Privacy Policy | Re-Whisk

Last Updated: February 4, 2026

At Re-Whisk (owned and operated by [Your Company Name/Entity]), your privacy is integrated into our architecture. This Privacy Policy explains how we collect, use, and protect your information across the Re-Whisk Chrome Extension and our website, www.rewhisk.com (collectively, the "Service").

By using the Service, you agree to the practices described in this policy.

1. Information We Collect

We collect information categorized as follows:

A. Account Information (Personal Data)

We utilize Firebase (a Google service) for authentication. When you create an account, we collect:

  • Name and Email Address.
  • Authentication tokens and unique User IDs (UID).
  • Note: We never see or store your plaintext passwords.

B. Service & Transformation Data

To fulfill the core function of the extension (Recipe Transformation):

  • Recipe Text: We extract ingredient lists and instructions from the webpages you choose to transform.
  • AI Processing: This data is sent via HTTPS to our secure backend proxy and shared with third-party Large Language Model (LLM) providers (e.g., Google Gemini) for real-time processing.
  • Ephemeral Nature: Recipe data processed during transformation is processed in-memory and is not persistently stored on our servers unless you explicitly save the recipe to your profile.

C. Client-Side Preferences

To maximize privacy, your Dietary Profiles (e.g., Celiac, Keto, Vegan) are stored locally on your device via the chrome.storage.local API. This data is not automatically synced to our central database unless you opt-in to cloud-sync features.

D. Technical & Analytics Data

We collect anonymous interaction telemetry to maintain Service integrity:

  • Extension event logs (e.g., successful transformations, error rates, button interactions).
  • Browser version and Extension version.
  • This data is aggregated and cannot be used to personally identify you.

2. Legal Basis for Processing (GDPR/CCPA Compliance)

If you are located in the European Economic Area (EEA) or UK, we process your data under the following legal bases:

  1. Contractual Necessity: To provide the recipe transformation Service you requested.
  2. Consent: For authentication and optional features (like saved recipes).
  3. Legitimate Interests: For analytics and security monitoring to protect our Service from fraud.

3. Data Sharing & Third-Party Processors

We do not sell your personal data. We only share data with the following essential sub-processors:

  • Google Firebase: For identity management and cloud infrastructure.
  • AI Model Providers (e.g., Google/OpenAI): To perform the intellectual transformation of recipe text.
  • Cloudflare: For secure networking, DDoS protection, and proxy services.

All third-party processors are vetted for compliance with global privacy standards (SOC2, ISO 27001).

4. Chrome Web Store "Limited Use" Disclosure

Re-Whisk strictly adheres to the Google Chrome Web Store User Data Policy, including the "Limited Use" requirements:

  • We only use the permissions (activeTab, scripting, sidePanel) to provide or improve the core user-facing features of the extension.
  • We do not use or transfer your data for serving advertisements, including retargeting or interest-based advertising.

5. Data Retention & Deletion

  • Account Data: Retained as long as your account is active. You may delete your account via the extension settings at any time, which triggers the deletion of your Firebase record.
  • Analytics Data: Retained in an aggregated form for up to 14 months.
  • In-Memory Data: Recipe transformation text is purged from our proxy cache immediately after the response is sent to your browser.

6. Your Global Privacy Rights

Depending on your location, you may have the following rights:

  • The Right to Access: Request a copy of the personal data we hold.
  • The Right to Erasure: Request that we delete your data.
  • The Right to Opt-Out: Manage your data via the extension's "Privacy Settings" menu.
  • The Right to Data Portability: Export your saved recipes in a machine-readable format.

To exercise these rights, please contact [email protected].

7. Security Measures

We employ rigorous security protocols:

  • Encryption: All data in transit is encrypted via TLS 1.3. Data at rest (Saved Recipes) is encrypted using AES-256.
  • Isolation: Our backend proxy ensures your IP address and personal metadata are stripped before recipe text is sent to AI models for processing.

8. International Data Transfers

Re-Whisk is a global service. Data may be transferred to and processed in the United States or other countries where our sub-processors maintain facilities. We ensure these transfers are protected by Standard Contractual Clauses (SCCs) or other recognized legal frameworks.

9. Contact & Support

For any privacy-related inquiries, please contact our Data Protection Officer (DPO):

Re-Whisk Legal Department

Website: www.rewhisk.com

Email: [email protected]

← Back to homepage