The short version
We collect what we need to run the service: your email, your recipes, and minimal product analytics. We don't sell your data. You can export or delete everything any time.
What we collect
- Account info (via Clerk): email address, display name, sign-in metadata. We use Clerk as our auth provider; their data handling is governed by Clerk's privacy policy.
- Content you create: recipes, ingredients, instructions, notes, photos, tags, and any chat-source URLs you provide. Stored in our database (Neon Postgres) and, for photos, in Vercel Blob storage. Photos are served from public but unguessable URLs (a random ID in the link) so they can be shown by share links and connected AI clients — anyone with the exact URL can view that image.
- Device & notification data (iOS app): if you install the iOS app and turn on notifications, we store an Apple Push Notification service (APNs) device token plus your device platform, app version, and bundle ID, along with your notification preferences — so we can deliver the alerts you opt into. You can turn notifications off at any time, and signing out of the iOS app removes its token.
- OAuth grants: when you connect an AI client (Claude, ChatGPT, etc.), we store metadata about the grant (which client, when, last used).
- Product analytics & diagnostics: event data linked to your account (pageviews, key actions like "saved a recipe", filter usage) and error reports — including stack traces and details of the request that failed — via PostHog. Used to understand how the product is working and to fix bugs; not sold.
- Server logs: standard request logs (IP, URL, response status, timestamp) retained for ~30 days for debugging and abuse prevention.
How we use it
- To provide the service (show your recipes, connect your AI).
- To send transactional email (verification, password reset, account-related notifications). We use Clerk's email infra for this.
- To improve the product (which features are used, where users drop off in onboarding).
- To prevent abuse and respond to support requests.
Who we share it with
We share data only with the service providers we use to operate:
- Vercel (hosting + Blob storage for photos)
- Neon (Postgres database)
- Clerk (authentication + transactional email)
- PostHog (product analytics + error monitoring)
- Apple (APNs — push-notification delivery to the iOS app)
Each handles data under their own published privacy policies and security practices. We do not sell your data, and we don't share it with advertising or marketing networks.
Your content and AI clients
When you connect an AI client — supported clients include Claude (Anthropic), ChatGPT (OpenAI), Le Chat (Mistral), Perplexity, and Grok (xAI) — that client gets an OAuth token scoped to your recipe library. Through that token it can read, save, edit, and (depending on the tool) remove recipes, photos, notes, and edit history on your behalf, and the recipe content it works with is sent to that provider. Each AI provider operates under its own privacy policy. If a client tells us where a recipe came from, we may store that originating chat URL alongside the recipe (it's included in your data export). You can revoke any connection at any time at /connect.
Cookies
We use cookies for sign-in (set by Clerk), to remember your theme preference, and for product analytics (set by PostHog). We don't use third-party advertising cookies.
Your rights (CCPA / GDPR)
Regardless of where you live, you have the following rights:
- Access / portability: request a copy of all your data via the export endpoint at /account.
- Deletion: delete your account at /account. This immediately and permanently removes your recipes, photos, notes, AI connections, and account record. Residual copies in encrypted backups age out within 30 days.
- Correction: you can edit any of your content directly in the app.
- Opt-out of analytics: email us at support@cookingrebel.com and we'll exclude your account from analytics.
- Non-discrimination: exercising any of these rights doesn't affect the service you receive.
We don't sell personal information, so the CCPA "right to opt out of sale" doesn't apply.
Data retention
We keep your account data and content while your account is active. When you delete your account we remove your personal data and photo files immediately; residual copies in encrypted backups age out within 30 days. Analytics and error-monitoring events held by PostHog are retained under PostHog's configured retention window. We may keep limited records longer where required by law (e.g. accounting records, abuse-investigation evidence).
Children
Cooking Rebel isn't directed at children under 13 and we don't knowingly collect their data. If you believe a child has signed up, contact us and we'll delete the account.
Security
We use industry-standard encryption in transit (HTTPS) and at rest (provider-managed). Auth tokens are signed with a private keypair and verified per-request. We don't claim to be unbreakable, but we take reasonable measures and respond promptly to any incident.
Changes
Material changes to this policy will be announced by email or in-product notice at least 14 days before they take effect.
Contact
Privacy questions or rights requests: support@cookingrebel.com.