Meaningful Diet ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at www.meaningfuldiet.com and use our services, including the Ingredient Swap Tool, digital product store, and membership platform.

1. Information We Collect

Information You Provide

We collect information you give us directly when you:

Create an account: Name, email address, and a hashed password.
Make a purchase: Billing information is processed by Stripe; we never store your full credit card number on our servers.
Use the Swap Tool: The ingredients you search for and the swap suggestions you receive. For logged-in users, this is saved as Swap History.
Contact us: Name, email, and message content submitted through our contact form.
Subscribe to Pro: Your subscription status and billing cycle, managed through Stripe.

Information Collected Automatically

When you visit our website, we automatically collect:

Device data: IP address, browser type, operating system, and device identifiers.
Usage data: Pages visited, time spent on pages, referring URLs, and click behavior.
Location data: Approximate location derived from your IP address (country/region level only).

2. How We Use Your Information

We use your personal information for the following purposes:

Provide our services: Process your swap queries, deliver digital products, manage your account, and enable Pro membership features.
Improve the tool: Analyze swap patterns (in aggregate) to improve AI recommendation quality.
Process payments: Facilitate purchases and subscription billing through Stripe.
Communicate with you: Send Pro members-only weekly emails, order confirmations, account updates, and customer support responses.
Ensure security: Detect, prevent, and address technical issues, fraud, or abuse.
Comply with legal obligations: Respond to lawful requests from public authorities.

3. Cookies and Tracking Technologies

We use the following technologies:

Essential cookies: Required for authentication, session management, and basic site functionality. These cannot be disabled.
Session storage: Used to track your swap count during a browsing session (for UI purposes only; not transmitted to our servers).
Analytics: We may use privacy-focused analytics tools to understand how visitors use our site. No personal data is shared with third-party advertising networks.

We do not sell your data to third parties. We do not use retargeting or behavioral advertising cookies.

4. Third-Party Services

We share information with the following third-party service providers, strictly as necessary to operate our services:

Service	Purpose	Data Shared
Stripe	Payment processing	Billing info, email, purchase history
NextAuth / Authentication	Identity verification	Email, hashed password
Straico (AI)	Ingredient swap suggestions	Swap queries (no personal identifiers)
Amazon Associates	Affiliate product links	No personal data; click-through analytics only
Vercel	Website hosting	Server logs (IP, user agent)

Each of these providers has their own privacy policies. We encourage you to review them.

5. Data Retention

Account data: Retained as long as your account is active. Deleted within 30 days of account deletion request.
Swap history: Retained as long as your account is active. Anonymized aggregate data may be retained indefinitely for product improvement.
Purchase records: Retained for 7 years as required for tax and legal compliance.
Server logs: Automatically purged after 90 days.

6. Your Privacy Rights

All Users

Regardless of your location, you have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Request deletion of your account and associated data
Opt out of non-essential communications

California Residents (CCPA)

Under the California Consumer Privacy Act, you have additional rights including the right to know what personal information is collected, the right to request deletion, and the right to non-discrimination for exercising your rights. We do not sell personal information.

EU/EEA Residents (GDPR)

If you are located in the European Union or European Economic Area, you have additional rights under the General Data Protection Regulation, including the right to data portability, the right to restrict processing, and the right to lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us at privacy@meaningfuldiet.com.

7. Children's Privacy

Our services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will take steps to delete such information.

8. Security Measures

We implement industry-standard security measures to protect your data, including:

HTTPS encryption on all pages
Password hashing using bcrypt
Secure, HttpOnly session cookies
Regular security audits of our infrastructure
PCI-compliant payment processing through Stripe

However, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security but are committed to doing our best to protect your data.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. We encourage you to review this page periodically for the latest information.

10. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: privacy@meaningfuldiet.com
Contact form: meaningfuldiet.com/contact