Privacy Policy

📅 Last updated: February 23, 2026 | Effective Date: February 23, 2026

1. Information We Collect

1.1 Information You Provide

• Account Information: Email address, username, password (encrypted), and optional profile photo
• Recipe Data: Recipes you create, save, import, or share through Forkr, including ingredients, instructions, photos, notes, and tags
• User-Generated Content: Comments, ratings, meal plans, shopping lists, and any other content you create within the app
• Communications: Messages you send to us for support, feedback, or inquiries

1.2 Information Automatically Collected

• Device Information: Device type, operating system, unique device identifiers, mobile network information
• Usage Data: Features you use, pages you view, time spent in app, app interactions, crash reports
• Location Data: Approximate location based on IP address (not precise GPS location)
• Cookies and Similar Technologies: Small data files stored on your device to improve app functionality

1.3 Information from Third Parties

• Social Media: If you sign in with Google, Apple, or Facebook, we receive basic profile information (name, email, profile picture)
• Recipe Sources: When you save recipes from websites, Instagram, TikTok, or other platforms, we extract publicly available recipe information

2. How We Use Your Information

We use your information to:

2.1 Provide and Improve Our Service

• Create and manage your account
• Store and sync your recipes across devices
• Extract and parse recipe information using AI
• Enable recipe sharing and collaboration features
• Generate meal plans and shopping lists
• Provide customer support and respond to your requests
• Improve app performance, features, and user experience

2.2 Communication

• Send service-related notifications (recipe saves, sync status, updates)
• Respond to your support inquiries
• Send optional marketing communications (with your consent)
• Notify you of important changes to our service or policies

2.3 Safety and Security

• Detect and prevent fraud, abuse, and security issues
• Enforce our Terms of Service
• Comply with legal obligations

3. How We Share Your Information

We may share your information in the following limited circumstances:

3.1 With Your Consent

• When you choose to share recipes with friends or family
• When you publish recipes to public collections

3.2 Service Providers

We work with trusted third-party companies that help us operate Forkr:

• Firebase (Google): Authentication, database, and cloud storage
• AI Processing Services: Recipe extraction and text analysis (data is anonymized)
• Cloud Infrastructure: Hosting and data storage
• Analytics Providers: Anonymous usage analytics to improve the app
• Email Services: Transactional emails and notifications

These providers are contractually obligated to protect your data and use it only for providing services to Forkr.

3.3 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect the rights, property, or safety of Forkr, our users, or others.

3.4 Business Transfers

If Forkr is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information is transferred and becomes subject to a different privacy policy.

4. Data Retention

We retain your information for as long as necessary to provide our service:

• Active Accounts: Your data is stored as long as your account is active
• Deleted Accounts: After account deletion, most data is removed within 30 days. Some data may be retained longer for legal compliance or security purposes
• Backups: Backup copies may persist for up to 90 days before complete deletion

5. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: Data is encrypted in transit (HTTPS/TLS) and at rest
• Secure Authentication: Passwords are hashed and never stored in plain text
• Access Controls: Strict access controls limit who can view your data
• Regular Security Audits: We regularly review and update security practices
• Firebase Security: We leverage Google Firebase's enterprise-grade security infrastructure

While we strive to protect your data, no method of transmission over the internet is 100% secure. Use strong, unique passwords and enable two-factor authentication when available.

6. Your Rights and Choices

6.1 Access and Control

You have the following rights regarding your personal data:

• Access: View and download all your personal data and recipes
• Correction: Update or correct your account information at any time
• Deletion: Delete your account and all associated data
• Export: Export your recipes in standard formats (JSON, PDF, etc.)
• Opt-Out: Unsubscribe from marketing emails (service emails remain necessary)

6.2 How to Exercise Your Rights

• In-App: Access most settings through the app's Settings menu
• Email: Contact us at support@forkr.app for data requests
• Response Time: We respond to requests within 30 days

6.3 California Residents (CCPA)

If you're a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to opt-out of the sale of personal information (we don't sell data)
• Right to deletion of personal information
• Right to non-discrimination for exercising CCPA rights

6.4 GDPR Rights (All Users)

As an EU-based data controller (sole proprietor in Austria), Forkr applies GDPR standards to all users worldwide, not just European residents. Everyone has the following rights:

• Right to Access: Obtain confirmation of what personal data we hold about you
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data in certain circumstances
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing of your personal data
• Right to Withdraw Consent: Withdraw consent for data processing at any time
• Right to Lodge a Complaint: File a complaint with a data protection authority

EU/EEA residents: You may contact the Austrian Data Protection Authority (Datenschutzbehörde) or your local supervisory authority.

7. Children's Privacy

Forkr is not intended for children under the minimum age required by law in their country. We comply with:

• United States (COPPA): Minimum age 13
• European Union (GDPR Article 8): Minimum age 16 (or lower if permitted by member state law, minimum 13)
• Other Jurisdictions: Minimum age as required by local data protection laws

We do not knowingly collect personal information from children below the applicable minimum age. If you believe we have collected information from a child below the legal age requirement, please contact us immediately at support@forkr.app and we will delete it promptly.

Parents/Guardians: If you believe your child has provided us with personal information, contact us to request deletion.

8. International Data Transfers

Forkr is operated by a sole proprietor (natural person acting as data controller) based in Vienna, Austria (European Union). However, our data infrastructure utilizes servers located in the United States and other regions through our service providers (Firebase/Google Cloud).

What this means for you:

• Your data may be transferred to, stored, and processed in the United States and other countries
• These countries may have different data protection laws than the EU/EEA
• As an EU-based data controller, we comply with GDPR requirements for all users worldwide

Safeguards we implement for international transfers:

• Standard Contractual Clauses (SCCs): Approved by the European Commission for EU-US data transfers
• GDPR Compliance: All data processing adheres to EU data protection standards
• Google Cloud Security: Firebase/Google Cloud Platform maintains ISO 27001, SOC 2/3, and other certifications
• Encryption: Data is encrypted in transit and at rest, regardless of location
• Data Processing Agreements: Binding agreements with all service providers to protect your data

For European residents: Your data is protected by GDPR regardless of where it's processed. You retain all GDPR rights, including the right to lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde) or your local supervisory authority.

9. Third-Party Services and Links

Forkr allows you to import recipes from third-party websites and social media platforms (Instagram, TikTok, Pinterest, Facebook, etc.). When you use these features:

• We only access publicly available recipe content
• Your interactions with third-party sites are governed by their privacy policies
• We are not responsible for third-party privacy practices
• Links to external websites are provided for convenience; we don't endorse or control them

10. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Essential Cookies: Required for login, authentication, and core functionality
• Analytics Cookies: Understand how users interact with our app (anonymized)
• Preference Cookies: Remember your settings and preferences

You can control cookies through your device settings, but disabling essential cookies may affect app functionality.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:

• We will update the "Last Updated" date at the top of this policy
• We will notify you of material changes via email or in-app notification
• Continued use of Forkr after changes constitutes acceptance of the updated policy
• We encourage you to review this policy periodically

12. Contact Us

---

This Privacy Policy is effective as of February 23, 2026. By using Forkr, you agree to this Privacy Policy and our Terms of Service.