Madi Dine LogoMadi Dine

Privacy Policy

Last updated: October 7, 2025

  1. Introduction

Welcome to Madidine, operated by Auguza SASU (“we,” “our,” or “us”). We respect your privacy and are committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA/CPRA), and other applicable privacy laws.

This Privacy Policy explains how we collect, use, store, and share your personal information when you use the Madidine mobile application (“the App”) and related services.

For any privacy-related inquiries, you can contact us at: 📧 privacy@madidine.app

  1. Data We Collect

We collect the following categories of data:

Account Information: name and email address (for account creation, authentication, and communications).

Device Information: device identifiers and usage data (to improve the product and app performance).

Media Access: access to your camera and photos to enable recipe scanning, which is the app’s primary function.

Authentication & Communication Data: handled by Brevo for email-based login and service messages.

Session Cookies: stored locally on your device to maintain your login status.

We do not knowingly collect health, financial, biometric, or other sensitive data beyond what is necessary to deliver the service.

  1. How We Use Your Data

We use personal data for the following purposes:

To create and manage user accounts and authenticate logins (via email or social login).

To deliver and improve the app’s recipe-reading functionality.

To communicate with users, including service announcements and optional email updates (you can opt out at any time).

To analyze usage and enhance app performance and reliability.

To maintain security, detect fraud, and comply with legal obligations.

Madidine uses AI models provided by OpenAI to process recipe photos and extract structured information.

We do not use automated decision-making or profiling that produces legal or significant effects on users.

  1. Data Sharing and Transfers

We share data only with trusted service providers essential to operate Madidine:

Provider Purpose Data Shared Region AWS (Amazon Web Services) Hosting infrastructure and storage Account data, photos, and recipes EU (Ireland/Paris) OpenAI AI-based recipe extraction Photos only May process in the U.S. Brevo Email authentication and communications Email EU (France)

We do not sell or rent your personal data.

When data is transferred outside the EU/EEA (e.g., to the U.S.), we implement safeguards such as Standard Contractual Clauses (SCCs) and encryption to protect your privacy.

  1. User Rights

If you are located in the EU or EEA, you have the following rights under the GDPR:

Access your personal data.

Rectify inaccurate or incomplete data.

Delete your account and data (“right to be forgotten”).

Restrict or object to processing.

Portability — receive your data in a structured, machine-readable format.

Withdraw consent for optional communications.

To exercise any of these rights, contact: 📧 privacy@madidine.app

We will respond within the timeframe required by law (typically 30 days).

  1. Data Retention

Access logs are kept for up to 2 weeks for security and troubleshooting.

Personal data (email, account info) is deleted or anonymized as soon as your account is deleted.

Photos and recipes may be retained on AWS after account deletion for investigation and service integrity purposes, but are not used for any other processing.

  1. Security Measures

We take security seriously and implement appropriate technical and organizational measures, including:

Encryption in transit and at rest.

Hashed and salted authentication sessions, processed only in memory.

Restricted access to personal data on a need-to-know basis.

Monitoring and prompt response to security incidents.

While we use best practices to protect your data, no system is completely immune to breaches.

  1. Cookies & Tracking

Madidine uses only essential session cookies stored locally on your device to keep you logged in between sessions. We do not use analytics, advertising, or tracking cookies at this time.

Because these cookies are strictly necessary, consent is not required under the ePrivacy Directive.

  1. Children’s Privacy

Madidine is intended for adult users. We do not knowingly collect data from children under 13 (COPPA) or 16 (GDPR). If we become aware that a child has provided personal information without parental consent, we will delete it promptly.

  1. Legal Bases for Processing (GDPR)

We process personal data based on the following legal grounds:

Consent: for optional communications and non-essential features.

Contract: to provide and maintain your account and deliver the core service.

Legitimate interest: to improve performance, ensure security, and prevent misuse.

Legal obligation: to comply with applicable laws and respond to lawful requests.

  1. International Data Transfers

When data is processed or stored outside the EU/EEA (e.g., by OpenAI in the U.S.), we ensure appropriate safeguards such as:

Standard Contractual Clauses (SCCs) approved by the European Commission.

Encryption and limited data scope (only necessary photos shared).

  1. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Users will be notified of major updates via email, in-app notification, or through our website.

The latest version will always be available on madidine.app.

  1. Contact Us

For any questions, requests, or complaints regarding your personal data or this Privacy Policy, please contact: 📧 privacy@madidine.app