Privacy Notice

Last Updated: OCTOBER 15TH, 2025

DotThink Lab LLC (“we,” “us,” or “our”) respects your privacy. This Privacy Notice explains how our mobile applications—such as DotThink and Fridge2Meal (collectively referred to as “the App”)—collect, use, and share your personal information. By using the App, you agree to the terms outlined in this Privacy Notice.

1. Eligibility Requirements

User eligibility criteria, including geographic and age requirements, are outlined in the Terms of Use . By using the App, you confirm that you meet these requirements.

2. Information Collection, Processing and Storage

a. User Inputs and Responses

• Processing of Inputs and Responses: Your inputs are processed using our proprietary algorithms, which leverage OpenAI’s large language models as part of the overall process. The responses are displayed in the app.

• Data Storage: Both your inputs and the responses are stored either locally on your device or, if iCloud is enabled, in your private iCloud account via Apple’s CloudKit service. iCloud storage enables data synchronization between your Apple devices, such as iPhone and iPad. This data is not collected or retained by DotThink Lab LLC, other than anonymized, non-personally identifiable data described in Section 2(d).

b. API Credentials (DotThink App Only)

• Requirement for DotThink app: To use DotThink app, you must obtain API credentials—including API tokens, project IDs, and organization IDs—from OpenAI and register them within the app. These credentials are only required when using the DotThink app.

• Secure Storage: These credentials are stored securely on your device using Apple’s secure storage system and are not transmitted to or stored by DotThink Lab LLC.

• User Control: You may delete these credentials at any time through the DotThink app’s settings.

c. Account Authentication (Fridge2Meal App Only)

• Requirement for Fridge2Meal: To use the Fridge2Meal app, you are required to sign in using Sign in with Apple. During this process, we may receive your Apple-assigned user identifier and, if you choose, your email address (which may be a private relay address generated by Apple). These credentials are used solely for authentication and app functionality.

• Secure Handling: We do not store your sign-in credentials on our servers. Authentication is securely managed by Apple.

d. Anonymized Data Logging

• Types of Data: We may log limited anonymized, non-personally identifiable data about your use of the App. This includes, but is not limited to, operational data such as usage, request size, processing time, token usage, and image dimensions. We do not store the actual images you upload. For the Fridge2Meal app only, we may also log anonymized data including but not limited to the recipes and their usage.

• Purpose and Scope: This data is used solely for technical diagnostics, performance monitoring, analytics, service improvement, and abuse prevention. It is not linked to your personal inputs or identity and is not used for marketing or profiling purposes.

• Retention: Logged data is retained only as long as necessary for the purposes described above and is deleted in accordance with our data retention policies.

e. Device-Linked Data Logging

• Types of Data: For operational, authentication, and security purposes, we may collect device identifiers or other technical identifiers that could be linked to your user account.

• Purpose and Scope: This data is used solely to enable secure account access, detect abuse, and improve the reliability of our services. It is not used for marketing or profiling purposes.

• Retention and Deletion: Device-linked data is retained only as long as your account is active. If you delete your account in the App’s settings, all associated device-linked data will also be deleted, and you will be signed out.

f. Analytics and Usage Tracking

• Use of Google Analytics: We use Google Analytics to collect anonymized usage data such as app launches, subscription events, and feature interactions. This helps us understand general user behavior and improve app performance. You can learn more about how Google handles data at https://policies.google.com/privacy.

• Data Collected: The data collected may include device type, operating system version, app version, session duration, and generalized interaction patterns. No personal user inputs or AI-generated content is sent to Google Analytics.

• Anonymization and Control: IP addresses are anonymized, and no personally identifiable information is collected. Users cannot be directly identified through this data.

• Purpose: Analytics data is used solely to improve app functionality and understand engagement trends. It is never used for cross-app tracking or third-party advertising.

3. AI Processing

DotThink uses Artificial Intelligence (AI) powered by OpenAI and our proprietary algorithm to process user inputs and generate responses. All inputs are processed by these AI models, which operate based on advanced machine learning algorithms.

Limitations and Biases

DotThink may sometimes generate responses that are incomplete, biased, or otherwise inaccurate. We encourage users to independently verify critical information.

4. Data Storage on Your Device

• User Inputs and Responses: They are processed and stored locally on your device unless iCloud is enabled. If iCloud is enabled, your data is stored in Apple iCloud, which enables between-device syncing. We use Apple’s iCloud service via CloudKit to securely store and synchronize your data. 

