Tuna

Privacy Policy

Last updated February 12, 2026

1. Introduction

This Privacy Policy describes how Tuna ("we," "us," or "our") collects, uses, stores, and shares your information when you use the Tuna mobile application and related services (the "Service").

By using the Service, you consent to the practices described in this policy. If you do not agree with this policy, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

Account Information

  • Email address (required for account creation)
  • Display name
  • Profile picture (optional)
  • Authentication credentials (managed by Supabase Auth; passwords are hashed and never stored in plain text)

Profile and Health Information

  • Birthday (optional)
  • Height and weight (optional)
  • Target weight (optional)
  • Gender (optional)
  • Daily nutritional goals (calorie, protein, carbohydrate, and fat targets)
  • Macro ratio preferences
  • Measurement system preference (US/metric)

Food and Nutrition Data

  • Meal logs (foods consumed, portions, dates, and times)
  • Meal plans (planned meals for future dates)
  • Pantry inventory (food items, quantities, expiration dates)
  • Recipes (ingredients, instructions, photos)
  • Grocery lists
  • Custom food entries you create

Financial and Spending Data

  • Grocery receipt data (store name, store address, itemized purchases, prices, dates)
  • Monthly grocery budget amounts
  • Subscription and billing status (not payment method details — see Section 4)

Photos and Images

  • Meal photos (submitted for AI-based nutrition estimation)
  • Recipe photos
  • Grocery receipt images (processed for OCR)
  • Nutrition label images (processed for OCR)

Household Information

  • Household name and membership
  • Names and birthdays of household children (for nutrition context)
  • Invitation emails sent to household members

2.2 Information Collected Automatically

Device and Technical Information

  • Device type and model
  • Operating system and version
  • App version
  • Crash logs and error reports (stack traces, app state at time of error)

Usage Data

  • Screens viewed and features used
  • Frequency and patterns of Service use
  • Feature adoption and engagement metrics
  • Onboarding progress

Authentication Metadata

  • Login timestamps
  • Authentication method used (email, Google, Apple)

2.3 Information from Third Parties

OAuth Providers

  • When you sign in with Google or Apple, we receive your email address, name, and profile picture (if available) as provided by those services.

OpenFoodFacts

  • When you scan a barcode, we query the OpenFoodFacts public database and receive product information (name, brand, nutrition, category) associated with that barcode.

3. How We Use Your Information

We use the information we collect for the following purposes:

Purpose Data Used
Provide core Service features Account info, food data, pantry data, recipes, meal logs
Calculate nutritional information Meal logs, food data, profile data (height, weight, goals)
Track spending and budgets Receipt data, grocery purchase prices, budget settings
Power AI features (nutrition estimation, recipe import, receipt parsing) Photos, text descriptions, URLs you submit
Manage your subscription Email, Stripe customer ID, subscription status
Enable household sharing Household membership, shared pantry/recipe/meal data
Send transactional communications Email address (for household invitations, account notifications)
Diagnose and fix errors Crash logs, device info, error reports
Improve the Service Usage data, feature engagement metrics, aggregated analytics
Maintain food database quality Custom food entries (reviewed by our team for potential inclusion in shared database)
Enforce Terms of Service Account info, usage patterns

4. Third-Party Service Providers

We share information with the following third-party service providers, solely for the purposes described below. We do not sell your personal information.

4.1 Supabase (Database and Authentication)

  • Provider: Supabase, Inc.
  • Data shared: All account data, food data, meal logs, pantry items, recipes, household data
  • Purpose: Database hosting, user authentication, file storage
  • Location: United States
  • Their privacy policy: supabase.com/privacy

4.2 Stripe (Payment Processing)

  • Provider: Stripe, Inc.
  • Data shared: Email address, user identifier (for linking accounts), subscription plan selection
  • Purpose: Processing subscription payments, managing billing, providing customer portal
  • What Stripe receives directly from you: Payment method details (credit card, etc.) — these are entered directly into Stripe's interface and are never transmitted to or stored on our servers
  • Location: United States (PCI-DSS compliant)
  • Their privacy policy: stripe.com/privacy

