Eat Roostly — Privacy Policy
We collect only what we need to plan meals for your household — your email, the household profile you build (members, ages, allergies, diets, preferences), your pantry, and (only if you connect them) your calendar busy-nights and grocery accounts. We send the planning details to Anthropic's Claude AI to generate your plans. We do NOT sell your data, show you ads, or use it to train third-party AI. You can edit or permanently delete everything yourself from Settings. The full details, including every company that processes your data, are below.
1. Who we are
Eat Roostly is an AI-powered weekly meal planner operated by 5394 Studios LLC, a Colorado limited liability company. This policy explains what data we collect, why, how it is stored, who processes it, and the choices you have. For privacy questions or data requests, contact legal@5394studios.com (see Section 15).
2. Information we collect
Your email, the household details you enter, your pantry, what you plan and rate, and — only if you connect them — calendar busy-signals and grocery accounts. We never see your card number.
We collect only what is needed to plan meals for your household.
- Account: the email address you sign in with.
- Household profiles: each member's name, birth year (used to estimate age for portioning), dietary restrictions, allergies and intolerances (and their severity), flavor preferences, calorie targets, cooking equipment and skill, household size, preferred grocery stores, and residence(s) with optional location.
- Pantry inventory: photos you take of your pantry, fridge, or freezer (used once to extract ingredients, then discarded — we do not store the photos), plus the resulting itemized list.
- Planning activity: the meal plans and recipes generated for you, shopping lists, meal ratings, and the post-cooking pantry changes you confirm.
- Calendar data (only if you connect Google Calendar): we read event start/end times and titles for the upcoming week to detect busy nights and travel, and we write the dinner events you ask us to schedule. We do not store the full content of unrelated events.
- Grocery integrations: your preferred stores; if you connect a Kroger account, the OAuth tokens needed to add items to your cart at your request; if you use "Shop on Instacart," your shopping list is sent to Instacart to create a shareable cart page (Instacart does not require connecting an account through us).
- Billing (only if you subscribe): a Stripe customer ID and subscription status. We never see or store your card number — Stripe handles payment data directly.
- Operational data: anonymous usage events (e.g. "plan generated"), error reports (via Sentry, where enabled, with your user id attached so issues can be grouped), and feedback you submit in the app.
3. How we use it
To generate your plans, build pantry-aware lists, filter for allergies and diets, work around your calendar, send the emails you expect, process payments, and fix bugs. Nothing else.
- Generate weekly meal plans tailored to your household.
- Build pantry-aware shopping lists and, at your request, send them to your grocery account or Instacart.
- Filter recipes against your allergies, intolerances, and diets on a best-effort basis (this is a convenience, not a safety guarantee).
- Surface busy nights and travel from your calendar.
- Send account and service emails — sign-in codes, household invites, and meal reminders — via our email provider.
- Process subscriptions and prevent billing abuse.
- Keep the Service working — debug errors and tune the AI prompts based on aggregate usage patterns.
We do NOT sell your data, share it with advertisers, use it to train third-party AI models, or use it for any purpose unrelated to providing the Service.
4. AI processing
To make a plan, we send the relevant household details (not your email, name, payment info, or login tokens) to Anthropic's Claude AI. Anthropic does not train on it under their API terms.
Meal plans, recipes, pantry photo extraction, and shopping-list aggregation use the Anthropic Claude API. Relevant inputs — household preferences, pantry contents, calendar busyness, and recipe history — are sent to Anthropic to generate the response. Under Anthropic's API terms, your data is not retained to train their models. We do not send your email, name, payment details, or auth tokens to the AI provider.
5. Third-party processors
These are the companies that help us run the app. Each only gets what it needs, and each has its own privacy policy.
We use the following services to operate the Service:
- Supabase — authentication and database (PostgreSQL, hosted in the United States).
- Anthropic — AI model provider (Claude API, United States).
- Stripe — payment processing (only if you subscribe; United States).
- Google — OAuth and Calendar API (only if you connect your Google account).
- Resend — transactional email delivery (sign-in codes, household invites, reminders).
- Kroger — OAuth and Cart API (only if you connect your Kroger account).
- Instacart — Developer Platform (only when you choose "Shop on Instacart," to turn your list into a shareable cart page).
- Cloudflare — web hosting and DNS.
- Sentry — error reporting (where enabled).
Each operates under its own privacy policy. Tokens that grant access to your Google or Kroger account are encrypted at rest.
