Privacy Policy for PRūF
Effective Date: January 26, 2025
Last Updated: January 26, 2025
Introduction
PRūF ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how
we collect, use, disclose, and safeguard your information when you use our mobile application PRūF
(the "App") and related services.
Information We Collect
Personal Information You Provide
Account Information:
- Email address (required for account creation)
- Full name (optional, for Apple Sign-In users)
- Authentication credentials (securely managed through Apple Sign-In, Google Sign-In, or
email/password)
User Preferences:
- Food allergens you want to avoid
- Specific additives you wish to avoid
- Email communication preferences
- Premium subscription status
User-Generated Content:
- Restaurant suggestions and requests
- Inaccuracy reports for menu items or ingredient information
- Feedback and support communications
Information Automatically Collected
Usage Data:
- App usage patterns and feature interactions
- Restaurant and menu item views
- Search queries within the app
- Cache and performance data
- Error logs and crash reports (anonymized)
Device Information:
- Device type and operating system version
- App version and build information
- Device identifiers for authentication and security
- Network connection status for offline functionality
Information from Third Parties
Restaurant Data:
- Menu items and nutritional information from restaurant partners
- Ingredient lists and additive information from food databases
- Nutritional data from FDA and food safety authorities
Authentication Services:
- Profile information from Apple ID or Google account (with your permission)
- Email verification status
How We Use Your Information
Core App Functionality
- Personalized Food Safety Alerts: Analyze menu items against your allergen and
additive preferences
- Restaurant Discovery: Provide relevant restaurant recommendations based on your
dietary needs
- Premium Features: Enable advanced filtering, detailed nutritional analysis, and
ad-free experience
- Account Management: Maintain your profile, preferences, and subscription status
Communication
- Welcome Emails: Send onboarding information for new users
- Service Updates: Notify you about app updates, new features, or important
changes
- Support: Respond to your inquiries and provide customer assistance
- Marketing (Optional): Send promotional content only if you opt-in
Service Improvement
- Analytics: Understand app usage patterns to improve features and user
experience
- Quality Assurance: Monitor app performance and fix technical issues
- Safety: Ensure accurate food safety information and prevent misuse
Information Sharing and Disclosure
We Do Not Sell Your Personal Information
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
Limited Sharing for Service Provision
Email Service Provider (Brevo):
- Email addresses for sending transactional emails (welcome, password reset)
- Communication preferences for managing subscriptions
- Processed securely with data processing agreements
Authentication Providers:
- Apple Sign-In and Google Sign-In handle authentication securely
- We receive only necessary profile information with your consent
Cloud Infrastructure (Supabase):
- User accounts, preferences, and app data stored securely
- Hosted with enterprise-grade security and data protection
- Data processing agreements ensure privacy compliance
Legal Requirements
We may disclose information when required by law, regulation, legal process, or governmental request,
or when necessary to:
- Protect our rights, property, or safety
- Protect users' rights, property, or safety
- Prevent fraud or security threats
- Comply with applicable laws and regulations
Data Security
Security Measures
- Encryption: All data transmitted between your device and our servers is
encrypted using industry-standard TLS
- Authentication: Secure user authentication with support for Apple Sign-In and
Google Sign-In
- Access Controls: Strict access controls limit who can access your personal
information
- Regular Security Audits: Periodic security assessments and vulnerability
testing
- Data Minimization: We collect only information necessary for app functionality
Your Security Responsibilities
- Keep your account credentials secure
- Use strong, unique passwords for email/password accounts
- Log out of shared devices
- Report suspicious activity to our support team
Your Privacy Rights
Access and Control
- View Your Data: Access your account information and preferences within the app
- Update Information: Modify your allergen preferences, email settings, and
profile information
- Data Export: Request a copy of your personal information
- Account Deletion: Delete your account and associated data
Communication Preferences
- Email Controls: Opt-out of marketing emails while maintaining essential service
communications
- Notification Settings: Control app notifications and alerts
- Preference Updates: Modify communication preferences at any time
Regional Rights
For EU/UK Users (GDPR):
- Right to access, rectify, or erase your personal data
- Right to restrict or object to processing
- Right to data portability
- Right to withdraw consent
For California Users (CCPA):
- Right to know what personal information is collected
- Right to delete personal information
- Right to opt-out of sale (we don't sell data)
- Right to non-discrimination for exercising privacy rights
Data Retention
- Account Data: Retained while your account is active or as needed to provide
services
- Usage Data: Aggregated and anonymized for analytics, retained for up to 2 years
- Communication Records: Support and feedback records retained for 3 years
- Legal Requirements: Some data may be retained longer if required by law
- Deletion: Upon account deletion, personal data is removed within 30 days
Children's Privacy
PRūF is not intended for children under 13 years of age. We do not knowingly collect personal
information from children under 13. If we discover that a child under 13 has provided personal
information, we will promptly delete such information.
International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure
appropriate safeguards are in place for international transfers, including:
- Adequacy decisions by relevant authorities
- Standard contractual clauses
- Other appropriate transfer mechanisms
Third-Party Services
Integrated Services
- Apple Sign-In / Google Sign-In: Authentication services with their own privacy
policies
- App Store / Google Play: App distribution platforms with separate privacy
practices
- Email Service Provider: Transactional email delivery with data processing
agreements
External Links
The app may contain links to restaurant websites or other external services. We are not responsible
for the privacy practices of these external sites.
Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes in our practices or for legal, operational, or
regulatory reasons. We will:
- Notify you of material changes through the app or email
- Post the updated policy with the effective date
- Provide advance notice when possible
Medical Disclaimer
PRūF provides food ingredient and additive information for educational purposes only. This
information is not medical advice and should not replace consultation with healthcare professionals.
Individual sensitivities and medical conditions vary.
Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal
information:
We will respond to privacy inquiries within 30 days.