VibrantEats Privacy Policy

1 Introduction

VibrantEats ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, protect, and share your personal information when you use our mobile application and related services.

By using VibrantEats, you consent to the collection and use of your information as described in this Privacy Policy. We encourage you to read this policy carefully and contact us if you have any questions.

2 Information We Collect

Personal Information You Provide

• Account Information: Name, email address, and profile preferences when you create an account
• Dietary Preferences: Food allergies, dietary restrictions, health goals, and taste preferences
• Health Information: Optional health conditions, nutritional goals, and wellness objectives
• User Content: Restaurant reviews, ratings, photos, and comments you share
• Communication Data: Messages you send us through support channels

Information Automatically Collected

• Location Data: Precise location when the app is in use (with your permission)
• Device Information: Device type, operating system, unique device identifiers, and app version
• Usage Analytics: How you interact with the app, features used, restaurants viewed, and search patterns
• Performance Data: App crashes, loading times, and technical diagnostics
• Network Information: IP address, connection type, and network provider

Information from Third Parties

• Restaurant Data: Menu information, nutritional data, and hours from restaurant partners
• Mapping Services: Location verification and routing information
• Social Media: Public profile information if you connect social accounts

3 How We Use Your Information

We use your information to provide, improve, and personalize the VibrantEats experience:

Core Service Delivery

• Provide personalized restaurant recommendations based on your dietary preferences and health goals
• Show restaurants and healthy menu options near your location
• Enable AI-powered meal suggestions tailored to your taste profile
• Generate weekly meal plans and grocery lists for Premium users
• Process and display user-generated content like reviews and photos

Service Improvement and Analytics

• Analyze usage patterns to improve our AI recommendation algorithms
• Identify popular restaurants and menu items to enhance our database
• Conduct research to develop new features and dietary support
• Monitor app performance and fix technical issues
• Ensure app security and prevent fraudulent activity

Communication and Support

• Send relevant notifications about new restaurants and menu items in your area
• Provide customer support and respond to your inquiries
• Send important app updates, security alerts, and policy changes
• Deliver Premium feature announcements and subscription information

4 Information Sharing and Disclosure

We Do NOT Sell Your Personal Data

VibrantEats does not sell, rent, or trade your personal information to third parties for marketing purposes. Your privacy is not for sale.

Limited Sharing for Service Delivery

• Restaurant Data Providers: Anonymized usage patterns to improve menu accuracy and availability
• Apple App Store: Subscription status and payment processing (handled entirely by Apple)
• Analytics Providers: Google Analytics and Firebase with anonymized, aggregated data only
• Cloud Infrastructure: Google Cloud Platform for secure data storage and processing
• Customer Support Tools: Third-party platforms to manage support tickets and communications

Legal and Safety Requirements

We may disclose your information when required by law, court order, or government request, or when necessary to protect our rights, property, or safety, or that of our users or the public.

Business Transfers

If VibrantEats is acquired by or merged with another company, your information may be transferred to the new entity, subject to the same privacy protections outlined in this policy.

5 Data Security and Protection

We implement industry-standard security measures to protect your personal information:

Technical Safeguards

• Encryption: All data transmitted between your device and our servers is encrypted using TLS 1.3
• Secure Storage: Personal data is encrypted at rest using AES-256 encryption
• Access Controls: Limited employee access to personal data on a need-to-know basis
• Security Monitoring: 24/7 monitoring for potential security threats and vulnerabilities
• Regular Audits: Third-party security assessments and penetration testing

Cloud Infrastructure Security

We use Google Cloud Platform, which maintains SOC 2 Type II certification and complies with international security standards including ISO 27001. Our data is stored in geographically distributed, highly secure data centers.

Data Minimization

We collect only the information necessary to provide our services and delete data that is no longer needed for legitimate business purposes.

6 Your Privacy Rights and Choices

Access and Control Your Data

• Access: Request a copy of the personal data we have about you
• Correction: Update inaccurate or incomplete information in your profile
• Deletion: Delete your account and associated personal data
• Portability: Export your data in a machine-readable format
• Restriction: Limit how we process certain types of your data

Communication Preferences

• Opt-out of marketing communications while keeping essential service notifications
• Customize notification types and frequency in app settings
• Unsubscribe from emails using the link in any promotional message

Location Data Control

• Enable or disable location services for VibrantEats in your device settings
• Choose "While Using App" location permission for privacy
• Manually set your location if you prefer not to share GPS data

7 Location Data and Services

Location information is essential for VibrantEats to recommend nearby healthy restaurants and calculate travel times.

How We Use Location Data

• Find restaurants within your preferred distance range
• Provide accurate directions and estimated travel times
• Show location-specific menu availability and pricing
• Suggest restaurants along your route when traveling
• Analyze regional dining trends to improve our database

Location Privacy Controls

• Permission Required: We only access location when you explicitly grant permission
• Active Use Only: Location is accessed only when the app is actively in use
• No Background Tracking: We do not track your location when the app is closed
• Manual Override: You can set a fixed location instead of using GPS
• Data Retention: Location history is automatically deleted after 30 days

8 Subscription and Payment Data

VibrantEats Premium subscriptions are processed entirely through the Apple App Store. We do not directly handle payment information.

What We Receive from Apple

• Subscription status (active, expired, cancelled)
• Subscription tier (monthly or annual)
• Purchase and renewal dates
• App Store receipt validation data

What We Do NOT Receive

• Credit card or payment method information
• Billing addresses or financial details
• Apple ID passwords or authentication data
• Purchase history from other apps

All payment processing, refunds, and billing disputes are handled directly by Apple according to their terms and privacy policy.

9 Children's Privacy

VibrantEats is not intended for children under 13 years of age, and we do not knowingly collect personal information from children under 13.

If We Discover Child Data

• We will immediately delete any personal information from children under 13
• We will disable the associated account
• We will notify the child's parent or guardian if we have contact information

Parental Controls

Parents who believe their child has provided personal information to VibrantEats should contact us immediately at privacy@vibranteats.com with details so we can remove the information promptly.

10 International Users and Data Transfers

VibrantEats is based in the United States, and our servers are located in the US and other countries where our service providers operate.

Cross-Border Data Transfers

• Your information may be transferred to and processed in the United States
• We ensure appropriate safeguards are in place for international transfers
• We comply with applicable international privacy laws and regulations
• Standard contractual clauses protect EU user data transfers

Regional Privacy Rights

• EU Users (GDPR): Enhanced rights to access, correct, delete, and port your data
• California Users (CCPA): Right to know, delete, and opt-out of data sales
• Other Jurisdictions: We respect local privacy laws and regulations

11 Data Retention

We retain your information only as long as necessary to provide our services and comply with legal obligations:

Account Data

• Active Accounts: Retained while your account is active and functional
• Closed Accounts: Most data deleted within 30 days of account deletion
• Backup Systems: Data may remain in backups for up to 90 days
• Legal Requirements: Some data may be retained longer if required by law

Usage and Analytics Data

• Personal Analytics: Deleted when you delete your account
• Anonymized Data: May be retained indefinitely for service improvement
• Location History: Automatically deleted after 30 days
• Support Communications: Retained for 3 years for quality assurance

12 Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements.

How We Notify You of Changes

• Material Changes: Email notification to registered users
• In-App Notifications: Prominent notices when you open the app
• Policy Updates: Updated effective date at the top of this policy
• Continued Use: Using the app after changes constitutes acceptance

Previous Versions

Previous versions of this Privacy Policy are available upon request. We maintain records of significant policy changes and their effective dates.