LEGAL · LAST UPDATED MAY 18, 2026

PRIVACY POLICY.

In plain English: we look at the snack, not the kid. Photos go to our backend, get analyzed, and the AI writes a roast. We do not sell your data. The long version is below.

EFFECTIVE 2026-05-18 VERSION 1.1 COPPA-AWARE

TL;DR

  • You snap a snack. The photo goes to our backend over HTTPS.
  • Our backend calls OpenAI for food detection, dental-trait classification, script writing, and comic image generation.
  • We don't require accounts. We don't keep a snack history. We don't sell data. No third-party ad networks.
  • When you start a new snack, the app asks the backend to delete the prior session's photo, thumbnail, comic, and script records. Backup cleanup catches anything missed within 24 hours.
  • You can email us to request deletion of anything tied to your device.

Who we are

Roast My Snack ("the app", "we", "us") is an iOS app published by [LEGAL ENTITY NAME], based in [STATE/COUNTRY]. The companion website is roastmysnack.com. For privacy questions: privacy@roastmysnack.com.

What we collect

Information you actively provide

  • Snack photos. Captured with the iOS camera or chosen from your Photo Library. Required to run an analysis. We downsize them on-device before upload.
  • Detected snack details. OpenAI's vision analysis output on your photo, used to score the snack and write the roast.
  • Age range setting (optional). Used to tune scoring thresholds and roast tone. We never ask for a child's name or birthday.
  • Allergen preferences (optional). Used to filter Glow-Up Swap suggestions.
  • Selected art style. Which of the six comic styles you picked for the current snack.
  • Generated script and comic images. Produced by the backend for the active session.
  • Email, only if you sign up for launch notifications on roastmysnack.com.

Stored locally on your device

  • App-only preferences: age range, allergen choices, and selected visual style. These are stored using iOS local device storage and never uploaded with your photo unless required for that session.

Information collected automatically

  • Backend timing and audit logs: used for debugging, safety review, and abuse prevention. Not linked to a user identity.
  • iOS version, app version, locale. Used for diagnostics.
  • Crash and performance logs. Used to fix bugs. Sent through Apple's standard crash reporting if you've enabled it in iOS Settings.

What we do not collect

  • No accounts, profiles, or snack history.
  • No real name, address, phone number, or payment information.
  • No precise location. We don't ask for location permission.
  • No contacts, calendar, or health data.
  • No microphone audio.
  • No tracking across other apps or websites.

How we use what we collect

  • Run the snack analysis pipeline (snap → detect → score → draft → draw) for the active session.
  • Generate the comic and return it to your device.
  • Apply allergen filters and age-appropriate tone to suggestions.
  • Diagnose crashes, review for safety, and prevent abuse.
  • Enforce reasonable rate limits to keep server costs sane.
  • Send launch-notification emails, only if you signed up for them and only until launch.

Third parties

Photos and generated content are sent to the Roast My Snack backend, which uses a small set of service providers. They process the data only to operate the app features we request from them.

  • OpenAI: food detection, dental-trait classification, script writing, and comic image generation. Photos and prompt context transit OpenAI's API. Per OpenAI's API data policy in effect at time of writing, API inputs are not used to train their models. See openai.com/policies/api-data-usage-policies.
  • Vercel: hosts our backend API and marketing site. Standard HTTP request logs (IP, user agent, timestamp) are retained briefly per their policy.
  • Apple: app distribution, optional iCloud backup of your device, crash reporting.

We don't share data with advertisers, data brokers, or "growth hacking" SDKs. There are none in the app.

Children's privacy (COPPA / GDPR-K)

Roast My Snack is marketed to parents and guardians. The app is designed to be safe for children to use under adult supervision. We do not knowingly collect personal information from children under 13, beyond the snack photo and optional age range selected by the parent.

  • No accounts, no profiles, no social features, no in-app purchases targeting children.
  • The age range field is a setting, not a stored birthdate, and is never tied to a child's name.
  • Snack photos may incidentally include a child's hand or arm. We process them solely to identify the snack, then delete them on the next snack or within 24 hours.
  • Users should avoid uploading photos that show faces, private documents, or other sensitive non-snack content.
  • Parents may email privacy@roastmysnack.com to request deletion of any data tied to their device.

Retention

Uploaded snack photos are processed temporarily to generate the snack analysis and comic for the active app session. The app does not create accounts or keep a snack history.

When you start a new snack, the app asks the backend to delete the prior session's uploaded photo, thumbnail, generated comics, and related script records. If the app is closed, loses network access, or cleanup cannot complete, automatic backup cleanup removes temporary server artifacts within 24 hours. Hosting infrastructure may remove temporary files sooner.

We do not sell photos or use them for advertising or tracking.

  • Snack photos, thumbnails, generated comics, script records: deleted when you start a new snack; backup cleanup within 24 hours.
  • App-only preferences on your device: stored locally; cleared if you delete the app.
  • Backend timing / audit logs: retained briefly for debugging, safety review, and abuse prevention, then deleted.
  • Email for launch notifications: deleted within 30 days after the app launches, or whenever you unsubscribe.

Your choices and rights

You can avoid submitting a photo by not using the roast flow. You can reset the app's local preferences by deleting the app from the device.

Depending on where you live (GDPR for EU/UK, CCPA for California, plus most other jurisdictions), you have rights to:

  • Know what we have about you
  • Request a copy
  • Request correction or deletion
  • Withdraw consent for any optional processing
  • Lodge a complaint with your local data-protection authority

To exercise any of these, email privacy@roastmysnack.com with your device identifier (Settings → About in the app). We'll respond within 30 days.

Security

All traffic between the app and our backend uses TLS 1.2+. Photos are stored only in memory during analysis. We do not log photo contents. Our backend infrastructure is provided by Vercel; no employee has routine access to user-submitted images.

Changes to this policy

We will post material changes to this page with a new "Last updated" date. If the change is significant (new data category collected, new vendor processing user data), we will also surface a notice inside the app the next time you open it.

Contact

Privacy questions: privacy@roastmysnack.com
General support: hello@roastmysnack.com
Postal: [LEGAL ENTITY NAME], [STREET], [CITY, STATE, ZIP, COUNTRY].

This page is a working template. Before App Store submission, have a privacy lawyer review it against your final data-handling implementation.