Tanin

Last updated · May 2026

Privacy.

Plain version: we collect the minimum we need to run the app, store it in Europe, and never sell it. Full version below.

Who we are

Tanin is operated by Mathwares B.V., registered in Utrecht, the Netherlands. For any privacy question, write to privacy@gettanin.app. We respond within 30 days, as GDPR requires.

What we collect — and why

Account data. Email address (always), display name (if you set one), and Apple Sign-In identifier (if you use it). We need this to give you an account and let you log back in. Legal basis: contract.

Profile data. The macro targets, allergens, and dietary preferences you set yourself. The planner needs this to build your week. Legal basis: contract.

Meals and meal plans. The meals you add to your library, the plans the engine generates, and the meals you mark as consumed. We store these so the app works across devices. Legal basis: contract.

Waitlist email. If you join the waitlist on this site, we send your email to our newsletter provider (Beehiiv, see below) so we can email you when early access opens. Legal basis: consent — you opt in by submitting the form.

Anonymous analytics. We use Plausible to count page views and where they come from. No cookies, no cross-site tracking, no IP storage. The cookie banner asks you anyway because EU law requires the choice. Legal basis: consent.

What we don't collect. No advertising identifiers. No behavioural profiles. No third-party trackers. No location data. No health data beyond what you type into the app yourself.

Where it lives

All app data lives in PostgreSQL on Railway, EU region (Frankfurt). Backups are encrypted at rest in the same region. We do not move your data outside the EU.

Who else touches your data (data processors)

We use a small number of vendors to run the service. Each one has a signed Data Processing Agreement and (where relevant) Standard Contractual Clauses for any transfer outside the EEA.

  • Railway — application hosting and database, EU region.
  • Beehiiv — waitlist newsletter (US-based; SCCs in place). Only your email address and the UTM campaign tag are shared.
  • Plausible — anonymous analytics (EU-based, Germany).
  • Anthropic + OpenAI — used to extract ingredients and nutrition values when you add a new meal. We send only the meal name and the ingredient text you type. We do not send your email, profile, or any identifier. Per Anthropic and OpenAI's enterprise terms, inputs are not used to train their models.
  • Apple — Apple Sign-In and App Store payments follow Apple's standard developer terms.

How long we keep it

Account, profile, meals, plans. For as long as your account is active. When you delete your account in the app, everything is removed within 30 days. The 30-day window is a grace period in case the deletion was accidental — email us during that window to restore.

Waitlist email. Until you unsubscribe (one click in every email).

Anonymous analytics. Aggregated counts only — no individual records to expire.

Backups. Rolling 30-day window in EU region, then deleted.

Your rights

Under GDPR you have the right to access, correct, export, restrict, object to, or delete the data we hold on you. You can also withdraw any consent you've given at any time, without affecting the validity of processing that happened before.

Email privacy@gettanin.app and we'll respond within 30 days. For data export, the app also provides a one-tap CSV export from your library and plan history.

If you believe we've mishandled your data and we can't resolve it, you have the right to lodge a complaint with the Dutch DPA (Autoriteit Persoonsgegevens) or your local supervisory authority.

Cookies

The website uses one functional cookie to remember your cookie- banner choice itself (`tanin-consent-v1`). Plausible analytics loads only after you accept analytics — it is cookie-less. No marketing or third-party trackers are loaded at any time.

Children

Tanin is not intended for users under 16. If we learn we have collected data from a child under 16 without a parent's consent, we will delete it.

Changes to this policy

If we change anything material, we will email everyone on the waitlist and every active user at least 30 days before the new policy takes effect.