This page explains what data FrostyPal collects, why, and what you can do about it. We try to keep the amount of personal data small on purpose — FrostyPal works just as well if it doesn’t know anything about you beyond a stable identifier.
Who controls your data
FrostyPal is operated by Haloceteki Studio (Luxembourg). For data protection questions, reach us at hello@frostypal.eu.
What we collect
Account data
When you sign in via the Haloceteki single-sign-on at auth.haloceteki.eu we receive your user identifier (a stable opaque string), your display name, and your email address. The email is used for invitation flows and account-related notifications only.
App data
Whatever you put into the app — fridges, items, expiration dates, shopping list entries, recipes, household memberships. This data is yours; we store it so we can render it back to you and any household members you’ve invited.
Push notifications
Notifications are delivered through our self-hosted ntfy.haloceteki.eu instance. To subscribe your device, we provision a per-user ntfy account on your first interaction with the notifications system and grant it read access to your personal topic and any household topics you’re a member of.
Telemetry
We log standard backend traffic for debugging and abuse prevention — request paths, response codes, timestamps, and your IP address. We don’t run product analytics, fingerprinting, or ad-tech SDKs.
Feedback you send
If you use the “Report a bug” or “Send feedback” buttons in the About screen, we receive the message, the optional name and email you typed, and basic context (app version, OS). Used only to triage the report.
What we don’t collect
- No third-party analytics (no Google Analytics, no Mixpanel, no Sentry-with-PII).
- No advertising identifiers; we don’t sell, share, or rent data to advertisers.
- No location data beyond the IP address that any web request carries.
- No contacts, calendar, or device-storage access beyond what the OS prompts you for explicitly (camera for barcode scanning, etc.).
Where data lives
Data is stored on Haloceteki Studio’s infrastructure hosted in the European Union (OVH, France). Encrypted backups are held by the same provider. We don’t transfer data outside the EU.
How long we keep it
Account data lives for as long as your account does. When you delete your account, we keep a soft-delete record for 30 days (in case of accidental deletion), then permanently delete it. Backups age out within 30 days.
Backend logs (request lines, IPs) are kept for 30 days, then rotated out.
Your rights
Under the GDPR you have the right to access, correct, export, and delete your data, plus the right to lodge a complaint with a data-protection authority. Most of these are available self-service from Settings → Account; for the rest, email us at hello@frostypal.eu and we’ll handle the request within 30 days.
Cookies and similar
The marketing site uses no analytics or advertising cookies. The app and the auth server use session cookies that are essential to keep you signed in — these don’t track you across sites and are dropped when you sign out.
Children
FrostyPal isn’t intended for children under 13. If you believe a child created an account, contact us and we’ll delete it.
Changes
If we make material changes to this policy we’ll update the “Last updated” date and notify signed-in users via an in-app banner before the change takes effect.