Back to Home

Privacy Policy

Effective Date: November 17, 2025

1. Introduction

Welcome to Prep ("we", "us", or "our"). We are committed to protecting your privacy and ensuring you have a positive experience using our meal prep application and related services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website.

By using Prep, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our services.

We do not sell, rent, or commercialize your personal information in any way.

2. Information We Collect

2.1 Account Information

We collect information that you provide directly to us when you create an account:

  • Name and email address
  • Authentication credentials (via OAuth providers such as Google, Apple, or Facebook)
  • Profile information (age, gender, dietary preferences, health goals)
  • Communications with us (customer support inquiries, feedback)

Note: We use OAuth (third-party authentication) for account security. We do not store or have access to your passwords. Authentication is handled securely by trusted OAuth providers.

2.2 Nutrition and Health Data

To provide personalized nutrition recommendations, we collect:

  • Food consumption data (meals, snacks, beverages you log)
  • Nutritional preferences and restrictions (allergies, dietary restrictions)
  • Health metrics (weight, height, activity level, if provided)
  • Your interactions with food content (likes, saves, searches)

2.3 Usage Information

We automatically collect certain information about how you interact with our app:

  • Device information (device type, operating system, app version)
  • Usage data (features used, time spent in app, content viewed)
  • Technical data necessary for app functionality and performance monitoring

2.4 Payment Information

If you subscribe to premium features, payment information is collected and processed by our third-party payment processor (Stripe or Apple/Google Play payment systems). We do not store your full credit card information on our servers. We only receive confirmation of successful payments and basic transaction details necessary for account management.

3. How We Use Your Information

We use the information we collect solely to provide and improve our services:

  • Provide personalized nutrition recommendations and meal suggestions
  • Create and manage your account
  • Process subscription payments and manage billing
  • Personalize your experience and deliver relevant nutritional content
  • Communicate with you about your account, updates, and customer support
  • Analyze usage patterns to improve our app and develop new features
  • Maintain app security and prevent fraud
  • Comply with legal obligations and enforce our terms of service

We do not use your information for advertising purposes. We do not sell, rent, or commercialize your personal information.

4. Data Sharing and Disclosure

We do not sell, rent, or commercialize your personal information. We only share your information in the following limited circumstances:

4.1 Service Providers

We share minimal necessary information with trusted third-party service providers who perform services on our behalf, including:

  • Payment processing (Stripe, Apple Pay, Google Play)
  • Cloud hosting and data storage
  • Email delivery services
  • Analytics and performance monitoring

These providers are contractually obligated to protect your information, use it only for the specific purposes we authorize, and maintain confidentiality.

4.2 Legal Requirements

We may disclose your information if required by law, legal process, or government request, or if we believe disclosure is necessary to:

  • Comply with legal obligations
  • Protect our rights and property
  • Protect the safety of our users or the public
  • Prevent fraud or security threats

4.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email or prominent notice in the app of any such change in ownership or control of your personal information. The new entity will be required to honor the commitments made in this Privacy Policy.

4.4 Aggregated and De-identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you for research, product improvement, or analytical purposes. This data does not contain any personally identifiable information.

5. Third-Party Services and Links

Our app may contain links to third-party websites, services, or content. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing them with any personal information.

We use OAuth authentication providers (Google, Apple, Facebook) to secure your account. These providers have their own privacy policies governing how they handle your authentication data.

6. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit (HTTPS/TLS) and at rest
  • Secure OAuth authentication (no password storage)
  • Regular security assessments and updates
  • Restricted access to personal information on a need-to-know basis
  • Secure cloud infrastructure with industry-standard protections

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information using industry best practices, we cannot guarantee absolute security.

7. Data Retention

We retain your personal information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements.

When you delete your account, we will immediately and permanently delete your personal information, including your profile data, meal history, conversation history, uploaded images, and all related records, except where we are required to retain it for legal, regulatory, or legitimate business purposes (such as financial records for tax compliance). Account deletion is immediate and cannot be undone.

8. Your Rights and Choices

You have certain rights regarding your personal information:

  • Access: Request access to your personal information and receive a copy in a portable format
  • Correction: Update or correct inaccurate or incomplete information in your account settings
  • Deletion: Request deletion of your account and personal information
  • Data Portability: Export your data in a machine-readable format
  • Opt-Out of Communications: Unsubscribe from promotional emails via the link in each message

To exercise these rights, please contact us at support@healthpoints.io or use the account settings in the app. We will respond to your request within 30 days.

9. Children's Privacy

Our services are not directed to children under 13 years of age (or 16 in the European Economic Area). We do not knowingly collect personal information from children under these ages.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at support@healthpoints.io, and we will delete such information from our systems.

10. International Users

Prep is based in the United States. If you are accessing our services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located. By using our services, you consent to the transfer of your information to the United States.

For users in the European Economic Area (EEA), United Kingdom, or Switzerland, we comply with applicable data protection laws, including the General Data Protection Regulation (GDPR). We process your data based on:

  • Your consent
  • Performance of a contract with you
  • Legitimate business interests
  • Legal obligations

11. California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected, used, and shared
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your privacy rights
  • Right to correct inaccurate personal information

To exercise these rights, please contact us at support@healthpoints.io. We will verify your identity and respond to your request within 45 days.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

  • Posting the updated policy in the app
  • Updating the "Effective Date" at the top of this policy
  • Sending you an email notification for significant changes

We encourage you to review this Privacy Policy periodically. Your continued use of our services after any changes indicates your acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Prep
Email: support@healthpoints.io
Address: Austin, Texas, United States

Last Updated: November 17, 2025