Privacy Policy

A. Consumer Users

This policy governs data we collect from individuals who use the hello.food iOS application to receive dietary guidance, discover restaurants, evaluate menu items, plan meals, and interact with their dietary profile. This includes use of voice input, food vision scanning, Apple Health integration, Apple Watch companion, Oura Ring integration, Function Health integration, meal planning, recipe optimization, and AI-powered dietary evaluation.

B. Restaurant Owners and Operators

This policy governs data we collect from restaurants and their representatives who use the hello.food Owner Portal to submit, verify, and manage menu data. This includes email-based menu submissions, web portal uploads, and participation in our tiered KYC verification program.

A. From Consumers

B. From Restaurant Owners

C. System-Collected Restaurant Data

In addition to owner-submitted data, we operate an automated Menu Hunter system that discovers and collects publicly available menu information from restaurant websites, third-party platforms, and publicly accessible documents. This system operates within applicable legal frameworks governing publicly available web data. We do not scrape data from password-protected or access-restricted systems.

A. Consumer Data

• To operate the hello.food app and deliver personalized dietary guidance and restaurant recommendations;
• To evaluate menu items and restaurants against your Dietary Graph and produce safety verdicts;
• To power voice-first interaction, food recognition, and meal planning features;
• To sync data with connected health services you have authorized;
• To improve the accuracy of our dietary evaluation models;
• To communicate with you about your account, features, and service updates;
• To detect and prevent fraud, abuse, and security incidents; and
• To comply with applicable law.

B. Restaurant Owner Data

• To operate and manage the Owner Portal and menu management system;
• To publish your Menu Data to the hello.food platform and to authorized AI distribution channels;
• To verify your identity and business through our KYC process;
• To communicate with you about your portal account and menu status;
• To provide audit trails for all menu publication operations; and
• To comply with applicable law.

A. What We Share with Agentic Channels

When you use hello.food through an Agentic Channel, we may share:

• Structured restaurant and menu data relevant to your query; and
• Privacy-preserving dietary attestations.

We do not share your raw Dietary Graph with any Agentic Channel. We do not share your Apple Health data, Oura Ring data, Function Health data, or other raw health data with Agentic Channels.

B. Privacy-Preserving Claims Gateway

To enable personalized dietary guidance through Agentic Channels without exposing your sensitive dietary data, hello.food uses a Claims Gateway. The Claims Gateway generates signed attestations, cryptographic statements that confirm relevant dietary facts such as "this user avoids gluten" without disclosing the underlying data or your full Dietary Graph.

These attestations are derived from your on-device Dietary Graph and are transmitted as signed claims. Your raw dietary data never leaves our trusted backend infrastructure in an identifiable form in connection with Agentic Channel requests.

C. Zero-Knowledge Proof Methods (Planned)

hello.food intends to implement zero-knowledge proof cryptographic methods for sharing dietary context with foundation model partners. This will provide mathematical guarantees that dietary context can be verified without revealing the underlying data. We will update this Privacy Policy when this capability is deployed.

D. OAuth 2.0 Account Linking

When you link your hello.food account to an Agentic Channel such as ChatGPT or Claude, we use OAuth 2.0 to establish a secure, revocable authorization. You may disconnect any Agentic Channel at any time from within your hello.food account settings.

A. Service Providers

We may share information with trusted third-party service providers who assist us in operating our Services, subject to contractual data protection obligations. These include:

• Cloud infrastructure providers such as Render;
• Database and caching infrastructure;
• Email service providers such as Resend for transactional communications;
• LLM providers including OpenAI, Anthropic, and Google for dietary evaluation and menu extraction processing, acting on our behalf under their respective data processing agreements; and
• Menu extraction and web crawling service providers such as Firecrawl.

B. Agentic Channel Partners

As described in the AI Distribution section above, we share structured restaurant data and privacy-preserving dietary attestations with Agentic Channels you connect to. We do not share raw personal data.

C. Legal and Compliance

We may disclose information when required by law, legal process, or government request; to protect the rights, property, or safety of hello.food, our users, or the public; or to enforce our Terms and Conditions.

D. Business Transfers

If FRNTR, LLC is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.

A. California Residents (CCPA/CPRA)

California residents have the right to:

• Know what personal information we collect, use, disclose, and sell;
• Delete personal information we hold about you, subject to certain exceptions;
• Opt out of the sale or sharing of personal information. We do not sell personal information;
• Correct inaccurate personal information;
• Limit use of sensitive personal information; and
• Non-discrimination for exercising your privacy rights.

As a California-based company conducting our launch in the Fresno and Central Valley markets, we are committed to full CCPA and CPRA compliance. To exercise your rights, contact privacy@frntr.ai.

B. All Users

Regardless of location, all hello.food users may:

• Access or update your account information through the app;
• Disconnect third-party health integrations at any time;
• Revoke Agentic Channel connections at any time;
• Request a copy of your personal information; and
• Request deletion of your account and associated data.

C. Apple HealthKit Rights

HealthKit data permissions are managed by Apple. You may view and revoke app permissions at any time through Settings > Health > Data Access & Devices on your iPhone. Revoking HealthKit permissions does not affect data stored locally on your device by the Health app.

A. Owner-Submitted Menu Data

Menu Data submitted by verified restaurant owners through the Owner Portal is treated as proprietary business information. We publish this data to the hello.food platform and to authorized AI distribution channels in accordance with our Terms and Conditions. We do not sell owner-submitted Menu Data to third-party data brokers.

B. System-Collected Menu Data

Our Menu Hunter system collects publicly available menu information from restaurant websites and public sources. If you are a restaurant owner and wish to opt out of our system-collected menu data or claim ownership of your restaurant's menu representation, please contact restaurants@frntr.ai.

C. Deterministic Precedence

Our system applies a deterministic precedence hierarchy to all menu data: owner-verified data always takes priority over owner-provisional data, which takes priority over system-collected data. This means verified restaurant owners always control their menu representation on our platform.