This Privacy Policy explains how AIM (AI Menu) collects, uses, discloses, and protects information when you use our web application, mobile application, meal-planning tools, AI assistant, grocery-list features, household features, and related services (the "Service"). By using the Service, you agree to this Privacy Policy.
AIM is designed for personal and household meal planning. The Service may process health-related and dietary information you choose to provide, but AIM is not intended to be a medical record, healthcare provider, or emergency service.
1. Information We Collect
We collect information you provide directly, information generated through your use of the Service, and information from connected services.
Account and contact information
- Name, email address, password credentials, account identifiers, account creation date, and authentication/session information.
- Email confirmation, password reset, support, feedback, and service communication information.
Profile, nutrition, and preference information
- Age, gender/sex selection, height, weight, activity level, estimated calories, macro estimates, health journey stage, preferred units, preferred meal times, meal plan view preferences, and budget preferences.
- Dietary preferences, allergies, health condition selections, medications, disliked foods, favorite foods, favorite recipes, favorite cuisines, and food ratings.
- Family member or household member information you enter, such as names, ages, activity levels, health-related selections, allergies, preferences, and avatar images or URLs.
Meal planning, grocery, and household information
- Meal plans, selected goals and conditions, recipe selections, substitutions, serving counts, grocery lists, saved shopping lists, pantry items, leftovers, notes, meal ratings, and related timestamps.
- Household membership, invite codes, household owner/member status, and shared household content.
- Pricing region, preferred grocery provider, preferred store, grocery product matches, and cart actions you request.
AI assistant and generated-content information
- Chat messages, conversation titles, assistant responses, conversation summaries, prompts, meal-plan generation logs, weekly-tip requests, and related context used to provide AI-assisted features.
- Audio or speech input if you use voice or transcription features.
Connected grocery and subscription information
- If you connect a Kroger account, we store access and refresh tokens, token expiration, linked date, last-used date, preferred location ID, and preferred location name so we can perform requested grocery actions.
- If you use subscriptions, trials, or discounts, we store plan, status, billing interval, platform, trial dates, period dates, cancellation date, discount information, and app-store or transaction identifiers. We do not intend to store full payment card numbers.
Usage, device, and operational information
- Pages viewed, features used, search queries, feedback messages, page URLs submitted with feedback, tip impressions, admin/job logs, timestamps, diagnostics, errors, and security events.
- Browser, device, cookie, IP address, and similar technical information collected through normal web hosting, security, logging, and session technologies.
2. How We Use Information
We use information to:
- Create, authenticate, secure, maintain, and support your account.
- Generate and personalize meal plans, grocery lists, recipes, nutrition programs, calorie estimates, macro estimates, pantry suggestions, leftover suggestions, and AI assistant responses.
- Apply dietary preferences, allergies, disliked foods, health condition selections, medication entries, grocery preferences, household size, and budget preferences.
- Provide household features and show shared household content to household members.
- Connect to grocery providers, find stores, search products, estimate prices, and add items to a cart when you ask us to do so.
- Administer subscriptions, trials, discount codes, entitlement checks, and platform billing records.
- Send service communications such as email confirmation, password reset, account notices, security notices, and material policy updates.
- Operate, debug, analyze, secure, monitor, and improve the Service.
- Detect, prevent, investigate, or address fraud, abuse, security issues, policy violations, and legal obligations.
3. Sensitive and Health-Related Information
Some information you provide may be considered sensitive under certain privacy laws, including health-related information, account log-in information, dietary restrictions, allergy information, medication entries, and information about family members. We use sensitive information to provide the Service you request, secure the Service, comply with law, and as otherwise described in this Policy.
Unless we tell you otherwise in a separate agreement, AIM is a direct-to-consumer meal-planning service and is not acting as a HIPAA covered entity or business associate. Do not use AIM as a substitute for a medical record or for communicating emergency or time-sensitive health information.
4. AI and Model Provider Processing
To provide AI-assisted features, we may send prompts, chat messages, profile context, meal-plan context, recipe information, preferences, allergies, health condition selections, grocery context, and other relevant content to AI, speech, image, or transcription providers, including Azure OpenAI and Azure Speech, when those features are configured and used. We limit the information sent to what is reasonably needed for the requested feature.
AI providers process information according to our configuration, contracts, and their service terms. You should avoid entering information into chat or voice features that you do not want processed by AI or transcription systems.
