Privacy Policy — Haltbar

Effective: April 2026

1. Data Controller

Responsible for data processing in this app:

Bruno Lottko
Kurt-Eisner-Str. 44
81735 Munich, Germany

Email: lobrapps+haltbar@gmail.com

2. Data Collected

Haltbar processes the following personal data:

• Email address (upon registration)
• Google ID and profile name (for Google sign-in)
• Apple ID (for Apple sign-in)
• Consent timestamps for terms and privacy policy
• Household and inventory data (food items, quantities, expiry dates)
• Recipe data (saved and created recipes, likes)
• Shopping lists

3. Purpose of Data Processing

Your data is processed exclusively for the following purposes:

• Providing app functionality (inventory management, recipes, shopping lists)
• Synchronization across your devices
• Household sharing between members
• Notifications about expiring food items
• AI-powered recipe generation

4. Legal Basis

Processing is based on your consent (Art. 6(1)(a) GDPR) and for the performance of a contract (Art. 6(1)(b) GDPR). You may withdraw your consent at any time with effect for the future (see Section 8).

5. Data Storage and Security

Your data is stored encrypted on secure servers (Supabase). We implement technical and organizational security measures to protect your data from loss, manipulation and unauthorized access.

6. Data Sharing

Your data is shared with third parties only in the following cases:

• Supabase (database hosting, EU servers)
• Google LLC (for Google sign-in: OAuth, profile name, email)
• Apple Inc. (for Apple sign-in: Sign in with Apple)
• OpenAI (AI recipe generation, only anonymized product data)
• Open Food Facts (product information, barcode queries only)
• Sentry (error reports, anonymized)

Data is never shared for advertising purposes.

7. Data Retention and Deletion

Your data is stored as long as your account is active:

• Account data: Until account deletion
• Inventory data: Until deletion or 12 months after inactivity
• Recipe likes: Until account deletion
• Consent records: 3 years (legal documentation requirement)

You can delete your account and all associated data at any time in the account settings. After deletion, all personal data will be completely removed within 30 days.

8. Your Rights

You have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR)
• Right to withdraw consent (Art. 7(3) GDPR)
• Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

To exercise your rights, contact us by email or delete your account directly in the app's account settings.

9. Cookies and Tracking

This app does not use cookies or tracking technologies for advertising. Local storage is used solely for app functionality.

10. Children

This app is not directed at children under 16. We do not knowingly collect data from children under 16.

11. Changes to This Policy

We reserve the right to update this privacy policy. The current version is always available on this page and in the app.

12. Contact

For privacy-related questions:
Email: lobrapps+haltbar@gmail.com
Mail: Bruno Lottko, Kurt-Eisner-Str. 44, 81735 Munich, Germany