Privacy Policy

Last updated: February 11, 2026

1. Introduction

Welcome to Zaki (“we,” “our,” or “us”). Zaki is operated by CodeStack Lab. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application (“App”) and related services (collectively, the “Services”).

By using the Services, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use the Services.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

Full name and display name
Email address
Profile picture (optional)
Username (optional)
Authentication data (passwords are hashed and never stored in plain text)

2.2 Social Login Data

If you sign in using a third-party service (Google, Apple, or Facebook), we receive your name, email address, and profile picture as provided by those services. We do not receive or store your social account passwords.

2.3 Profile and Preference Data

We collect information you provide about your preferences, including:

Dietary restrictions and allergies
Favorite cuisines
Cooking goals and skill level
Social links (optional)

2.4 Camera and Photo Access

Our App requests access to your device's camera and photo library to allow you to:

Scan recipes from physical cookbooks or handwritten notes
Take photos of your recipes and meals
Upload recipe images from your gallery
Update your profile picture

Photos you capture or upload are stored securely on our cloud servers (Cloudflare R2) and are only used for displaying your content within the App. We do not access your camera or photo library without your explicit permission.

2.5 Usage Data

We automatically collect information about how you interact with the App, including:

Features used and recipes viewed
Meal plans and shopping lists created
Cooking history and activity
App session duration and frequency
Device type, operating system, and version
IP address and general location (country/city level)

2.6 Push Notification Tokens

If you enable push notifications, we collect your device push token to send you meal plan reminders, cooking timers, and other relevant notifications. You can disable push notifications at any time through your device settings.

2.7 AI Interaction Data

When you use Chef Zaki (our AI cooking assistant), we collect your messages and queries to provide responses and improve the quality of the assistant. Conversations may be processed by third-party AI providers (see Section 5).

3. How We Use Your Information

We use the collected information to:

Provide, maintain, and improve the Services
Personalize your recipe recommendations and meal suggestions
Power the AI cooking assistant (Chef Zaki)
Store and display your personal recipes, meal plans, and pantry items
Send you notifications about meal plans, cooking reminders, and account updates
Process subscription payments and manage your subscription
Monitor usage limits and enforce subscription tiers
Analyze usage patterns to improve the App experience
Prevent fraud and ensure security
Comply with legal obligations

4. Data Storage and Security

Your data is stored on secure cloud servers using industry-standard infrastructure. We employ the following measures to protect your information:

Encryption in transit (TLS/SSL) and at rest
Secure password hashing using modern algorithms
Access controls and authentication for all system components
Regular security reviews and updates
Cloud infrastructure hosted by reputable providers (Cloudflare, Neon)

While we strive to protect your data, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security of your information.

5. Third-Party Services

We use the following third-party services to operate the App:

5.1 Authentication

We use Google, Apple, and Facebook sign-in services. These services may collect data according to their own privacy policies when you authenticate through them.

5.2 Payment Processing

Subscription payments are processed through Apple App Store and Google Play Store. We use RevenueCat to manage subscription status. We do not store your credit card or payment information directly. Payment processing is handled entirely by Apple and Google.

5.3 AI Services

Our AI cooking assistant (Chef Zaki) is powered by Google Gemini. Your queries and recipe content may be sent to Google's servers for processing. We do not send personally identifiable information (such as your name or email) to AI providers beyond what is necessary for the service.

5.4 File Storage

Recipe images, profile pictures, and other uploaded files are stored on Cloudflare R2, a secure object storage service.

5.5 Push Notifications

Push notifications are delivered through Apple Push Notification Service (APNs) for iOS and Firebase Cloud Messaging (FCM) for Android.

6. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your data only in the following circumstances:

With your explicit consent — When you choose to share recipes publicly or interact with other users
Service providers — With the third-party services listed in Section 5, solely to provide the Services
Legal obligations — To comply with applicable laws, regulations, or legal processes
Safety and security — To protect our rights, users' safety, and prevent fraud or abuse
Business transfers — In connection with a merger, acquisition, or sale of assets (you will be notified of any change in ownership)

7. Data Retention

We retain your personal information for as long as:

Your account is active
Needed to provide you the Services
Required by applicable laws or regulations
Necessary for legitimate business purposes (e.g., resolving disputes, enforcing agreements)

When you delete your account, we soft-delete your data (marking it as deleted). Your data will be permanently purged from our systems within 90 days of account deletion, except where retention is required by law.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Access — Request a copy of the personal data we hold about you
Correction — Request correction of inaccurate or incomplete data
Deletion — Request deletion of your account and associated data through the App settings
Portability — Request your data in a portable format
Withdrawal of consent — Withdraw consent for data processing at any time
Objection — Object to processing of your data for certain purposes

To exercise any of these rights, contact us at info@getzaki.com. We will respond to your request within 30 days.

9. Account Deletion

You can delete your account at any time through the App's profile settings. When you delete your account:

Your profile, recipes, meal plans, pantry items, and other personal data will be marked for deletion
Your data will be permanently removed from our systems within 90 days
Active sessions will be invalidated immediately
Any active subscription must be cancelled separately through the App Store or Google Play to avoid future charges

You may also request account deletion by emailing info@getzaki.com.

10. Children's Privacy

Our Services are not intended for children under the age of 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information promptly. If you believe a child under 13 has provided us with personal information, please contact us at info@getzaki.com.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using the Services, you consent to the transfer of your information to these countries. We take appropriate safeguards to ensure your data is treated securely and in accordance with this Privacy Policy.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting a notice in the App or sending you an email. The “Last updated” date at the top of this page indicates when the policy was last revised. Continued use of the Services after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us:

Email: info@getzaki.com

Website: getzaki.com