What we collect
Your profile info (goals, allergies, preferences), usage analytics, device data, and optionally health data from Apple HealthKit (processed on-device only).
AI data sharing
Your dietary preferences, health goals, and meal data are sent to Google Gemini AI to generate meal plans and nutrition advice. Google does not use your data to train AI models.
What we don't do
We never sell your data. We don't share it with advertisers. Your dietary information is yours.
How it's protected
AES-256 encryption at rest, TLS 1.3 in transit. Hosted on Google Cloud with enterprise-grade security.
Your controls
Access, correct, export, or delete your data anytime. Manage AI consent in Settings → Privacy. Email hello@grovli.com or use Settings → Account.
Grovli generates meal plans and nutrition estimates using Google Gemini AI. Your dietary preferences, health goals, and meal data are sent to Google LLC for processing. Google does not use your data to train AI models. Nutritional information is sourced from the USDA FoodData Central database (fdc.nal.usda.gov). This is informational content — not medical advice. Generated recipes may contain errors, inaccurate nutritional values, or inadvertently include allergens. If you have a medical condition, food allergies, or are pregnant, consult your doctor or a registered dietitian before making dietary changes. Always verify ingredients if you have severe allergies.
1. Information We Collect
When you create a Grovli account we collect basic profile information (name, email address) via Auth0 authentication. We also store:
- Dietary preferences, allergies, and calorie/macro targets
- Meal plans, saved meals, and pantry items you create
- Usage analytics (pages visited, features used) to improve the product
- Device and browser information for compatibility and security
- Health & fitness data (steps, active calories, exercise minutes, resting heart rate) — read-only from Apple HealthKit when you opt in. This data is processed entirely on your device to adjust nutrition targets and is never sent to our servers
- Coarse location — used only for grocery store proximity reminders and restaurant discovery, when you grant location permission
- Family member profiles — names, ages, and dietary preferences of family members you create. These are stored under your account and visible only to your household
2. How We Use Your Information
- Generate personalized meal plans and recipe suggestions tailored to your profile using Grovli Intelligence, our intelligent recipe engine (your dietary preferences, allergies, macro targets, and pantry items are processed to generate recipes)
- Manage your account, subscription, and billing
- Improve Grovli Intelligence and overall service quality — we may use anonymized, aggregated usage patterns (with hashed user IDs, never personal information) to improve meal recommendation quality
- Send transactional emails — receipts, account updates, and security alerts
- Provide customer support and respond to inquiries
- Connect you with grocery delivery via Instacart — when you use the "Order Ingredients" feature, your grocery list items are shared with Instacart to create a shopping link. No personal information beyond the ingredient list is shared
3. Data Storage & Security
Your data is stored securely on Google Cloud Platform infrastructure with industry-standard encryption in transit (TLS 1.3) and at rest (AES-256). Payment processing is handled entirely by Stripe — we never store, see, or have access to your credit card details. Access to production systems is restricted via IAM policies and audit-logged.
4. Third-Party Services
We use the following third-party services, each governed by their own privacy policies:
5. Third-Party AI Services
Grovli uses Google Gemini, a generative AI service provided by Google LLC, to power core features including meal plan generation, food photo analysis, and the nutrition advisor.
Data we send to Google Gemini:
- Dietary preferences, food allergies, and ingredient exclusions
- Calorie targets and macronutrient goals
- Health and fitness goals (e.g., weight loss, muscle building)
- Meal plan history and food log entries
- Food photographs captured within the app for analysis
- Text messages sent to the nutrition advisor feature
Purpose: This data is sent solely to generate personalized meal plans, analyze food photographs for nutritional content, and provide contextual nutrition guidance.
Data protection: Google processes this data under the Google Cloud Data Processing Addendum. All data is encrypted in transit (TLS 1.2+) and at rest. Your personal data is not used by Google to train, improve, or develop generative AI models.
Nutrition data: Nutritional information is sourced from the USDA FoodData Central database. AI-generated estimates are cross-referenced against USDA data where available.
Your choices: You may manage AI data processing consent at any time through the app's Settings → Privacy → AI Data Processing. Disabling AI data processing will prevent core features (meal plan generation, photo analysis, nutrition advisor) from functioning. Previously generated meal plans will remain accessible.
Data retention: Google retains API input/output data for up to 30 days for abuse monitoring purposes, after which it is deleted. Grovli does not independently store copies of data sent to Google beyond what is needed to display your meal plans and food logs.
6. Your Rights
You have the right to:
- Access — request a copy of all personal data we hold about you
- Correct — update or fix inaccurate information at any time
- Delete — request complete deletion of your account and associated data
- Export — download your data in a portable format
- Withdraw consent — opt out of non-essential data processing
To exercise any of these rights, email hello@grovli.com. We respond within 30 days.
8. Changes to This Policy
We may update this privacy policy from time to time. Material changes will be communicated via email or an in-app notification at least 14 days before they take effect. Continued use of the service after changes constitutes acceptance.
9. Contact
For privacy-related inquiries, data requests, or concerns, email hello@grovli.com.