Back to home

Privacy Policy

Last updated: 23 January 2026

Introduction

Welcome to Fullish ("we", "our", "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application ("App").

Contact: support@fullish.app

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the App.

Information We Collect

1. Personal Information You Provide

When you register for an account, we collect:

  • Email address — For account creation, authentication, and communications
  • Display name — For personalisation and household identification
  • Password — For account security (stored securely hashed)

2. Household and Shopping Data

When you use the App, we collect:

  • Shopping lists — Core functionality
  • Items and quantities — Core functionality and smart suggestions
  • Check-off events — Consumption pattern analysis
  • Receipt images — Item extraction and price tracking (with consent)
  • Food waste logs — Waste tracking and savings calculations (with consent)
  • Meal plans and recipes — Meal planning feature

3. Loyalty Card Information

If you choose to store loyalty cards, we collect card names, barcode data, and savings records. We do not access your loyalty card accounts or points balances through retailer APIs.

4. Location Data

If you enable store alerts, we collect saved store locations and device location for proximity alerts. Location data is processed on-device for geofencing. We do not track your movements or store location history beyond saved store locations.

You can disable location features at any time in your device settings.

5. Device and Usage Information

We automatically collect device type, OS version, app version, crash reports, and feature usage analytics for app compatibility, debugging, and product improvement.

How We Use Your Information

  1. Provide core services — Manage your account, shopping lists, and household
  2. Enable smart features — Generate consumption patterns, smart suggestions, and insights
  3. Process receipts — Extract items and prices using AI
  4. Send notifications — Shopping reminders, store alerts (with your permission)
  5. Improve the App — Analyse usage patterns, fix bugs, develop new features
  6. Communicate with you — Respond to support requests, send service updates
  7. Comply with legal obligations — Respond to lawful requests from authorities

AI Processing

We use artificial intelligence services to provide certain features:

Receipt Scanning

Receipt images are sent to Anthropic (Claude AI) for text extraction. Images are processed in real-time and not stored by Anthropic beyond processing.

Pantry Scanning

Photos of your fridge/pantry are sent to Anthropic (Claude AI) for item identification. Images are processed in real-time and not stored beyond processing.

Shopping Assistant

Your questions and shopping list context are sent to Anthropic (Claude AI). Conversations are not stored beyond the session.

For more information on Anthropic's data practices, see: anthropic.com/privacy

Data Sharing and Disclosure

Service Providers

We share data with trusted third-party service providers:

  • Supabase — Database and authentication
  • Anthropic — AI processing
  • Sentry — Crash reporting
  • Expo — Push notifications

Household Members

When you join a household, other household members can see shopping lists and items, shared recipes and meal plans, loyalty cards (if sharing enabled), and aggregated household insights.

Legal Requirements

We may disclose your information if required by law or in response to court orders, requests from law enforcement, or to protect our rights or safety.

Data Retention

  • Account data — Until account deletion
  • Shopping lists — Until deleted by user or account deletion
  • Purchase history — 2 years (for pattern analysis)
  • Receipt images — Not stored (processed and discarded)
  • Crash reports — 90 days
  • Deleted account data — 30 days (then permanently deleted)

Your Rights (GDPR)

Under UK/EU data protection law, you have the right to:

  • Access — Request a copy of your personal data. You can export your data from Settings > Export Data.
  • Rectification — Correct inaccurate personal data via your profile in the App.
  • Erasure — Request deletion via Settings > Delete Account.
  • Restriction — Request we limit processing in certain circumstances.
  • Portability — Receive your data in a structured, machine-readable format.
  • Object — Object to processing based on legitimate interests.
  • Withdraw Consent — Withdraw consent at any time for consent-based processing.

To exercise these rights, contact us at support@fullish.app. We will respond within 30 days.

Data Security

We implement appropriate technical and organisational measures to protect your data:

  • Encryption in transit — All data transmitted using TLS/HTTPS
  • Encryption at rest — Database encryption via Supabase
  • Secure authentication — Passwords hashed using bcrypt
  • Row-level security — Database policies ensure users only access their own data
  • Access controls — Limited employee access to production data

Children's Privacy

The App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

International Data Transfers

Your data may be transferred to and processed in countries outside the UK/EEA, including the United States (Supabase, Anthropic, Sentry infrastructure). We ensure appropriate safeguards are in place, including standard contractual clauses and adequacy decisions.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new Privacy Policy in the App, updating the "Last Updated" date, and sending an email notification for significant changes.

Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Email: support@fullish.app

For complaints, you may also contact the UK Information Commissioner's Office (ICO) at ico.org.uk or phone 0303 123 1113.

This Privacy Policy was last updated on 23 January 2026.