Privacy Policy

Last updated: June 2026

Omniteca ("we", "our", or "us") operates the omniteca.app website, the Omniteca Chrome extension, the Omniteca iOS app, and the Omniteca Android app (collectively, the "Service"). This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information.

By using the Service, you agree to the collection and use of information as described in this policy.

1. Information We Collect

Account information. When you sign in with Google or Apple, we receive your name and email address from the identity provider. We store this to identify your account.

Saved content. We store the URLs, titles, descriptions, thumbnails, and metadata of content you choose to save via the Service.

AI-extracted data. We use AI to extract structured information from your saved content (e.g. recipe ingredients, movie titles, place addresses). This data is stored in your account and is never used to train AI models.

Usage data. We collect basic usage information such as save counts and activity timestamps for quota enforcement and service improvement. We also collect anonymised product analytics events (e.g. which features are used) to understand how the Service is used. These events are associated with your account identifier.

Payment information. Payments are processed by a third-party payment processor. We do not store your card details. We receive and store subscription status, plan tier, and invoice records.

Push notification tokens. If you enable push notifications on iOS or Android, we store your device token to deliver notifications. You can disable this at any time in your device settings.

Affiliate click data. When you click an affiliate link generated by the Service, we record the click event (linked to your account) for reporting purposes.

2. How We Use Your Information

• To provide, operate, and maintain the Service.
• To process your saves and run AI classification and enrichment.
• To manage your subscription and enforce usage quotas.
• To send transactional emails (e.g. welcome email, billing receipts).
• To send push notifications you have opted into.
• To generate affiliate links relevant to your saved content.
• To improve and develop the Service using anonymised analytics.

We do not sell your personal data to third parties.

3. Third-Party Services

We use carefully selected third-party services to operate the Service. Each acts as a data processor under our instructions and has its own privacy policy. We share only the minimum data necessary for each service to function.

• Database and authentication infrastructure — stores your account, saves, and preferences.
• AI content processing — classifies and extracts structured data from your saves. Content is processed transiently and not retained for model training.
• Payment processing — handles subscription billing and invoices. Card details are never transmitted to us.
• Push notification delivery — routes notifications to your iOS or Android device via platform notification services.
• Affiliate and enrichment partners — used to generate relevant purchase or booking links for applicable saved content.
• Product analytics — records anonymised usage events to help us understand how the Service is used and where to improve it.
• Transactional email — delivers account-related emails such as welcome messages and billing confirmations.

4. Data Retention

We retain your account data and saved content for as long as your account is active.

When you request deletion of your account, we permanently and irreversibly delete all data associated with your account — including your saves, collections, preferences, device tokens, and billing records — from our systems and from all third-party processors immediately. This includes removing your billing profile from our payment processor and flagging your analytics profile for erasure under applicable data protection processes.

You can also delete all your saved content without closing your account at any time from Account Settings → Your data → Delete all saves.

5. Your Rights (GDPR / UK GDPR)

If you are located in the European Economic Area or the United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR):

• Right of access (Art. 15) — you can request a copy of all personal data we hold about you.
• Right to rectification (Art. 16) — you can correct inaccurate data directly in Account Settings, or contact us.
• Right to erasure (Art. 17) — you can permanently delete all your data and close your account from Account Settings → Your data → Delete account. Deletion is immediate and propagates to all systems and processors we use.
• Right to data portability (Art. 20) — you can export a complete archive of all your personal data (saves, collections, account details, billing records) at any time from Account Settings → Your data → Export all saves.
• Right to restriction of processing (Art. 18) — you may request that we restrict processing of your data in certain circumstances.
• Right to object (Art. 21) — you may object to processing based on legitimate interests.

Most of these rights can be exercised directly within the app without needing to contact us. For requests that cannot be fulfilled in-app, contact us at [email protected]. We will respond within 30 days.

6. Legal Basis for Processing (GDPR)

We process your personal data on the following legal bases:

• Contract (Art. 6(1)(b)) — processing necessary to provide the Service you signed up for, including storing saves, managing quotas, and processing payments.
• Legitimate interests (Art. 6(1)(f)) — product analytics to improve the Service, fraud prevention, and security.
• Consent (Art. 6(1)(a)) — push notifications, which you can withdraw at any time in device settings.

7. Cookies

The website and web dashboard use cookies and local storage solely to maintain your authentication session. We do not use tracking or advertising cookies.

8. Children's Privacy

The Service is not directed to children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the date above. Continued use of the Service after changes constitutes acceptance.

10. Contact & Data Controller

Omniteca is the data controller for personal data processed under this policy. For privacy-related requests, questions, or complaints: [email protected]

If you are located in the EEA and believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local supervisory authority.