Back

Privacy Policy

Last updated: April 17, 2026

PPantry is designed to be private by default. This policy explains exactly what data the app handles, where it lives, and what choices you have. Plain language, no tricks.

1. What PPantry is

PPantry is a local-first Progressive Web App for tracking emergency preparedness inventory — food, water, medical supplies, kits, and related items. It runs in your browser or as an installed PWA on your device.

2. What we collect by default: nothing

By default, all your data — items, locations, kits, household configuration, notes, photos — stays on your device in the browser's IndexedDB storage. No account, no signup, no network calls are required to use the core app.

3. Optional cloud sync

If you enable Cloud Sync in Settings, PPantry creates an anonymous account on our backend (Supabase) and copies your inventory data to your private cloud workspace so it can sync across your devices. Specifically:

  • The account is anonymous — no email, no password, no personally-identifiable information required.
  • Data is stored in Supabase (hosted on AWS). Access is restricted by row-level security so only you can read your own data.
  • You can disable sync and delete all cloud data at any time via Settings → Clear All Data.
  • If you share a household with other users via invite code, they can read and write to data you explicitly mark as shared.

4. Optional anonymous analytics

If you opt in via Settings → "Help Improve PPantry", we collect an aggregated, anonymous snapshot of your inventory once per day. You can preview exactly what gets shared before enabling.

What we share:

  • Aggregate item counts per category
  • Supply duration (days of food / water)
  • Kit readiness percentages
  • Expiration status counts
  • Household size and age brackets
  • Location type counts
  • Anonymous action counts (e.g. items added per category)
  • Subcategory distribution
  • Optionally your country, if you choose to share it

What we never share:

  • Your name or personal details
  • Specific item names or brands
  • Location names or addresses
  • Barcodes or photos
  • Notes or descriptions
  • Exact expiration dates

This data is used to understand aggregate trends and may be offered to commercial partners as market intelligence. It is never linked to you personally. You can disable analytics at any time in Settings.

5. Third parties

  • Supabase — storage and authentication for optional cloud sync. Subject to Supabase's privacy policy. Only used when sync is enabled.
  • Open Food Facts — when you scan a barcode, PPantry queries this open database to auto-fill product information. Only the barcode is sent; no personal data. Results are cached locally for 30 days.
  • Cloudflare Pages — hosts the app. Cloudflare may log standard HTTP access metadata (IP, user agent, timestamp) for security purposes.
  • Sentry — if enabled by the operator, captures uncaught errors and stack traces to help us fix bugs. Stack traces do not contain your inventory data.
  • Patreon — external link only. We do not share your data with Patreon; if you click through and sign up, their privacy policy applies.

6. Your rights

Under GDPR, CCPA, and similar regimes, you have the right to access, export, correct, or delete your data. Because PPantry is local-first, you already have direct control:

  • Access — all your data is visible in the app.
  • Export — Settings → Export (CSV or JSON).
  • Delete — Settings → Clear All Data wipes both the local database and your anonymous cloud account.
  • Opt out — disable Cloud Sync and/or Analytics at any time in Settings.

If you need anything beyond what the app provides, email us and we'll help.

7. Children

PPantry is not directed at children under 13 and does not knowingly collect data from them.

8. Security

Cloud-synced data is protected by row-level security at the database layer. Transport is HTTPS-only. Local data is subject to the security of your device and browser.

9. Changes to this policy

We'll update this page when the app's data handling changes. The "Last updated" date at the top reflects the current revision. Material changes will be announced in the app.

10. Contact

Questions, concerns, or data requests: [email protected]