Privacy Policy - KeepFresh

1. Introduction

KeepFresh ("we," "our," or "the App") is committed to protecting your privacy. This Privacy Policy explains what information we collect, why we collect it, how it is shared, and the choices you can make.

        Summary: KeepFresh collects User ID, Device ID, Product Interaction, and Advertising Data to manage your inventory and deliver personalized ads (with your consent). Crash logs are collected but not linked to your identity. OCR runs on-device using Apple Vision and images are not uploaded unless you enable backup.
      

2. Data We Collect

2.1 Data Linked to Your Identity

User ID
A unique identifier for your account/profile, created when you enter your nickname. Used to store and manage your products in Firebase Cloud Firestore.
Device ID
Your device's push notification token and (only after consent on iOS) advertising identifier (IDFA). Push tokens are used for notifications; IDFA is used only if you allow tracking via Apple's ATT.
Product Interaction Data
Actions you perform in the app (add/delete items, mark used, view dashboards). Linked to your User ID to provide core functionality.
Nickname and Inventory
Your nickname and product records are stored locally and may be backed up to Firebase (encrypted in transit and at rest) if you opt in.
Camera & Photo Data
Requested to scan expiration dates via OCR or import images. Images are processed on-device; not uploaded unless you enable backup.

2.2 Data Used for Tracking (Advertising)

Advertising Data (AdMob)
- Device identifiers (IDFA/GAID) (IDFA is accessed on iOS only after ATT consent)
- Approximate location (derived from IP address); we do not request precise location permission
- Ad impressions and interactions
- App usage patterns and engagement metrics
Important (ATT on iOS 14.5+):
When you first open KeepFresh, you will see a primer explaining why we request tracking permission, followed by Apple's ATT prompt. Your choice determines how ads are delivered:
- Allow Tracking: IDFA is used to deliver personalized ads based on your interests. AdMob may use device identifiers, advertising data, and approximate location for ad targeting and measurement.
- Deny / Ask App Not to Track: IDFA is not used and we send requestNonPersonalizedAdsOnly = true so AdMob serves non‑personalized ads. You will still see ads, but they won't be based on your activity across apps and websites.

2.3 Diagnostic Data (Not Linked to Identity)

Crash Logs & Performance Metrics
Aggregated crash, launch time, and performance data. Anonymized and not linked to your identity; used to improve stability.

3. How We Use Your Data

On-Device Processing
OCR and expiry recognition run locally on your device.
Inventory Management
We use Product Interaction and Inventory data to show your products, dashboards, and statistics.
Reminders & Notifications
Your push token is used to deliver expiry alerts and in-app notifications.
Personalized & Non‑Personalized Ads
With ATT consent, AdMob may deliver personalized ads; without consent, we request non‑personalized ads.
Analytics & Diagnostics
Aggregated data is used to detect bugs, prevent fraud, and maintain reliability.

4. Data Sharing & Third‑Party Services

Google AdMob
Provides rewarded and banner ads. Depending on your ATT choice, AdMob may process Device ID, Advertising Data, and approximate location. Google Privacy Policy.
Firebase / Google Cloud
Optional inventory backups and authentication. Access is restricted to your User ID, encrypted at rest, governed by Firebase security rules.
Apple Push Notification Service (APNs)
Delivers iOS notifications when you opt in.
Expo (EAS)
On Android, push is delivered via FCM.
No Data Sales
We do not sell or rent personal data; sharing occurs only with listed providers or when required by law.

5. Tracking, ATT Consent & Your Choices

ATT on iOS 14.5+
You will see Apple's ATT prompt when you first open KeepFresh (if your device allows apps to request to track). Your choice controls personalized vs. non‑personalized ad requests.
Change Your Preference Later
Go to Settings > Privacy & Security > Tracking and toggle permission for KeepFresh.
Ad Preferences Within the App
Currently, there is no in‑app toggle. You can always switch to non‑personalized ads by denying tracking in system settings. If you previously allowed tracking, you can revoke it anytime in Settings.
Notification & Camera Settings
You can change these permissions in device settings; core functionality continues to work.
Data Deletion
Use in‑app deletion or contact us at info@keepfreshai.store to purge synced Firebase data.

6. Data Retention

Inventory Records: Retained until you delete them or close your account.
Push Token / IDFA: Push tokens expire when you disable notifications or uninstall; IDFA is only accessed after consent.
Advertising Data: Retained by AdMob under Google's policy. You can opt out via Settings or Google Ad Settings.
Crash / Performance Logs: Stored in aggregate and purged on a rolling basis (typically within 90 days).

7. Security

TLS 1.2+ in transit; Firebase encrypted at rest.
Access limited to authorized personnel with MFA.
Third‑party SDKs reviewed and patched periodically.
Push tokens stored securely and never exposed publicly.

8. International Users & Legal Bases

We are based in Türkiye. For EU/EEA users, we process data under:

Legitimate Interest: Core app functionality (inventory, reminders).
Consent: Personalized ads (via ATT), push notifications, and optional Firebase sync.

Data may be transferred to the United States and other regions for AdMob and Firebase processing. Standard Contractual Clauses (SCCs) apply via Google's DPA.

9. Children's Privacy (COPPA)

KeepFresh is not directed to children under 13 (or under the digital age of consent in your region). If we learn that we collected personal information from a child without verifiable parental consent, we delete it promptly.

Note: AdMob is configured for COPPA compliance; if a child uses the app without ATT consent, only non‑personalized ads are shown.

10. Your Rights

Access & Portability: Export your inventory from the app or request a copy via email.
Correction: Edit product details anytime.
Deletion: Use in‑app deletion or contact us to purge synced Firebase data.
Objection & Restriction: Deny ATT to switch to non‑personalized ads; disable notifications; revoke consent anytime.
Complaints (EU): You may lodge a complaint with your local Data Protection Authority (DPA).

11. Changes to This Policy

We may update this Privacy Policy from time to time. If changes are material, we will notify you via email or in‑app notice. Continued use of KeepFresh after such changes means you accept the updated policy.

12. Contact Information

Questions or Concerns?
Erol Kaplan
AI & Mobile Development Specialist
Email: info@keepfreshai.store
Gmail: erolkpln@gmail.com
Phone: +90 535 611 5641
Location: Istanbul, Türkiye
Website: keepfreshai.store

If you have questions about this Privacy Policy, wish to exercise your rights, or need to report a data breach, contact us using the details above. We aim to respond within 30 days.

13. Summary for App Store

Data Collected by KeepFresh (App Privacy):

Linked to You: User ID, Device ID (push token; IDFA only after ATT consent), Product Interaction
Not Linked: Crash Data, Performance Data, Advertising Data
Used for Tracking: IDFA (AdMob) and Advertising Data for personalization only with ATT consent; otherwise non‑personalized ads