Privacy Policy

How OnRotation handles your information

Last updated: 2026-03-24

This Privacy Policy explains what information OnRotation collects, how we use it, and the choices you have. It is intended to reflect the current functionality of the app, but you should have legal counsel review the final policy before publishing.

Information We Collect

  • Account information: your email address, used for passwordless login (magic links).
  • Household and member information: household name and the emails of invited members.
  • Meal planning content: meals you create, plan entries for each day, and your shopping list data (scoped to your household).
  • Notification data:
    • Push tokens for sending reminders (FCM for Android).
    • Browser Web Push subscription details (endpoint, encryption fields) when you enable web push reminders.
  • Contact and feedback:
    • The public contact form collects name, email, and message. We validate inputs for format and do not persist this information in our database; it is sent to our internal notification workflow.
    • In-app feedback collects a subject (optional) and message. Feedback is sent to our internal notification workflow.
  • Analytics and error reporting:
    • We may use Simple Analytics to understand usage patterns. The script is configured to respect Do Not Track (DNT) in the browser.
    • If enabled, we may use Sentry to report application errors.

How We Use Your Information

  • To provide and maintain the app (meal library, weekly plans, and shopping list features).
  • To manage households and invites.
  • To send login emails (magic links).
  • To send reminders and notifications using push services you enable.
  • To respond to contact form submissions and handle feedback.
  • To analyze usage and improve the service, and to monitor errors where enabled.

Third-Party Services

  • Email delivery: login and invitation emails are sent via our configured email provider.
  • Internal notifications: contact form submissions and in-app feedback may be forwarded to our internal notification workflow (for example, via a webhook).
  • Push notifications:
    • FCM (Firebase Cloud Messaging) for Android push reminders.
    • Web Push for browser reminders using subscription details you provide.
  • Analytics and monitoring: Simple Analytics (when enabled), and Sentry (when configured).
  • Fonts: we load fonts from Google Fonts in the web app.

Data Storage and Security

We use commercially reasonable administrative, technical, and physical safeguards designed to protect personal information. We cannot guarantee absolute security, but we take steps to reduce risk.

Your Choices and Rights

  • Access, correction, or deletion: you may request access to or correction of information we hold about you.
  • Notification preferences: you can update notification preferences in the app and remove push subscriptions where supported.
  • Analytics: you can control tracking preferences in your browser (including DNT where supported).

Contact Us

If you have questions about this policy, please use our contact form: Contact.