6. Google user data (Limited Use)
If you connect Google Calendar, we only use it to plan around your week and to add the dinners you ask for. We never use it for ads, never sell it, and no human reads it except as needed to run the service or with your consent.
When you connect Google Calendar, we request the calendar.events scope so we can (a) read your upcoming events to detect busy nights and travel, and (b) write the dinner events you ask us to schedule. Eat Roostly's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:
- We use Google user data only to provide the planning features described above.
- We do not use Google user data for advertising.
- We do not transfer or sell Google user data to third parties, except as necessary to provide or improve these features, to comply with applicable law, or as part of a merger or acquisition.
- We do not allow humans to read Google user data unless we have your specific consent, it is necessary for security or to comply with the law, or the data is aggregated and anonymized for internal operations.
You can disconnect Google at any time inside the app or at https://myaccount.google.com/permissions; we delete the stored tokens when you do.
7. How we share information
We share data only with the processors above to run the app, when the law requires it, or if the business is ever sold. We do not sell it.
We do not sell your personal information. We share it only with the service providers listed in Section 5 so they can perform their function; when required by law or to respond to valid legal process; to protect the rights, safety, and security of our users or the Service; and, if 5394 Studios is involved in a merger, acquisition, or sale of assets, with the successor entity (we will notify you of any such change).
8. Data retention
We keep your data while your account exists. Pantry photos are thrown away right after scanning. Delete your account and it all goes — except records we must keep by law (like billing).
We retain your account data for as long as your account exists. Pantry photos are discarded immediately after extraction — only the resulting itemized list is stored. Past plans and shopping lists are kept so you can refer back. When you delete your account, your household data is permanently removed, except where limited retention is required by law (for example, billing and tax records held by our payment processor).
9. Deleting your data
Day-to-day deletes go to an in-app Trash you can restore from. Deleting your whole account is permanent and you can do it yourself in Settings — it removes your household data and cancels any subscription.
Within the app, items you remove (plans, recipes, pantry items) go to a Trash so you can restore them. Account deletion is different and permanent: from Settings → Delete account, you can delete your account yourself at any time. Doing so removes your household and its data (plans, pantry, recipes, ratings, residences, and preferences) and cancels any active subscription so you are not billed again. If you share a household with others, we transfer ownership to a remaining member rather than deleting the data they still use; only your own membership and personal records are removed in that case.
10. Your rights & choices
You can see, fix, export, and delete your data, and disconnect any service you connected. Some rights depend on where you live.
- Access — request a copy of your data by emailing legal@5394studios.com.
- Correction — edit your profile, pantry, and household members directly in the app.
- Deletion — delete your account and all household data yourself from Settings → Delete account (or email legal@5394studios.com). You can also revoke our Google access at https://myaccount.google.com/permissions and your Kroger access in Kroger's account settings.
- Portability — export your meal plans and recipes via the in-app PDF export; broader exports are available on request.
- Communications — service emails (sign-in codes, billing) are required while you have an account; optional reminders can be turned off in the app.
Depending on where you live (for example, under the GDPR or California law), you may have additional rights, such as objecting to or restricting certain processing or lodging a complaint with your local data-protection authority. Email us to exercise any of these and we will respond as required by applicable law.
11. Children
The app is for adults. You can add kids as household members so we can plan family meals, but that is information you (the adult account holder) provide about your household — we do not collect data directly from children.
Eat Roostly is intended for adults (the account holder must be 18 or older) and is not directed to children. We do not knowingly collect personal information directly from children. A parent or guardian may add a child as a household member (for example, name, birth year, and dietary needs) so meals can be tailored to the family; this is information the responsible adult provides about their own household, not data we collect from the child. If you believe a child has provided us information directly, contact us and we will delete it.
12. Security
Data is transmitted over HTTPS and stored on Supabase's managed Postgres with row-level security, so users only see their own household's data. OAuth tokens are encrypted at rest. We do not store payment card details — those go directly to Stripe. No system is perfectly secure, but we work to protect your information and to limit access to it.
13. Where your data is processed
Our providers (including Supabase, Anthropic, and Stripe) process data in the United States. If you use the Service from outside the U.S., you understand your information will be processed in the U.S. and other countries where our providers operate.
14. Changes to this policy
If we make material changes, we will update the effective date above and notify active accounts by email at the address on file. Continued use after a change takes effect means you accept the updated policy.
15. Contact
Privacy & data requests: legal@5394studios.com
General & account support: support@5394studios.com