Privacy Policy

This Privacy Policy ("Policy") applies to the AutoMenu mobile application (the "App") and describes how the App's developer ("Developer", "we", or "us") collects, uses, and shares information in connection with your use of the App. By using the App, you agree to the practices described in this Policy.

This Policy is the English translation of the original Japanese version of our Privacy Policy. In the event of any inconsistency between the Japanese and English versions, the Japanese version shall prevail.

1. Information We Collect

We collect the categories of information described below. We do not engage in "tracking" as defined by Apple's App Tracking Transparency framework (NSPrivacyTracking = false), and we do not collect the Identifier for Advertisers (IDFA).

1.1 Information You Provide (stored on your device)

• Recipes, meal plans, shopping lists, meal history, notes, and other content you create in the App.
• Photos of recipes or meals that you choose to attach (stored only on your device; not uploaded to our servers).
• App settings and preferences.

This information is stored locally on your device and is used solely to operate the App on your device. It is not shared with third parties. If, in a future version, we offer optional cloud sync (see Section 5), this data may be transmitted over an encrypted connection to our cloud servers only when you explicitly enable such functionality.

1.2 Anonymous Identifiers

• A randomly generated anonymous identifier (UUID) created on first launch and stored in the iOS Keychain on your device. This identifier is used for analytics, future cloud sync, and continuity of in-app purchase status. It is not linked to your name, email, or any other personally identifying information.
• Apple's Identifier for Vendors (IDFV). We do not collect the Identifier for Advertisers (IDFA).

1.3 Usage and Diagnostic Information (via Firebase)

The App uses Firebase services provided by Google LLC (Google Analytics for Firebase, Crashlytics, Performance Monitoring, and Remote Config) to collect information that helps us detect crashes, fix bugs, improve features, and understand how the App is used. This includes:

• Lifecycle events (e.g., app launch, foreground/background), screen views, taps, and other interactions inside the App.
• Crash reports, stack traces, device state at the time of the crash, OS version, and App version.
• Performance information such as screen load times and network response times.
• Device information (model, OS version, language and region settings, screen size).
• Installation identifiers and session identifiers used by Firebase.
• Coarse location information (country/region inferred from IP address; the IP address itself is retained by Firebase only for a limited period).

This information is associated with the anonymous identifier described in Section 1.2, but it is not associated with your name, email, or other personally identifying information.

1.4 Purchase Information (when future paid features are offered)

The App's current version does not offer in-app purchases. If we introduce subscriptions or other paid features in a future version, we will receive transaction information from Apple (such as App Store transaction ID, product ID, purchase date, and subscription status) in order to verify and maintain your entitlement. We do not collect credit card numbers or other payment instrument details directly.

2. How We Collect Information

• Directly from you, when you enter content into the App.
• Automatically, through the use of the App and via the Firebase SDK.
• From Apple's StoreKit, when paid features are introduced in the future.

3. How We Use Information

We use the information we collect to:

• Provide, maintain, and operate the App.
• Detect, diagnose, and fix crashes, bugs, and performance issues; improve the quality of the App and develop new features.
• Analyze usage of the App on an aggregated, non-identifying basis.
• Deliver in-app notices and run feature rollouts and experiments via Firebase Remote Config / A/B Testing.
• Respond to inquiries from users.
• Address violations of our Terms of Service and maintain the safety and integrity of the App.
• Verify and deliver paid features (when offered in the future).
• Comply with applicable laws and respond to lawful requests.

4. Sharing and External Transmission

4.1 Sharing with Third Parties

We do not share your information with third parties except:

• with your consent;
• to comply with applicable laws or respond to lawful requests from courts, law enforcement, or other public authorities;
• when necessary to protect the life, body, or property of any person and it is difficult to obtain your consent;
• with the service providers described in Section 4.2, to the extent necessary to fulfill the purposes described in this Policy;
• in connection with a corporate transaction such as a merger, acquisition, or sale of assets.

4.2 Service Providers and International Transfers

To operate the App, we transmit certain information to the following service providers. These providers process information on our behalf and, in principle, do not use it for their own purposes. These providers may be located outside Japan, including in the United States, and information may be transferred to and stored in those countries.

5. Future Features and Information

We are planning the features described below. Before these features are released, this Policy will be updated to describe their data practices in detail. We disclose them here so that users are aware of them in advance.

5.1 Cloud Sync and Pair Sharing

In a future version, we plan to use Supabase (operated by Supabase Inc., United States) to sync your recipes, meal plans, and shopping lists across multiple devices, and to provide a "pair sharing" feature that allows you and a partner to view and edit shared content. When such functionality is used, the relevant data will be transmitted over encrypted connections and stored on Supabase servers. The specific country in which servers are located will be disclosed at the time those features are released. Enabling these features will require your explicit action.

The treatment of shared data following termination of pair sharing or termination of a subscription will be addressed in the Terms of Service or in-app disclosures published at the time those features are released.

5.2 On-Device AI Features

In a future version, the App may use a small on-device AI model (e.g., Google's Gemma-family models) to assist with recipe entry. When such features are used, your input is processed locally on your device only and is not transmitted to any external server. Outputs of the AI are presented for your review before being saved; nothing is saved without your confirmation.

6. Retention

• Information you enter into the App (Section 1.1) is stored on your device until you delete it or uninstall the App.
• Information collected via Firebase (Section 1.3) is retained in accordance with Firebase's retention settings, typically for up to 14 months for user-level data. Aggregated statistical data may be retained for longer periods.
• Raw event data exported to BigQuery is retained by us only for as long as necessary to fulfill the purposes described in this Policy and is then deleted.

7. Your Rights and Choices

Depending on your jurisdiction, you may have the right to request access to, correction of, deletion of, or restriction on the processing of information about you, as well as the right to object to certain processing. You can submit a request through the contact information in Section 10. We may ask for additional information to verify your identity.

Where required by applicable law (including but not limited to the EU/UK GDPR and the California Consumer Privacy Act ("CCPA") and California Privacy Rights Act ("CPRA")), you also have the right to:

• Know what categories of information are collected about you and how they are used;
• Request deletion of your information, subject to certain exceptions;
• Opt out of the "sale" or "sharing" of your information. We do not sell or share information as those terms are defined under the CCPA/CPRA.

You may also stop the App from sending analytics data by uninstalling the App, by using applicable operating system controls, or by using any opt-out option that may be provided in the App's settings.

8. Children's Privacy

The App is not directed to children under 13 (or the equivalent age of digital consent under applicable local law). We do not knowingly collect information from such children. If we become aware that we have collected information from a child under 13 without verifiable parental consent, we will promptly delete that information. Parents or guardians who believe that their child may have provided information through the App may contact us using the information in Section 10.

9. Security

We take reasonable technical and organizational measures to protect information against loss, misuse, unauthorized access, disclosure, alteration, and destruction. Communication between the App and external services is encrypted in transit. However, no method of transmission over the Internet or method of electronic storage is fully secure, and we cannot guarantee absolute security.

10. Contact Us

For questions about this Policy or to exercise any of your rights, please contact:

Email

sk.createapp@gmail.com

11. Changes to This Policy

We may update this Policy from time to time to reflect changes in applicable law, the App's functionality, or our practices. The updated Policy will become effective when posted on this page. If the changes are material, we will make reasonable efforts to provide advance notice through in-app messages or other appropriate means.

12. Governing Law

This Policy is governed by the laws of Japan, without regard to its conflict of laws principles.