• API Credentials: Stored on your device using Apple’s secure storage system to ensure safe authentication with OpenAI’s services. These credentials are not synced to iCloud.

• Data Deletion: You may delete user inputs and responses in two steps. First, use the app’s interface on each of your devices to delete all explorations. Ensure you have a stable internet connection and allow time for iCloud to sync these deletions across all devices. 

Second, to remove data stored in iCloud, use your device’s iCloud settings to locate the app’s storage and delete its data. The exact steps may vary depending on your iOS version or device model (e.g., via Settings > [Your Name] > iCloud > Storage > DotThink).

To delete AI credentials stored securely on each device, use Settings > AI Credentials > Remove within the app on each device.

5. Third-Party Data

DotThink interacts with the following third parties to provide services:

1. OpenAI: User inputs, including features or contextual data derived from user inputs, are shared with OpenAI for processing. OpenAI processes this data in accordance with its Privacy Policy. By using this app, you agree to OpenAI’s Privacy Policy.

2. Apple: We use anonymized and aggregated diagnostic and crash data provided by Apple to improve app performance and stability. Apple processes and shares this data in compliance with its Privacy Policy, which provides equivalent or higher protection for user data.

We confirm that any data shared with these third parties is handled in accordance with the protections required by Apple’s guidelines and this Privacy Notice. We do not share user data with any other third parties.

6. Training Data Transparency

Our AI systems are powered by AI models trained using training data to deliver high-quality responses.

• Sources of Training Data: The training datasets include manually curated data and publicly available datasets.

• Exclusion of Personal or Sensitive Data: We do not use any personal or sensitive data in the training of our models.

• Use of Anonymized Data: The App may use anonymized, non-personally identifiable usage data to improve models and enhance the user experience.

• Commitment to Transparency: For additional details about the datasets and training processes used in the development of AI models, please refer to OpenAI’s Privacy Policy.

7. Your Privacy Rights

As a user of DotThink, you have the following rights to manage your data and understand how it is used:

• Transparency: You have the right to know how your data is processed. This Privacy Notice provides details about what information is collected, how it is used, and with whom it is shared.

• Control Over API Credentials (DotThink App Only): In the DotThink app, you can change or delete your registered API credentials at any time through the app’s settings.

• Deleting Your Data: 

• User Inputs and Responses. Data generated through the App are stored locally on your device or, if iCloud is enabled, in your private iCloud account to support cross-device syncing. You can delete this data at any time by:

1. Using the App’s settings page to remove all saved explorations or individual entries on each of your devices. If iCloud is enabled, allow time for the deletions to sync across devices.

2. Uninstalling the app, which will delete all locally stored data from that device.

• Device-Linked Data. For operational and security purposes, we may store certain technical identifiers linked to your user account. If you delete your account through the App’s settings, all associated device-linked data will also be deleted promptly, and you will be signed out.

• Opt-Out of App Usage: If you do not agree with this Privacy Notice or OpenAI’s Privacy Policy, you may discontinue using DotThink at any time.

• Analytics Opt-Out: While we do not currently offer a manual opt-out for analytics, no personally identifiable information is collected, and all data is anonymized in accordance with industry best practices.

We encourage you to exercise these rights to ensure your data is managed according to your preferences.

8. Security of Your Information

We implement reasonable security measures to protect your data, including using secure storage on your device to safeguard sensitive credentials. However, no system can guarantee absolute security. We recommend safeguarding access to your device.

9. Children’s and Age-Restricted Privacy

DotThink is not intended for use by individuals under 21 years of age. If you are under 21, you are not authorized to use this app.

If you believe we have collected or processed data from individuals under 21, please notify us at privacy@dotthinklab.com. Upon verification, we will promptly delete such data.

10. Acceptance of OpenAI’s Privacy Policy

By using DotThink, you agree to OpenAI’s Privacy Policy and acknowledge that your inputs and credentials will be processed by OpenAI. If you do not agree, please refrain from using the app.

11. Changes to This Privacy Notice

We may update this Privacy Notice to reflect changes in our practices or legal requirements. Please review this notice regularly.

12. Contact Us

If you have questions or concerns about this Privacy Notice, please contact us via email at 

Email: privacy@dotthinklab.com.