Privacy Policy
Last updated: April 26, 2026
1. Introduction
Nourio ("we", "our", "us") respects your privacy. This Privacy Policy explains how we collect, use, and protect your personal information when you use the Nourio application ("App").
2. Information We Collect
Account Information
- Email address and password (hashed)
- First and last name (optional)
Dietary Profile
- Dietary preferences (e.g., vegetarian, keto)
- Food allergies and intolerances
- Household size and budget level
- Cooking style preferences
Usage Data
- Meal plans generated and conversation history
- Grocery lists and saved meals
- Device tokens for push notifications
- App usage patterns and feature interactions
Technical Data
- Device type and operating system
- IP address and general location
- App version and crash reports
3. How We Use Your Information
| Purpose | Data Used |
|---|---|
| Generate personalised meal plans | Dietary profile, preferences, household size |
| Provide grocery lists | Meal plan data |
| Send push notifications | Device tokens, schedule preferences |
| Account authentication | Email, password hash |
| Improve our AI and service | Aggregated usage patterns |
| Customer support | Account info, usage history |
4. AI Processing
Your dietary preferences and meal requests are sent to Microsoft Azure OpenAI to generate meal plans and recipes. This data is:
- Used solely for generating your meal plans
- Not used to train AI models
- Processed in accordance with Microsoft's data processing agreements
- Not shared with third parties for advertising purposes
5. Data Storage and Security
Your data is stored on Microsoft Azure infrastructure with the following protections:
- Encryption at rest and in transit (TLS 1.2+)
- Passwords are hashed using bcrypt (never stored in plaintext)
- Secrets managed via Azure Key Vault
- Database access restricted to authenticated services only
- Operational telemetry (request timing, errors, crash reports) is sent to Azure Application Insights for service reliability — this captures system health, not user behaviour profiling
- Regular security updates and monitoring
6. Third Parties We Share Data With
We do not sell your personal data and we do not use third-party advertising or behavioural analytics tools. We share data only with the following service providers, and only as needed to operate the App:
- Microsoft Azure OpenAI — generates meal plans from your dietary profile and requests
- Microsoft Azure — hosts the application, database, and secrets (Container Apps, PostgreSQL, Key Vault, Storage)
- Azure Communication Services (Microsoft) — sends transactional email such as password resets
- Apple Inc. — handles subscription payments via the App Store and delivers iOS push notifications via APNs (we never see your payment details)
- Expo Push Service — brokers push notification tokens between the app and Apple/Google's notification services
- Google Firebase Cloud Messaging — delivers Android push notifications
7. Your Rights
You have the right to:
- Access your personal data through your Profile in the App
- Correct your information by updating your preferences
- Delete your account and all associated data through Profile in the App, or by contacting us
- Export your meal plans and grocery lists via the share feature
- Opt out of push notifications through your device settings
8. Data Retention
We retain your data for as long as your account is active. Upon account deletion:
- Personal data is deleted within 30 days
- Aggregated, anonymised data may be retained for service-quality measurement
- Backups are purged within 90 days
9. Children's Privacy
Nourio is not intended for children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us to have it removed.
10. Cookies and Tracking
The App does not use cookies or third-party tracking pixels. Our internal admin dashboard uses a session cookie for authentication only.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes through the App or by email. The "Last updated" date at the top indicates the most recent revision.
12. Contact Us
For privacy-related questions or data requests, contact us at privacy@nourio.net.