← Back to Menli

Privacy Policy

Menli.app — Family Meal Planner

Effective Date: March 11, 2026 · Last Updated: March 11, 2026

Plerosai Entities LLC, d/b/a Menli.app ("we," "us," or "our"), operates the Menli.app web application (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Service. By accessing or using Menli.app, you agree to this Privacy Policy. If you do not agree, please discontinue use of the Service.

We are based in Texas, United States, and this policy is governed by Texas and United States federal law, with additional provisions for users protected under the European Union's General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

This Privacy Policy is incorporated into and forms part of our Terms of Service. Capitalized terms not defined here have the meanings given in the Terms of Service.

1. Information We Collect

1.1 Information You Provide Directly

When you register, join a family, or use the Service, we may collect:

  • Account information: email address and password (for family administrators), display name (for all family members).
  • Family information: family name, invite codes used or generated.
  • Content you create: recipes, meal plans, grocery lists, and any associated notes or preferences.
  • AI Chat data: messages and prompts you submit to the AI Chat feature, including questions about recipes, meal planning, cooking techniques, ingredient substitutions, grocery optimization, and nutritional information.

1.2 Information Collected Automatically

When you access or use the Service, we automatically collect certain information, including:

  • Usage data: pages viewed, features used, actions taken within the app (e.g., recipes added, meal plans created), timestamps, and session duration.
  • Device and browser data: device type, operating system, browser type and version, screen resolution, and language preferences.
  • Log data: IP address, access times, referring URLs, and error logs.
  • Cookies and similar technologies: we use cookies, local storage, and similar tracking technologies to maintain sessions, remember preferences, and collect analytics. See Section 7 for details.

1.3 Information from Third-Party Services

We may receive information from third-party services integrated with Menli.app, including:

  • Recipe data providers: recipe metadata retrieved when you import a recipe by URL.
  • Payment processors: transaction confirmations, subscription status, and billing identifiers (we do not receive or store your full credit card number).
  • Analytics providers: aggregated and pseudonymized usage data.
  • AI model providers: we use third-party artificial intelligence services to power the AI Chat feature. When you use AI Chat, the content of your messages is transmitted to one or more third-party AI model providers for processing. These providers may change over time. AI model providers process your messages to generate responses and may retain data in accordance with their own privacy policies and our data processing agreements with them. We require our AI providers to process your data solely for the purpose of providing responses within the Service and not to use your data for training their models, except where explicitly permitted by their terms and disclosed here.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing the Service: creating and managing your account, enabling family collaboration, generating meal plans and grocery lists, processing recipe imports, and powering AI Chat responses.
  • Processing payments: managing your subscription, processing billing through our third-party payment processor, and communicating about your account status.
  • Improving the Service: analyzing usage patterns to identify bugs, improve features, and develop new functionality.
  • Communications: sending transactional emails (account verification, password resets, subscription confirmations) and, with your consent, optional product updates or tips.
  • Security and fraud prevention: detecting and preventing unauthorized access, abuse, or fraudulent activity.
  • Legal compliance: fulfilling our obligations under applicable law.

3. Legal Bases for Processing (GDPR Users)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on the following legal bases under the GDPR to process your personal data:

  • Performance of a contract: processing necessary to provide the Service you have subscribed to (Article 6(1)(b)).
  • Legitimate interests: processing for analytics, security, and Service improvement, where our interests do not override your rights (Article 6(1)(f)).
  • Consent: processing based on your explicit consent, such as optional marketing communications or non-essential cookies (Article 6(1)(a)). You may withdraw consent at any time.
  • Legal obligation: processing required to comply with applicable laws (Article 6(1)(c)).

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following limited circumstances:

  • Within your family group: your display name, recipes, and meal plan contributions are visible to other members of your family group within Menli.app.
  • Service providers: we share information with third-party vendors who perform services on our behalf, including payment processing, hosting, and analytics. These providers are contractually obligated to use your data only as directed by us and in accordance with this policy.
  • AI model providers: when you use the AI Chat feature, the content of your chat messages is transmitted to third-party AI model providers to generate responses. We may use more than one AI provider and may change providers over time. These providers are bound by data processing agreements that restrict how they may use your data. We do not share your account credentials, payment information, or other personal identifiers with AI providers beyond what is included in your chat messages.
  • Legal requirements: we may disclose your information if required by law, regulation, legal process, or governmental request, or if we believe disclosure is necessary to protect the rights, property, or safety of Menli.app, our users, or the public.
  • Business transfers: in the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. Specifically:

  • Account and profile data: retained until you delete your account or request deletion.
  • Recipes, meal plans, and grocery lists: retained until you delete them or your account is closed.
  • AI Chat history: your chat conversations are stored on our servers and retained until you delete them or your account is closed. You may delete individual conversations or your entire chat history at any time through the Service. Note that messages already transmitted to third-party AI providers may be retained by those providers for a limited period in accordance with their data processing agreements, typically no longer than 30 days.
  • Usage and analytics data: retained in identifiable form for up to 24 months, after which it is aggregated or deleted.
  • Payment records: retained as required by applicable tax and financial regulations (typically up to 7 years).

