Privacy Policy
Short, readable, and honest. Here's exactly what we collect and what we do with it.
Last updated: April 21, 2026
The short version: We collect only what we need to make Toui work for you. We never sell your data. You can delete your account and data at any time.
1. Who we are
Toui ("we," "our," or "us") is a meal planning application operated by Toui. If you have questions about this policy, email us at privacy@toui.app.
2. What we collect
Information you give us
- Account info: Your name, email address, and authentication details when you sign up (via Google, Apple, or email).
- Pantry and preferences: Ingredients you add to your pantry, dietary restrictions, allergies, dislikes, kitchen equipment, and household size.
- Recipe history: Meals you generate, save, favorite, or schedule.
- Feedback: Anything you send us through bug reports or contact forms.
Information collected automatically
- Usage data: Which features you use, how often you open the app, and which recipes you interact with. This helps us improve Toui.
- Device data: Browser type, operating system, and general location (country/region, not precise).
- Cookies and similar tech: We use cookies to keep you logged in and understand how you use Toui.
Information from third parties
- Authentication providers: If you sign in with Google or Apple, we receive your name, email, and profile photo (if shared).
- Advertising pixels: We use Meta (Facebook/Instagram) and TikTok pixels to measure ad performance. These providers may collect data per their own policies.
3. How we use your information
We use your data only for these purposes:
- To generate personalized recipes based on your pantry and preferences
- To run the app's features (meal planning, shopping lists, pantry tracking)
- To improve Toui through aggregated, anonymized usage analytics
- To send you essential account messages (password resets, billing, service updates)
- To measure the performance of our marketing and advertising
- To comply with legal obligations when required
4. AI and recipe generation
Toui uses third-party AI services (Anthropic's Claude and Replicate) to generate recipes and food imagery. When you request a recipe:
- Your pantry contents, preferences, and request details are sent to the AI provider to generate a response.
- We do not share your name, email, or account identifiers with AI providers.
- AI providers do not use your requests to train their models (per their enterprise data agreements with us).
5. What we do NOT do
We never sell your data. Not to advertisers, not to data brokers, not to anyone. Your pantry is yours. Your family's food preferences are yours. We make money from subscriptions — not from selling you.
6. Who we share data with
We share data only with:
- Service providers who help us operate Toui (hosting, authentication, payment processing, AI). These providers are bound by contracts that limit their use of your data.
- Legal authorities when required by valid legal process (subpoena, court order).
- A successor company in the event of a merger, acquisition, or sale. You'd be notified first.
7. Your rights
You have the right to:
- Access — see what data we have about you
- Correct — fix anything that's wrong
- Delete — remove your account and data at any time from Account settings
- Export — download your data in a portable format
- Opt out — of non-essential communications
To exercise any of these, email privacy@toui.app or use the Account settings in the app.
8. California residents (CCPA)
If you live in California, you have additional rights under the California Consumer Privacy Act. You can request details about the categories and specific pieces of personal information we've collected, request deletion, and opt out of any "sale" of your data (we don't sell data, so this last one is moot, but we're required to tell you). Contact us at privacy@toui.app.
9. European residents (GDPR)
If you live in the European Economic Area or the UK, you have rights under the GDPR including access, rectification, erasure, and data portability. Our lawful basis for processing is the performance of our contract with you (providing the Toui service). You have the right to lodge a complaint with your local data protection authority.
10. Children
Toui is not intended for children under 13. We don't knowingly collect data from children under 13. If you believe a child has signed up, email us and we'll remove the account.
11. Data security
We protect your data with industry-standard measures: encrypted connections (HTTPS), secure authentication, limited employee access, and regular security reviews. No system is 100% secure, but we take this seriously.
12. Data retention
We keep your data for as long as your account is active. When you delete your account, we delete your data within 30 days, except where retention is required by law (e.g., tax records).
13. Changes to this policy
If we make material changes, we'll notify you by email or in-app before they take effect. The "Last updated" date at the top of this page always reflects the current version.
Questions?
Email privacy@toui.app. Real humans answer.