Your scans, allergens, name, and history live only on your device.
We don't collect them. We can't see them. If you uninstall the app or clear your browser data, they're gone. Product information comes from the public Open Food Facts, Open Beauty Facts, and Open Products Facts databases — your queries pass through their servers, not ours.
What we don't do.
- No accounts. You don't sign up. We don't have a database of users.
- No analytics. No Google Analytics, no Mixpanel, no heatmap tools. Nothing watching what you click.
- No tracking pixels. No invisible images that report back to anyone.
- No cookies for tracking. The app uses your browser's localStorage (which is local to your device, not a cookie that gets sent to us) for things like remembering your name and allergens.
- No ads. We don't run ads. We don't sell ad space. We don't share data with advertisers because we don't have data to share.
- No "anonymous data partners." No third-party SDKs vacuuming behavioral data off your device. The app loads React, fonts, and Babel from public CDNs. That's it.
- No location tracking. Even though your phone has GPS, we don't ask for it and we don't read it.
What stays on your device.
Everything you do in the app is stored in your browser's localStorage — a sandbox specific to your phone or laptop, accessible only by you. This includes:
- Your name (the one you typed during onboarding, used only to greet you)
- Your allergens and dietary preferences
- Your scan history — barcodes you've scanned and the results we returned
- Your saved items — anything you bookmarked
- Cached product info — so previously-scanned items load fast next time
Clear your browser data, uninstall the PWA, or use a different device — and this information is gone. We can't recover it for you because we never had it.
What gets sent to third parties.
When you scan a barcode, the app makes a network request to the Open Food Facts API (or Open Beauty Facts / Open Products Facts depending on category) to look up that product. Those are public, non-profit databases. The barcode and your IP address are visible to those services — same as any browser request to any website.
We don't run that API. We don't see those queries. The data flow is: your phone → Open Food Facts → your phone. Nothing routes through our servers, because we don't have any.
Static assets — fonts (Google Fonts), the React JavaScript library (unpkg CDN), and Babel (unpkg CDN) — are loaded from public CDNs. These services see standard browser metadata (your IP, the URL you came from, your browser type). That's a normal property of the web, not specific to us.
If something changes.
We won't quietly start collecting data later. If anything about this policy changes — even slightly — there will be a clearly-dated update on this page, and a public note in the project changelog. If we ever introduce accounts, syncing, or any feature that requires a server, you'll know about it before it happens.
Questions or concerns.
If you spot something here that doesn't match what the app actually does, or have a privacy question we didn't answer, reach out: