Privacy Policy

1. Introduction

Welcome to Dinna (the "App"), a mobile application developed and operated by Patchly LLC ("Patchly," "we," "us," or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Dinna application on iOS, Android, or the Web.

By accessing or using Dinna, you agree to the terms of this Privacy Policy. If you do not agree with the practices described herein, please do not use the App. We reserve the right to make changes to this Privacy Policy at any time and for any reason. We will notify you of any material changes by updating the "Effective" date at the top of this document and, where appropriate, through in-app notification.

2. Information We Collect

We collect information that you provide directly, information generated through your use of the App, and limited device information. We do not collect information from third-party sources beyond what is necessary for authentication.

2.1 Account and Profile Data

Dinna uses social sign-in exclusively — you may authenticate using Google or Apple. We do not create or store passwords. Upon sign-in, we receive and store:

• Display name
• Email address
• Sign-in method (Google or Apple)
• Avatar (uploaded photo or illustrated avatar you select)

Authentication is managed via JSON Web Tokens (JWT). We do not have access to your Google or Apple account passwords.

2.2 Beta Feedback Demographics (Optional)

During beta periods, you may optionally provide:

• Age range
• Household size
• Cooking frequency

This data is used solely to improve the App and is not shared with third parties.

2.3 Meal Data

• Meals and associated ingredients
• Meal photos (captured via camera or uploaded from gallery)
• Meal schedules and calendar entries

2.4 Group Data

• Group membership and roles (e.g., admin, member)
• Invite codes generated or redeemed

2.5 Voting and Preference Data

• Weekly meal votes and preferences
• VIP turn assignments

2.6 Supplies and Ingredients Data

• Ingredient lists and supply inventories
• Items identified via AI-powered Pantry Scout (Pro tier only — see Section 5)

2.7 Budget and Cost Data

• Takeout cost entries
• Budget tracking data

2.8 Post-Dinner Survey Data

• Meal ratings
• Leftover tracking
• Takeout cost entries from surveys

2.9 Notification Data

• Push notification preferences (opt-in/opt-out choices)
• Notification interaction data (e.g., whether a notification was opened)

2.10 Feedback and Reports

• Bug reports and feature requests submitted through the App
• Image reports (flagging user-generated content)

2.11 Analytics and Device Information

• Analytics event tracking for key user actions within the App
• Device and platform information (iOS, Android, or Web)

We do not collect precise geolocation, contact lists, call logs, or other sensitive device data.

3. How We Use Your Information

• Provide and maintain the App: deliver core features including meal planning, group coordination, voting, scheduling, and supply management.
• Authentication: verify your identity through Google or Apple sign-in and manage session tokens.
• Personalization: tailor meal suggestions, voting prompts, and notification schedules to your preferences and group activity.
• AI Features (Pro tier): process kitchen images through OpenAI's GPT-4o Vision API to identify ingredients (Pantry Scout) and generate recipe suggestions (Recipe Finder).
• Notifications: send push notifications for group activity, votes, VIP turns, cook assignments, vote deadlines, dinner time alerts, post-dinner surveys, shopping reminders, and milestone events.
• Analytics and improvement: analyze usage patterns to improve App functionality, fix bugs, and develop new features.
• Subscription management: process and manage in-app subscriptions and purchases through RevenueCat.
• Content moderation: review reported images using AI moderation tools to enforce community standards.
• Customer support: respond to feedback submissions, bug reports, and feature requests.

4. Image Handling and Content Moderation

Dinna allows users to upload meal photos and avatar images. We implement the following safeguards:

• Upload validation: all image uploads undergo path validation and ownership verification to prevent unauthorized access.
• Path traversal protection: server-side controls prevent directory traversal attacks on uploaded files.
• AI moderation: when a user reports an image, the reported content is reviewed using AI-based moderation tools.
• User notification: users whose content is found to violate our guidelines are notified of the violation and any actions taken.

Images uploaded to the App are stored securely and are accessible only to authorized users within the relevant group context.

5. AI Features (Pro Tier)

Dinna's Pro subscription tier includes AI-powered features that use OpenAI's GPT-4o Vision model:

• Pantry Scout: you may use your device camera to scan your kitchen or pantry. The captured image is sent to OpenAI's GPT-4o Vision API, which processes the image to identify visible ingredients. The identified items are returned to the App and added to your supply list.
• Recipe Finder: based on your current supply list (including items identified by Pantry Scout), AI suggests meals and provides links to recipes that can be prepared with available ingredients.

Important disclosures regarding AI features:

• Images submitted to Pantry Scout are transmitted to OpenAI's servers for processing.
• OpenAI's use of data is governed by OpenAI's API data usage policies. As of the effective date of this policy, OpenAI does not use API inputs or outputs to train its models.
• We do not retain the raw images sent to OpenAI after the ingredient identification response is received and processed.
• AI features are available only to Pro tier subscribers. Free tier users' data is not sent to OpenAI.

