Privacy Policy

We collect the following categories of data:

• Account information: your name, email address, and a hashed version of your password. We never store your password in plain text.
• Organisation data: your organisation name and the settings you configure.
• Formula data: formulas you upload or create, including ingredient names, amounts, versions, and production records.
• Usage data: pages visited, features used, and AI credit usage events. This data is used to operate and improve the Service.

We do not collect payment card details directly. Payments are handled by Stripe, who have their own privacy policy.

We use your data to:

• Provide and operate the Service
• Authenticate you and maintain your session
• Send transactional emails (password resets, team invitations)
• Improve the product based on aggregate usage patterns
• Enforce plan limits and track AI credit usage

We do not use your data for advertising or sell it to any third party.

• We never sell your personal data or formula data to third parties
• We never use your formula data to train AI models. Your formulations are sent to Anthropic's API only to service your specific requests (substitute suggestions, formula parsing), and only under our agreement with Anthropic which prohibits training on customer data
• We do not share your data with any third party except as listed below

Third parties we use to operate the Service:

• Neon (database hosting, United States)
• Resend (transactional email delivery)
• Anthropic (AI features: formula parsing and substitute matching)
• Vercel (hosting and infrastructure)

Each of these providers is contractually bound to protect your data and process it only as directed by us.

Your data is retained for as long as your account is active. If you delete your account, all associated data (formulas, production records, inventory) is permanently deleted within 30 days.

We may retain anonymised, aggregate usage statistics after account deletion. These contain no personally identifiable information.

All data is encrypted in transit using TLS and encrypted at rest on our database infrastructure. Passwords are hashed using scrypt before storage and are never logged or stored in plain text.

We apply the principle of least privilege: team members within your organisation can only access the data your account grants them access to. We cannot access your formula data without impersonating your account (a logged action in our audit trail).

You have the right to:

• Access all data we hold about you by requesting a data export from Settings
• Correct inaccurate personal information from your account settings
• Delete your account and all associated data by contacting us
• Object to or restrict processing of your data in certain circumstances

To exercise any of these rights, contact us at contact@formulary.app.

We use a single session cookie to authenticate you when you log in. This cookie is httpOnly and is not accessible to JavaScript. We do not use tracking cookies, analytics cookies, or any third-party cookies.

You can disable cookies in your browser settings, but doing so will prevent you from logging in to the Service.

Questions about this privacy policy or requests to exercise your data rights should be sent to contact@formulary.app.