After deletion, residual copies may persist in backups for up to 30 days before being permanently removed.

6. Your Rights

6.1 All Users

Regardless of your location, you may:

  • Access, update, or correct your account information through your account settings.
  • Delete your account by contacting us (see Section 12), which will result in deletion of your personal data subject to retention requirements.
  • Opt out of non-essential communications by following the unsubscribe instructions in any marketing email.

6.2 GDPR Rights (EEA, UK, and Switzerland Users)

If you are located in the EEA, UK, or Switzerland, you have additional rights under the GDPR, including the right to:

  • Access your personal data and receive a copy.
  • Rectification of inaccurate or incomplete data.
  • Erasure ("right to be forgotten") of your personal data, subject to legal exceptions.
  • Restrict processing in certain circumstances.
  • Data portability — receive your data in a structured, commonly used, machine-readable format. We will fulfill data portability requests within 30 days.
  • Object to processing based on legitimate interests.
  • Withdraw consent at any time where processing is based on consent.
  • Lodge a complaint with your local data protection authority.

Automated decision-making and AI: The AI Chat feature uses automated processing to generate responses to your queries. These responses are informational and do not constitute decisions that produce legal effects or similarly significant effects on you. You are not subject to decisions based solely on automated processing within the meaning of GDPR Article 22. If you have concerns about AI-generated content, you may contact us at any time.

To exercise these rights, contact us at the address in Section 12. We will respond within 30 days (or the timeframe required by applicable law).

6.3 CCPA Rights (California Residents)

If you are a California resident, you have additional rights under the CCPA, including the right to:

  • Know what personal information we collect, use, disclose, and sell (we do not sell personal information).
  • Delete your personal information, subject to certain exceptions.
  • Opt out of the sale of personal information (not applicable, as we do not sell your data).
  • Non-discrimination — we will not discriminate against you for exercising your CCPA rights.

Categories of personal information collected in the preceding 12 months: identifiers (name, email, IP address), internet or electronic network activity (usage data, device info), commercial information (subscription and payment data), and inferences drawn from AI Chat interactions (conversation content and context).

Categories of personal information disclosed for a business purpose: identifiers and internet activity data shared with service providers (hosting, analytics, payment processing), and AI Chat message content shared with AI model providers for response generation.

To exercise your CCPA rights, contact us at the address in Section 12. We will verify your identity before processing your request and respond within 45 days.

7. Cookies and Tracking Technologies

We use the following types of cookies and similar technologies:

  • Essential cookies: required for authentication, session management, and core functionality. These cannot be disabled.
  • Analytics cookies: help us understand how the Service is used. We use these to measure engagement and identify areas for improvement.
  • Preference cookies: remember your settings, such as display preferences.

You can manage cookie preferences through your browser settings. Disabling essential cookies may prevent you from using the Service. For GDPR-covered users, non-essential cookies are only placed with your consent.

8. International Data Transfers

Menli.app is hosted in the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States, where data protection laws may differ from those in your jurisdiction.

For transfers of personal data from the EEA, UK, or Switzerland to the United States, we rely on appropriate safeguards, including Standard Contractual Clauses approved by the European Commission or other legally recognized mechanisms.

9. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your personal information, including encryption of data in transit (TLS/HTTPS), secure password hashing, and access controls limiting who can access personal data.

No method of transmission over the internet or electronic storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

10. Children's Privacy

Menli.app is not directed to children under 16. We do not knowingly collect personal information from children under 16. If you believe a child under 16 has provided us with personal information, please contact us and we will promptly delete that information.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by posting the updated policy on the Service and updating the "Last Updated" date above. For material changes, we will also provide notice through the Service or via email. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy, wish to exercise your data rights, or have concerns about how your data is handled, please contact us at:

Plerosai Entities LLC, d/b/a Menli.app Email: support@menli.app State of Texas, United States

For GDPR-related inquiries, you may also contact your local data protection authority.

Also see our Terms of Service.