6. Notifications

Dinna sends push notifications and scheduled server-side notifications to keep you informed about group activity.

6.1 Push Notifications

• Group activity updates
• Voting reminders and results
• VIP turn assignments
• Cook assignments

6.2 Scheduled Notifications

• Vote deadline reminders
• Dinner time alerts
• Post-dinner survey prompts
• Shopping reminders
• Milestone notifications

6.3 Notification Guardrails

To respect your time and attention, Dinna enforces the following limits:

• Daily cap: a maximum of 3 system-generated notifications per day.
• Quiet hours: no notifications are sent between 10:00 PM and 7:00 AM in your local time zone.

You may manage your notification preferences at any time within the App settings or disable push notifications at the device level.

7. Third-Party Services

7.1 Google (Authentication)

Google Sign-In is used for account authentication. When you sign in with Google, we receive your name, email address, and profile photo. Google's Privacy Policy

7.2 Apple (Authentication and App Store)

Apple Sign-In is used for account authentication on Apple devices. Apple may also process data related to App Store transactions. Apple's Privacy Policy

7.3 OpenAI / GPT-4o Vision (AI Features — Pro Only)

OpenAI processes kitchen images for ingredient identification in the Pantry Scout feature. Only Pro tier subscribers' images are sent to OpenAI. OpenAI's Privacy Policy

7.4 RevenueCat (Subscription Management)

RevenueCat manages subscription state, in-app purchases, and receipt validation for iOS and Android. RevenueCat receives transaction data, device identifiers, and subscription status. RevenueCat's Privacy Policy

7.5 Push Notification Services

Dinna uses Apple Push Notification Service (APNs) for iOS and Firebase Cloud Messaging (FCM) for Android to deliver push notifications. These services receive device tokens and notification payloads necessary for delivery.

8. Data Retention

• Dismissed ingredients: purged after 3 weeks.
• Resolved suggestions: purged after 90 days.
• Calendar, VIP, feedback, and budget data: retained indefinitely while your account is active.
• AI-processed images: not retained after ingredient identification is complete.
• Account deletion: upon request, all server-side data is anonymized and purged. An audit log entry is retained to confirm deletion was completed.

9. Offline Access and Data Sync

Dinna caches certain data locally on your device to enable offline access. This cached data may include meal plans, recipes, ingredient lists, and group information. When your device reconnects to the internet, the locally cached data is synchronized with our servers.

Data stored locally on your device is subject to the security controls of your device's operating system. We recommend using device-level security features (e.g., passcodes, biometrics) to protect locally stored data.

10. Subscriptions and Payments

Dinna offers a Pro subscription tier with additional features, including AI-powered Pantry Scout and Recipe Finder. Subscriptions and in-app purchases are processed through the Apple App Store (iOS) and Google Play Store (Android).

RevenueCat acts as our subscription management platform, handling receipt validation and subscription state synchronization across platforms. We do not directly collect or store payment card information. Payment processing is handled entirely by Apple, Google, and RevenueCat.

11. Your Rights and Choices

11.1 Account Deletion

You may request deletion of your account and all associated data directly within the App. Upon receiving a deletion request:

• All personal data stored on our servers is anonymized and purged.
• An audit log entry is retained solely to confirm the deletion was processed.
• Deletion is processed in accordance with Apple App Store and Google Play Store requirements.

11.2 Data Processing Consent

During onboarding, Dinna presents a Data Processing Consent screen that explains how your data will be collected and used. By proceeding past this screen, you consent to the data practices described in this Privacy Policy.

11.3 Image Reporting

If you encounter user-generated content that you believe is inappropriate, you may report the image directly within the App. Reported images are reviewed using AI-based moderation, and appropriate action is taken.

11.4 Notification Preferences

You may adjust your push notification preferences within the App settings at any time. You may also disable notifications at the device/operating system level.

11.5 Access and Portability

You may request a copy of the personal data we hold about you by contacting us at the address provided in Section 15.

12. Data Security

We implement reasonable administrative, technical, and physical security measures to protect your personal information, including:

• JWT-based authentication with secure token handling
• Upload path validation and ownership verification for all file uploads
• Path traversal protection on server-side file operations
• Encrypted data transmission (HTTPS/TLS)
• Server-side audit logging for account deletion requests

While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure.

13. Children's Privacy

Dinna is not directed to children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at the email address in Section 15.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Effective" date at the top of this document and provide notice through the App. Your continued use of Dinna after the updated Privacy Policy becomes effective constitutes your acceptance of the revised terms.