Privacy Policy

Last Updated: January 5, 2025

FoodieMenu.net ("we", "our", "us") is committed to protecting your privacy. This policy explains how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR).

1. Data We Collect

Account Data

When you create an account: email address, username, password (hashed).

Usage Data

IP address, browser type, pages visited, time spent on site, recipes viewed.

Cookies

Essential cookies (authentication, cart), analytics cookies (Google Analytics), preference cookies (language, theme). See our Cookie Policy for details.

User-Submitted Data

Recipes created, comments, contact messages.

2. How We Use Your Data

  • Provide and improve our services
  • Authenticate your account and manage your access
  • Process submitted video URLs and generate recipes
  • Send important service notifications
  • Analyze site usage to improve user experience
  • Respond to your support requests
  • Prevent fraud and abuse
  • Comply with legal obligations

3. Legal Basis (GDPR Article 6)

Consent

For analytics and preference cookies (you can withdraw consent anytime)

Contract Performance

To provide services you requested (account creation, recipe generation)

Legitimate Interest

To improve our services, prevent fraud, and ensure security

Legal Obligation

To comply with applicable laws (e.g., retaining financial records)

4. Data Retention Periods

Account Data

Retained while your account is active. Deleted 90 days after account deletion.

Usage Data & Logs

Retained for maximum 26 months (Google Analytics requirement)

Cookies

Session cookies expire after browser close. Persistent cookies expire after 1 year.

Contact Messages

Retained for 2 years for reference

5. Your Rights (GDPR)

Under GDPR, you have the right to:

  • Access your personal data (Art. 15)
  • Rectify inaccurate data (Art. 16)
  • Erase your data ("right to be forgotten") (Art. 17)
  • Restrict processing of your data (Art. 18)
  • Data portability (receive your data in structured format) (Art. 20)
  • Object to processing (Art. 21)
  • Withdraw consent at any time (Art. 7.3)
  • Lodge a complaint with a data protection authority

To exercise these rights, contact us at: contact@foodiemenu.net

Under GDPR, you have the right to:

6. Cookies & Tracking

We use three types of cookies:

Essential Cookies

Necessary for site functionality (authentication, security). Legal basis: legitimate interest.

session_id, csrf_token, auth_token

Analytics Cookies

Google Analytics to understand site usage. Legal basis: consent (you can opt out).

_ga, _gid, _gat

Preference Cookies

Remember your preferences (language, theme). Legal basis: consent.

preferred_language, theme, cookie_consent

See our full Cookie Policy for more details.

7. Third-Party Services (Subprocessors)

We use the following services that process your data on our behalf:

Cloudflare

Purpose: Hosting, CDN, DDoS protection

Location: United States (EU-US Data Privacy Framework)

Privacy Policy

Render.com

Purpose: Backend API hosting

Location: United States

Privacy Policy

Supabase

Purpose: Database (PostgreSQL)

Location: United States/EU (selectable)

Privacy Policy

Google Analytics

Purpose: Audience analytics

Location: United States

Privacy Policy

Amazon Associates

Purpose: Affiliate links (no data collection)

Location: Varies by store

Privacy Policy

Google Gemini AI

Purpose: Recipe generation from videos

Location: United States

Privacy Policy

8. International Data Transfers

Your data may be transferred to and stored in the United States where our servers are located. We ensure adequate protection through:

  • EU Standard Contractual Clauses (SCCs) with all non-EU subprocessors
  • EU-US Data Privacy Framework participation (Cloudflare, Google)
  • Data Processing Agreements (DPAs) with all providers

9. Data Security

We implement appropriate security measures:

  • 🔒HTTPS/TLS encryption for all data transmissions
  • 🔒Password hashing with bcrypt (never stored in plain text)
  • 🔒Regular database backups
  • 🔒Access controls and two-factor authentication for administrators
  • 🔒Log monitoring for unauthorized access detection
  • 🔒Regular security updates

10. Children's Privacy

FoodieMenu is not intended for children under 16 years old. We do not knowingly collect data from children. If you believe a child has provided us with personal data, contact us immediately so we can delete it.

11. Changes to This Policy

We may update this policy from time to time. The "Last Updated" date at the top indicates the most recent revision. Material changes will be communicated via email or site notification. Your continued use of the site after changes constitutes acceptance of the updated policy.

12. Contact Us

For any questions about this privacy policy or to exercise your GDPR rights:

contact@foodiemenu.net

Subject: Privacy / GDPR Request

We commit to responding within 30 days (per GDPR Article 12).

Terms of ServiceCookie PolicyAffiliate DisclosureContact Us