4.3 PostHog (Product Analytics)

  • Provider: PostHog, Inc.
  • Data shared: User identifier, screen views, feature usage events, subscription status, event properties (e.g., number of items scanned, onboarding task completed)
  • Purpose: Understanding feature adoption, improving the Service, identifying issues
  • Location: United States
  • Collection context: Analytics data is collected only when the App is in release mode (not during development/testing)
  • Their privacy policy: posthog.com/privacy

4.4 Firebase Crashlytics (Error Reporting)

  • Provider: Google LLC
  • Data shared: Crash and error logs, device information (OS version, device model), user identifier, household identifier, subscription status, breadcrumb logs of user actions preceding a crash
  • Purpose: Identifying and fixing crashes and errors
  • Location: United States
  • Their privacy policy: firebase.google.com/support/privacy

4.5 Anthropic (AI Processing)

  • Provider: Anthropic, PBC
  • Data shared: Photos of meals, text descriptions of food, recipe URLs and text, nutrition label images, receipt images — all transmitted via our server-side edge functions (not directly from your device to Anthropic)
  • Purpose: AI-powered nutrition estimation, recipe parsing, receipt interpretation, nutrition label reading
  • Data retention by Anthropic: Subject to Anthropic's data processing terms
  • Their privacy policy: anthropic.com/privacy

4.6 OpenFoodFacts (Food Database)

  • Provider: Open Food Facts (non-profit)
  • Data shared: Barcode numbers, app user-agent identifier
  • Purpose: Looking up product information (name, brand, nutrition) from barcode scans
  • Note: OpenFoodFacts is a public, open-source database. No personal information is shared.
  • Their privacy policy: world.openfoodfacts.org/privacy

4.7 Resend (Email Delivery)

  • Provider: Resend, Inc.
  • Data shared: Recipient email address, sender name, household name, invitation details
  • Purpose: Delivering household invitation emails
  • Their privacy policy: resend.com/legal/privacy-policy

4.8 Authentication Providers

  • Google Sign-In (Google LLC) — receives authentication requests; provides email, name, profile photo
  • Sign in with Apple (Apple Inc.) — receives authentication requests; provides email, name

These providers' data practices are governed by their own privacy policies.

5. On-Device Processing

Certain features process data entirely on your device without transmitting it to our servers or third parties:

  • Barcode scanning — camera image processing for barcode detection uses Google ML Kit on-device
  • Receipt text recognition — initial OCR text extraction uses Google ML Kit on-device (the extracted text is then sent to our servers for AI-powered classification)

6. Data Sharing Within Households

When you join or create a household in the Service, certain data is shared with other household members:

  • Pantry inventory (items, quantities, expiration dates)
  • Recipes created within the household
  • Meal plans and logs
  • Grocery lists
  • Spending data associated with household purchases

Household sharing is a core feature of the Service. By joining a household, you consent to this data sharing with other household members. The household owner (the Big Tuna subscriber) manages membership. You may leave a household at any time.

7. Admin Review of User-Created Foods

When you create a custom food entry that does not match our existing food database, it is flagged for review by our team. During review, we may:

  • View the food name and nutritional information you provided
  • Merge it with an existing entry in our shared food database
  • Add it as a new entry available to all users

Only the food name and nutritional data are considered for inclusion. We do not share your identity, personal information, or other account data as part of this review process.

8. Data Retention

8.1 Active Accounts

We retain your data for as long as your account is active and as needed to provide the Service. This includes:

  • Account and profile information
  • All food, meal, pantry, recipe, and spending data
  • Usage analytics and crash logs

8.2 Deleted Accounts

When you delete your account (available within the App), we permanently delete:

  • Your user profile and authentication data
  • All meal logs, pantry items, and recipes you created
  • Your household (if you are the owner), including all shared data
  • Your subscription record (Stripe customer data is subject to Stripe's retention policies)

Account deletion is permanent and cannot be undone. Data is removed via cascading deletion in our database.

