Restokk — AI Kitchen & Grocery Tracker Effective date: March 26, 2026
Summary: Restokk is a local-first app. Your data is stored on your device by default. If you sign in with Google, you can optionally back up your data to the cloud. We do not sell your data or show ads.
1. What Data We Collect
1a. Data stored locally on your device
The following data is stored in a local database on your phone:
App settings and preferences (theme, currency, notification toggles)
Pantry health scores and analytics
1b. Cloud backup (optional)
If you sign in with Google, Restokk can back up your data to Firebase Cloud Firestore (hosted on Google Cloud, Europe region). This is opt-in and includes:
Inventory items (up to 75 items on the free tier, prioritized by expiry date and recency)
Shopping list items, categories, subcategories, storage locations, and units
Saved recipes
App settings
Backups are:
Isolated per user — enforced by Firestore security rules; no user can access another user's data
Encrypted at rest — by Google Cloud's default encryption
Encrypted in transit — all communication uses HTTPS
Deletable — deleted automatically when you delete your account (see Section 6)
An automatic daily backup runs if you are signed in with Google. You can also trigger a manual backup from Settings. If you are not signed in with Google, no data leaves your device.
1c. Data collected by third-party services
Service
Data Collected
Purpose
Firebase Authentication (Google)
Email, display name, profile photo (if you sign in with Google); anonymous user ID if you don't
Account management, AI usage tracking
Firebase Analytics (Google)
Device info (model, OS), app events (screen views, feature usage), approximate geographic region
Understand how features are used to improve the app
Firebase Crashlytics (Google)
Crash logs, device model, OS version, app state at time of crash
Identify and fix app crashes
Firebase Cloud Firestore (Google)
Inventory items, shopping lists, recipes, categories, settings (only if signed in with Google)
Cloud backup and restore — lets you recover data on a new device
Restokk uses AI to power kitchen scanning, receipt parsing, and meal suggestions. Here's exactly what gets sent:
Feature
Data Sent
Provider
Used for Training?
Kitchen Scan (photo recognition)
Photo of your kitchen/food
OpenAI (GPT-4o) via our server
No
Receipt Scan
Photo of your receipt
OpenAI (GPT-4o) via our server
No
Meal Suggestions
Item names and categories from your inventory
Groq (Llama) via our server
No
Smart Tips
Item names and categories
Groq (Llama) via our server
No
Expiry Date Scan
Photo of product packaging
OpenAI (GPT-4o) or Groq (Llama) via our server
No
Barcode Lookup
Barcode number only
Open Food Facts (public API)
N/A (public database)
Barcode Lookup (fallback)
Barcode number only
UPC Item DB (api.upcitemdb.com)
N/A (public database)
Important:
All AI requests are routed through our secure server (Firebase Cloud Functions, hosted on Google Cloud). Your API keys are never stored in the app.
Photos (including receipt images that may contain purchase prices) are processed in real-time and not stored on any server after processing.
OpenAI does not use API data for model training (per their data usage policy).
Groq does not use API data for model training.
We do not send your full inventory or shopping list to AI providers — only the minimum data needed for each specific feature.
3. How We Use Your Data
To provide the app's features — inventory tracking, shopping lists, AI scanning, meal suggestions, reports
To improve the app — anonymous analytics help us understand which features are used and where to focus development
To manage AI usage — per-user quotas prevent abuse and keep the service running for everyone
We do not:
Sell your data to third parties
Show advertisements
Build advertising profiles
Share your personal information with other users
4. Data Storage & Security
Local data is stored in an encrypted SQLite database on your device
Cloud backups are stored in Firebase Cloud Firestore (Google Cloud, Europe region), encrypted at rest and isolated per user via security rules
API keys are stored server-side (never in the app) and encrypted at rest
Authentication tokens are managed by Firebase Auth with industry-standard encryption
AI requests use HTTPS encryption in transit
All network traffic uses HTTPS — cleartext (HTTP) connections are blocked by the app's network security configuration
5. Background Processing
Restokk may run a background service in the following situations:
Cooking Timers: When you start a cooking timer and minimize the app, a foreground service keeps the timer running and displays a notification with the remaining time. This service does not collect, store, or transmit any data. It stops automatically when all timers complete.
Smart Notifications: A periodic background worker checks your inventory for expiring items and generates in-app notification cards. This runs entirely on-device using your local database — no data is sent to any server.
Auto Backup: If you are signed in with Google, a daily background worker backs up your data to Cloud Firestore over Wi-Fi. No backup occurs if you are not signed in with Google.
6. Your Rights & Choices
Access your data
All your inventory, shopping, and recipe data is visible directly in the app. You can export it as CSV or JSON at any time from Settings.
Delete your account and data
You can delete your account directly from the app: go to Settings → Delete Account. This will permanently:
Delete your Firebase Authentication account
Delete all cloud backup data from Firestore (inventory, shopping, recipes, settings, metadata)
Delete rate limit and usage records
Revoke Google access
Clear all local data and encrypted preferences
As a safety net, a server-side Cloud Function also runs when your account is deleted, ensuring all associated cloud data is removed even if the app-side cleanup is interrupted.
To delete only local data without deleting your account, clear the app's storage in your phone's Settings, or uninstall the app.
Control AI features
AI features (kitchen scan, receipt scan, meal suggestions) are only triggered when you explicitly use them. No data is sent to AI providers in the background.
Control analytics
Firebase Analytics collects anonymous usage data. You can limit this by disabling usage data sharing in your device's Google settings.
Control notifications
All notification types (expiry alerts, restock reminders, shopping reminders) can be individually toggled on/off in the app's Settings.
7. Children's Privacy
Restokk is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.
8. Changes to This Policy
We may update this privacy policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of the app after changes constitutes acceptance of the updated policy.
9. Contact
If you have questions about this privacy policy or your data, contact us at: