — whether you signed in with email/password, Apple Sign-In, or Google Sign-In
Anonymous usage is supported without an account. You can upgrade to a full account at any time.
Body Metrics and Fitness Goals
To calculate your personal macro targets (BMR and protein-per-kcal ratio), we collect:
- Age, weight, height, and biological sex
- Activity level and fitness goal
- Target protein-per-kcal ratio
You provide this information voluntarily. It is used solely to power in-app calculations.
Food and App Preferences
- Dietary restrictions and allergens
- Protein source preferences
App Data
- Recipes you create or import, meal plans, and shopping lists
Technical Metadata
- Last login time, onboarding completion status, account creation date
2. Information We Do Not Collect
We do not collect:
- Location data of any kind
- HealthKit or health platform data
- Advertising identifiers (IDFA) or any ad-targeting data
- Crash reports or behavioral analytics (no Sentry, Firebase, PostHog, or similar)
We do not sell, rent, or share your data with advertisers or data brokers.
3. How We Use Your Information
| Purpose | Data Used |
|---|---|
| Authenticate your account | Email, hashed password, auth provider |
| Calculate macro and protein targets | Body metrics, fitness goals |
| Personalize recipe recommendations | Dietary restrictions, preferences |
| Deliver transactional emails | Email address |
| Store your recipes and meal plans | App data |
We do not use your data for advertising or sell it to third parties.
4. Third-Party Services
We use a small set of infrastructure and service providers:
Amazon Web Services (AWS)
Our backend (App Runner), file storage (S3), and content delivery (CloudFront) run on AWS. Your data is stored in AWS infrastructure. AWS is contractually prohibited from using your data for their own purposes.
OpenAI
When you use the Instagram recipe import feature, the recipe content you submit is sent to OpenAI's GPT-4 API for ingredient parsing and standardization. This is always user-initiated. We do not send OpenAI any personally identifiable information. Review OpenAI's privacy policy at openai.com/privacy.
Apple and Google Sign-In
If you choose to sign in with Apple or Google, we receive an authentication token and, where permitted, your name and email. We do not receive your Apple or Google passwords.
Gmail SMTP (Google)
We use Gmail's SMTP service to send transactional emails such as email verification and password resets. Only your email address is used for this purpose.
5. Data Storage and Security
Your data is stored in a PostgreSQL database hosted on AWS in the United States. Passwords are stored as hashed values — we never store your password in plain text.
We apply standard security practices including encrypted connections (HTTPS/TLS) and access controls. No system is perfectly secure, but we take reasonable steps to protect your information.
6. Data Retention and Deletion
You can permanently delete your account and all associated data directly within the app. When you request deletion, your personal information, body metrics, recipes, meal plans, and shopping lists are removed from our systems.
We do not retain your data after account deletion, except where required by law.
7. Children's Privacy
TunedCook is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with their information, contact us at support@tunedcook.app and we will promptly delete it.
8. Changes to This Policy
If we make material changes to this policy, we will update the effective date and notify you via the app or email. Continued use of TunedCook after changes are posted constitutes acceptance of the updated policy.
9. Contact
Questions, concerns, or data requests:
Email: support@tunedcook.app
We aim to respond within 5 business days.