Privacy Policy
Last updated July 3, 2026
This Privacy Policy explains how DinnerDiary (“we”, “us”) collects, uses, and shares information when you use our website and mobile apps (the “Service”). By using the Service you agree to this policy.
Information we collect
Information you provide
- Account: email address, name, username, and (if you use social sign-in) the basic profile your provider shares.
- Profile: optional bio, home city, avatar, and Instagram/TikTok handles you choose to add.
- Your content: lists, saved places, ratings, notes, visit dates, favourites, and photos you upload.
- Social connections: friend requests, follows, and shared lists.
Information collected automatically
- Usage & device data: pages viewed, actions taken, approximate location derived from IP, browser/OS, and log data.
- Location: if you grant permission, your device location is used to centre the map and show nearby places. You can revoke this at any time in your device settings.
- Analytics & session replays: we use Umami, a privacy-focused, cookieless analytics tool, including sampled, masked session replays and heatmaps to understand and improve the Service. Replays mask input content and are retained for a limited time.
How we use your information
- To provide, maintain, and improve the Service.
- To personalise your lists, map, search, and recommendations.
- To process subscriptions and manage your plan.
- To communicate with you about your account, security, and features.
- To detect, prevent, and address fraud, abuse, and security issues.
- To comply with legal obligations.
Payments
Paid subscriptions are processed by Polar, our Merchant of Record. Polar (and its payment processor) handle your payment details; we never receive or store your full card information. Polar’s handling of your data is governed by its own privacy policy.
Service providers we share data with
We share only what is needed for these providers to operate the Service on our behalf:
- Polar — subscription billing (Merchant of Record).
- Amazon Web Services (S3 / CloudFront) — hosting and media storage/delivery.
- Mapbox — maps and geocoding.
- Google — optional sign-in and place/maps data.
- Plunk — transactional email delivery.
- Umami — analytics and session replays.
We do not sell your personal information. Public lists and public profiles you choose to make public are visible to anyone, including search engines.
Cookies
We use a first-party session cookie to keep you signed in. Our analytics provider is cookieless. We do not use third-party advertising cookies.
Data retention
We keep your information for as long as your account is active or as needed to provide the Service. You can delete your content or your account at any time; we may retain limited records where required for legal, tax, or fraud-prevention purposes.
Your rights
Depending on where you live, you may have the right to access, correct, export, or delete your personal information, and to object to or restrict certain processing. You can manage most data directly in the app (Settings), or contact us at privacy@dinnerdiary.app.
Security
We use industry-standard measures to protect your data, including encryption in transit, hashed credentials, and access controls. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
International transfers
Your information may be processed in countries other than your own, including the United States. Where required, we rely on appropriate safeguards for these transfers.
Children
The Service is not directed to children under 13 (or the minimum age in your country). We do not knowingly collect data from children under that age.
Changes to this policy
We may update this policy from time to time. Material changes will be posted here with an updated date, and where appropriate we will notify you in the app.
Contact
Questions? Email privacy@dinnerdiary.app.