FoodGrade

Privacy Policy

Last updated: April 22, 2026

1. Data Controller

FoodGrade is developed and operated by Lars Engen. For privacy-related questions: lars.m.engen@gmail.com

2. Data We Collect

• Email address — used for login and account communication
• Product scan history — which food products you have scanned
• Ratings and reviews — text and scores you submit
• Taste profile — automatically calculated from your ratings
• Activity log — actions in the app used to generate your activity feed
• Anonymous usage statistics — aggregated events without personal identification

3. Legal Basis

We process your personal data on the basis of your agreement with us (GDPR Art. 6(1)(b)) when you create an account, and on the basis of legitimate interest (Art. 6(1)(f)) for anonymous usage statistics.

4. Third-Party Providers

• Supabase Inc. — database storage and authentication. Data is stored in the EU (Frankfurt).
• Open Food Facts — open food database. We send only barcodes, no personal data.
• OpenRouter Inc. — AI analysis. We send only product data, no personal information.

We never sell your personal data to third parties.

5. Retention

We store your personal data for as long as you have an active account. When you delete your account, all associated personal data is deleted within 30 days.

6. Your Rights (GDPR)

• Right of access (Art. 15)
• Right to rectification (Art. 16)
• Right to erasure (Art. 17) — delete your account in the app
• Right to restriction (Art. 18)
• Right to data portability (Art. 20)

To exercise your rights: lars.m.engen@gmail.com

7. Complaints

You may lodge a complaint with the Norwegian Data Protection Authority (datatilsynet.no).

8. Changes

Material changes will be communicated via push notification or email.