Privacy Policy

1. Introduction

Recallect ("Company", "we", "our", or "us") is committed to protecting the privacy of users ("User", "you", "your"). This Privacy Policy fully details how Recallect collects, processes, stores, protects, and uses information when you engage with our platform via messaging services, website, and integrations. By accessing or using Recallect, you agree to this Privacy Policy.

For any questions or requests, please contact us at privacy@recallect.io.

2. Information We Collect

a. Personal Information

• Registration information: name, email address, phone number, device identifiers
• Grocery receipt images, product barcodes, purchase data
• Food recall match history and notification preferences
• Account credentials and any submitted forms or communication

b. Usage & Equipment Information

• Geolocation (if enabled), device/browser data, operating system, app version
• IP address, referrer, session details, access times
• Interaction history, messaging patterns, alert responses

c. Communication Data

• Chat logs, receipt scans, feedback, survey responses
• Support requests and correspondence records

d. Non-Personal Information

• Aggregated/anonymous data for analytics and system improvement
• Cookies, web beacons, and other tracking technologies (see Section 5)

3. How Information is Collected

• At registration, directly from user input, and via messaging interaction
• Via uploaded files, receipt scans, and barcode submission
• Automatically via device/app/browser for usage analytics
• Through cookies and third-party tools as described (Section 5)
• From support, feedback, and user-submitted correspondence

4. Use of Your Information

We use your information to:

• Provide personalized recall alerts, expiry notifications, and food safety guidance
• Improve platform features, security, AI matching, and analytics
• Facilitate account creation, service management, and technical support
• Fulfill legal compliance and obligations (contract, billing, notifications)
• Conduct marketing (with opt-out), updates, surveys, or feature announcements

5. Cookie Policy & Tracking Technologies

Recallect uses cookies and similar tools to enhance user experience, store preferences, and perform analytics.

• You may configure cookie preferences or disable behavioral tracking in your settings
• See your Privacy Dashboard for third-party tracking partners used by Recallect; you may opt out as desired
• Do Not Track signals honored where supported

6. Data Security Measures

ENTERPRISE-GRADE SECURITY

7. Disclosure & Sharing of Personal Information

We never sell your data. Data is never sold, traded, or transferred to third parties except necessary subprocessors under strict confidentiality and privacy contracts.

• Information may be disclosed to trusted infrastructure partners to provide core services
• Aggregated, anonymized data may be shared for research or improvement
• Disclosure may occur under law, court order, regulatory request, or merger/acquisition
• Users can opt out of targeted marketing communications; essential transactional or account-related communications cannot be opted out

8. Data Retention & User Control

• Data is retained only as long as required for active service delivery, legal compliance, or account recovery purposes
• Personal data and chat history are deleted upon account deactivation/request (typically within 30 days), except where lawful retention is required
• Non-identifiable aggregate data may persist for analysis and service continuity

9. Your Rights

You have the right to:

• Access, review, correct, export, or permanently delete your personal data by emailing privacy@recallect.io or using account controls
• Restrict processing of your data
• Object to marketing and request to be forgotten
• Request data portability or withdraw consent
• Escalate complaints to regulatory authorities for legal redress
• Enable two-factor authentication for enhanced security

10. AI Data Handling

• AI models process receipt/barcode images only for direct recall detection and alerting; no training on raw user data without explicit opt-in
• Data protection for all AI outputs and model recommendations, regularly audited for fairness and transparency
• Users may request information on how AI systems process personal data

11. International Transfers

Data may be stored or processed outside your region; Recallect ensures compliance with GDPR and other national standards for international data transfers.

• Standard contractual clauses and encryption applied for all transfers
• Data is only accessible to employees strictly as needed

12. Children's Privacy

Recallect is not intended for users under 18; parental consent required for younger users where permitted by law. Data of minors is promptly deleted if discovered.

13. State, Provincial, and National Laws

We comply with:

• U.S. state privacy laws (including New York SHIELD Act, California CCPA)
• GDPR (General Data Protection Regulation) for European users
• PIPEDA for Canadian users
• Notification of data breaches and rights available as required by regional laws

14. Third-Party Service Providers

• Any vendor, hosting provider, or analytic partner is vetted for privacy and security compliance
• A current list of providers is available in the Privacy Dashboard
• Contact privacy@recallect.io for details

15. Modifications to Privacy Policy

This Privacy Policy may be updated; material changes will be communicated via platform, email, or announcement prior to becoming effective. Continued use of the service constitutes acceptance of policy changes.

16. Copyright Infringement Notice

Recallect follows DMCA protocol for intellectual property and copyright claims. Report infringements to legal@recallect.io.

17. Contact Information