Privacy
Last updated: 2026-05-06
Foodcrumbs is operated by an independent developer. We collect the minimum data needed to make the app work and we do not sell, rent, or share your personal data with third parties. This page explains in plain English what we collect, why, and how to remove it.
What we collect
- Account: a username, email address, password (stored as a one-way hash), and display name you choose.
- Posts: photos, videos, restaurant info, ratings, and notes you publish to the Discover feed.
- Saved restaurants: stored on your device. Items you save from the public feed are tied to your account so they survive reinstall.
- Comments, likes, follows, blocks: the social graph required for the feed to work.
- Device location: only when you tap to use it on the map. Coordinates you attach to a post (when you let the app pick a place) are stored with that post.
What we don't do
- No third-party analytics or trackers.
- No advertising.
- No selling, renting, or sharing your data with third parties.
- No tracking you across other apps or websites.
Where your data lives
Your account, posts, comments and other text data live in a Postgres database operated by us in Helsinki, Finland (Hetzner Cloud, EU). Photos and videos are stored on object storage on the same infrastructure. We use HTTPS for all communication with the app.
Reporting and blocking (user-generated content)
Foodcrumbs lets people post photos and text. Every post in the app has a "Report" option (three-dot menu on the post). Reports are reviewed within 24 hours; abusive or illegal content is removed and the author may be suspended or banned.
You can also block any user from the same menu. Blocking hides their posts and comments from your feeds, prevents them from seeing yours, and breaks any follow relationship. You can manage your blocked accounts in Account → Settings → Blocked accounts.
To report content directly to us, email hello@foodcrumbs.app with the post URL or username.
Deleting your data
You can delete your account at any time directly inside the app: Account → Settings → Delete account. Deleting your account permanently erases your profile, posts, photos, videos, comments, likes, follows, saves, and any pending reports you've filed. Server logs are kept for up to 14 days for security and abuse investigation, then rotated.
If you can't access the app, email hello@foodcrumbs.app from the address tied to your account and we'll wipe it within 7 days.
Children
Foodcrumbs is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child has signed up, email us and we will delete the account.
Permissions on your phone
- Camera: to take photos and videos of meals you post.
- Photo library: to pick existing photos and videos to post.
- Microphone: only while recording a video, for the audio track.
- Location (when in use): only to center the Map tab on you.
You can revoke any of these in iOS Settings → Foodcrumbs.
Security
Passwords are hashed with bcrypt (never stored in plain text). All traffic between the app and our servers uses HTTPS with modern TLS. Tokens used to authenticate the app are stored in your iPhone's secure storage.
Changes to this policy
If we change anything material we'll update this page and the "Last updated" date above. For significant changes we'll notify you in the app on next launch.