5. How We Disclose Information
We do not sell personal information for money. We may disclose information as follows:
- Household members. Household-scoped meal plans, grocery lists, pantry items, leftovers, family member profiles, saved shopping lists, and some notes may be visible to other members of your household.
- Service providers. We use vendors and infrastructure providers for hosting, databases, email, security, analytics/diagnostics, AI, speech/transcription, grocery integrations, and support. They may process information for us as needed to provide the Service.
- Grocery providers. If you connect or use a grocery provider such as Kroger, we share information needed to perform your requested actions, such as store searches, product searches, product quantities, preferred store, and cart additions.
- App stores and billing platforms. Subscription status and transaction identifiers may be exchanged with Apple, Google, or other billing platforms to validate purchases, trials, renewals, cancellations, and entitlements.
- Legal, safety, and compliance. We may disclose information if we believe it is required by law, legal process, or government request, or to protect the rights, safety, security, or property of AIM, users, or others.
- Business transfers. Information may be disclosed or transferred in connection with a merger, acquisition, financing, reorganization, sale of assets, bankruptcy, or similar transaction.
- With your direction or consent. We may disclose information when you ask us to or otherwise consent.
6. Cookies and Similar Technologies
We use essential cookies and similar technologies for sign-in, authentication, security, session state, fraud prevention, preferences such as theme or unit settings, and basic operation of the Service. We do not use third-party advertising cookies in the Service. If that changes, we will update this Policy and provide legally required choices.
7. Data Retention
We keep information for as long as reasonably needed to provide the Service, maintain your account, support household features, comply with legal obligations, resolve disputes, enforce agreements, prevent abuse, maintain security, and preserve backups. Different categories may be retained for different periods.
If you update or delete information in your profile or disconnect a grocery provider, active records may be updated or removed, but copies may remain in backups, logs, audit records, legal records, generated meal plans, household-shared records, or records we must retain for legitimate business or legal reasons.
8. Data Security
We use administrative, technical, and organizational safeguards designed to protect personal information, including encrypted connections, secure password storage through the identity system, access controls, configuration protections, and monitoring. Grocery tokens, email configuration secrets, and other sensitive operational credentials are handled with security controls appropriate to their use.
No system is perfectly secure. We cannot guarantee that information will never be accessed, disclosed, altered, or destroyed. You are responsible for using a strong password, keeping your credentials confidential, and notifying us if you suspect unauthorized access.
9. Your Choices and Controls
- Profile. You can access and update many account, profile, dietary, allergy, medication, health condition, grocery, unit, budget, and schedule preferences in your profile.
- Household. Be careful when joining or inviting household members because some household data is shared within the household.
- Grocery connections. You can manage or disconnect supported grocery connections, such as Kroger, in your profile or grocery settings.
- Subscriptions. You can manage web subscriptions in the Service where available. App-store subscriptions must generally be managed through the applicable app store.
- Communications. You may opt out of non-essential marketing communications if we send them, but we may still send transactional, account, security, and legal notices.
- Account deletion and privacy requests. You may request access, correction, deletion, or other privacy assistance through the support or feedback features in the application.
10. State Privacy Rights
Depending on where you live and whether a particular privacy law applies to AIM, you may have rights to request access to personal information, correction of inaccurate information, deletion of personal information, portability, restriction or limitation of sensitive information, appeal of a privacy-rights decision, and opt out of certain sales, sharing, targeted advertising, or profiling. We do not currently sell personal information for money or use third-party advertising cookies in the Service.
To exercise privacy rights, contact us through the support or feedback features in the application. We may need to verify your identity and account before responding. We will not discriminate against you for exercising privacy rights that apply to you, although deleting or limiting some information may prevent us from providing personalized features.
11. Children
The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided personal information to us, contact us through the application so we can take appropriate action. Adults may enter family member information for household meal planning when they have appropriate permission to do so.
12. International Users
AIM is operated from the United States. If you access the Service from outside the United States, your information may be processed in the United States or other locations where our service providers operate. Those locations may have data-protection laws different from those in your jurisdiction.
13. Changes to This Policy
We may update this Privacy Policy from time to time. The updated Policy will be posted with a new "Last updated" date. If changes are material, we will take reasonable steps to notify registered users, such as by email or in-app notice. Your continued use of the Service after an updated Policy becomes effective means you accept the updated Policy.
14. Contact
If you have questions, requests, or concerns about this Privacy Policy or our privacy practices, contact us through the support or feedback features available in the application.