8.3 Cached and Temporary Data

  • AI-generated food label mappings may be cached for up to 90 days to improve future lookups
  • Crash logs are retained according to Firebase Crashlytics' standard retention period
  • Analytics data is retained according to PostHog's standard retention period

9. Data Security

We implement the following security measures to protect your data:

  • Encryption in transit: All data transmitted between the App and our servers uses TLS/HTTPS encryption
  • Database security: Row-Level Security (RLS) policies restrict data access to authorized users and their household members
  • Authentication: JWT-based authentication with secure token management via Supabase Auth
  • Payment security: Credit card and payment data is handled exclusively by Stripe (PCI-DSS Level 1 compliant) and never touches our servers
  • Access controls: Administrative access to user data is restricted and logged
  • On-device processing: Sensitive image processing (OCR, barcode detection) is performed on-device where possible

No method of transmission or storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

10. Children's Privacy

The Service is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information promptly.

If you are a parent or guardian and believe your child under 13 has provided personal information to us, please contact us at the address below.

Household children profiles: The Service allows household adults to track the names and birthdays of children in their household for nutritional context. These are informational entries managed by the adult account holder, not separate user accounts. Children do not have login credentials or direct access to the Service through these profiles.

11. Your Rights and Choices

11.1 Account and Data Management

  • Access your data: Your data is visible and accessible through the App at all times
  • Modify your data: You can edit or delete individual entries (meals, pantry items, recipes) within the App
  • Delete your account: You can permanently delete your account and all associated data through the App
  • Manage your subscription: You can cancel or modify your subscription via the Stripe Customer Portal

11.2 Communication Preferences

The Service sends transactional emails only (household invitations, account-related notifications). We do not currently send marketing emails.

11.3 Rights for California Residents (CCPA)

If you are a California resident, you have the right to:

  • Know what personal information we collect, use, and disclose
  • Delete your personal information (subject to certain exceptions)
  • Opt out of the sale of personal information — we do not sell your personal information
  • Non-discrimination for exercising your privacy rights

To exercise these rights, please contact us using the information below.

11.4 Rights for EEA/UK Residents (GDPR)

If you are a resident of the European Economic Area or the United Kingdom, you have the right to:

  • Access your personal data
  • Rectify inaccurate personal data
  • Erase your personal data ("right to be forgotten")
  • Restrict processing of your personal data
  • Data portability — receive your data in a structured, machine-readable format
  • Object to processing based on legitimate interests
  • Withdraw consent at any time where processing is based on consent

Legal bases for processing:

Processing Activity Legal Basis
Providing the Service Performance of contract
Processing payments Performance of contract
Error monitoring and crash reporting Legitimate interest (service reliability)
Product analytics Legitimate interest (service improvement)
Admin review of food entries Legitimate interest (database quality)
AI processing of your photos and text Performance of contract (feature delivery)

To exercise your rights or for questions about our data practices, please contact us using the information below.

12. International Data Transfers

Your data is processed and stored in the United States. If you are located outside the United States, your information is transferred to the US for processing.

13. Health and Dietary Information Disclaimer

The nutritional and health-related information provided by the Service — including calorie counts, macronutrient breakdowns, micronutrient data, and AI-generated nutrition estimates — is for informational and personal tracking purposes only.

This information:

  • Is not medical advice
  • Is not a substitute for professional dietary or nutritional counseling
  • May contain inaccuracies, particularly for AI-estimated values
  • Should not be used as the sole basis for dietary decisions related to medical conditions, food allergies, or eating disorders

Consult a qualified healthcare professional before making significant dietary changes.

14. Cookies and Tracking Technologies

The Tuna mobile application does not use browser cookies. However, the following tracking technologies are used:

  • PostHog SDK: Collects usage analytics within the App (see Section 4.3)
  • Firebase Crashlytics SDK: Collects crash and error data (see Section 4.4)
  • Device identifiers: Used internally for analytics attribution

The Tuna web administration dashboard (used by our team, not end users) may use standard web cookies for authentication session management.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by:

  • Posting the updated policy within the App
  • Updating the "Last Updated" date at the top of this policy
  • Sending an email notification for significant changes (at our discretion)

Your continued use of the Service after changes become effective constitutes acceptance of the revised policy.

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

CV Harris Design, LLC Email: charlie@rolo.family

For privacy-specific requests (data access, deletion, or other rights), please email us with the subject line "Privacy Request."