← Back to home

Privacy Notice

Last updated: April 30, 2026

1. Who we are

Smart Cheff is operated by Shaquile Simpson ("we", "us"). We act as the data controller for personal data we collect through the Smart Cheff service (the "Service").

2. Data we collect

  • Account data: name, email address, hashed password, authentication tokens.
  • Profile & preferences: dietary preferences, pantry items, voice settings, saved recipes.
  • Usage data: recipes generated, chats with the AI chef, image scans, feature usage counters.
  • User content: ingredients, photos uploaded for pantry scanning, prompts submitted to the AI.
  • Technical data: IP address, device and browser identifiers, log data, crash reports.
  • Support data: messages you send to support.

3. How we use your data & legal basis

  • Provide the Service (account creation, generating recipes, saving your pantry) — performance of contract.
  • Security & fraud prevention, abuse detection, and rate limiting — legitimate interests.
  • Improve the Service, debug issues, and analyze aggregate usage — legitimate interests.
  • Customer support — performance of contract and legitimate interests.
  • Service-related communications (e.g. account, security) — legitimate interests / legal obligation.
  • Marketing emails, where applicable — consent (you can unsubscribe at any time).

4. Who we share data with

  • Hosting & infrastructure providers that host our database, edge functions, and storage.
  • AI model providers that process prompts and uploaded images to generate recipes and recognize ingredients.
  • Email & support tooling used to communicate with you.
  • Professional advisers (legal, accounting) where required.
  • Authorities when required by law.

We do not sell your personal data.

5. International transfers

Our service providers may process data outside your country, including in the United States and the European Economic Area. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

6. Retention

We keep account and content data for as long as your account is active. If you delete your account, we delete or anonymize your personal data within a reasonable period, except where we must retain it to meet legal, tax, or accounting obligations, or to resolve disputes.

7. Your rights

Depending on your location, you may have the right to access, rectify, erase, restrict, or port your personal data, object to certain processing, withdraw consent, and lodge a complaint with your supervisory authority. To exercise any of these rights, contact us through the in-app support channel. We will respond within the time limits required by applicable law (generally one month under GDPR/UK GDPR).

8. Security

We use appropriate technical and organizational measures to protect your data, including encryption in transit, access controls, and audit logging. No system is perfectly secure; if a data breach occurs we will notify you and the relevant authorities as required by law.

9. Cookies & local storage

We use cookies and similar local-storage technologies that are strictly necessary to keep you signed in, remember your preferences, and secure the Service. We may also use limited analytics to understand how the Service is used. You can control cookies through your browser settings; disabling strictly necessary cookies will break parts of the Service.

10. Children

The Service is not directed at children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us so we can delete it.

11. Changes to this notice

We may update this Privacy Notice from time to time. Material changes will be notified through the Service or by email.

12. Contact

For privacy questions or to exercise your rights, contact us through the in-app support channel.