← Back

Privacy Policy

Last updated: 4 March 2025

Overview

Noms is a recipe manager, meal planner, and shopping list app for households. We are committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights.

Data we collect

We only collect data that you explicitly provide:

  • Account information — your email address, name, and password (stored securely hashed).
  • Content you create — recipes, meal plans, shopping lists, notes, and recipe photos you upload.
  • Household membership — which households you belong to and your role within them.
  • Session data — when you sign in, we store a session token, your IP address, and browser user agent to maintain your login.

Data we do not collect

  • We do not use analytics or tracking tools.
  • We do not serve advertisements.
  • We do not access your device's camera, microphone, contacts, or location.
  • We do not sell, share, or provide your data to third parties for marketing or advertising purposes.

Third-party services

We use the following services to operate the app:

  • Supabase — hosts our database and stores recipe photos you upload.
  • Cloudflare — hosts the web application.
  • Sentry (optional) — if enabled, receives error reports to help us fix bugs. These reports may include technical details about the error but do not contain personal content.

When you search for supermarket products, we send your search queries to public supermarket websites (Waitrose, Riverford) to find matching products. No personal information is included in these requests.

Data storage and security

All data is stored in a secure PostgreSQL database. Passwords are hashed using PBKDF2-SHA256 and are never stored in plain text. Session tokens are used to authenticate requests and expire automatically.

Data retention and deletion

Your data is retained for as long as your account exists. If you wish to delete your account and all associated data, please contact us and we will remove it promptly.

Your rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your account and data.

Contact

If you have questions about this privacy policy or wish to exercise your rights, please contact us at hello@catterill.uk.