Bezra ("we," "our," or "us") is committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, who we share it with, and the rights you have over it. It applies to all users of the Bezra web application (the "Service") and is governed by applicable United States federal and state privacy law, including the California Consumer Privacy Act (CCPA), the Children's Online Privacy Protection Act (COPPA), and the CAN-SPAM Act where relevant.
We do not collect payment card numbers, Social Security numbers, government IDs, precise GPS coordinates, or any biometric identifiers.
We do not use your data for targeted advertising and we do not sell your personal information.
When you scan food, upload a receipt, or request recipe suggestions, images, text, and contextual data are transmitted to Anthropic, PBC via its Claude API for AI inference. Anthropic processes this data subject to its own Privacy Policy and API usage policies. We do not store raw images on our servers after the API call completes.
Your account and inventory data are stored in a hosted PostgreSQL database (Supabase). Data is encrypted at rest and in transit (TLS 1.2+).
The Service is hosted on Vercel, Inc. Standard infrastructure logs may be retained by Vercel per their data processing terms.
We may disclose personal information if required by law, subpoena, or court order, or to protect the rights and safety of Bezra, its users, or the public.
We do not sell, rent, or trade your personal information to any third party for marketing purposes.
We retain your account and inventory data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law or legitimate security purposes (e.g., server logs).
We implement reasonable administrative, technical, and physical safeguards, including TLS encryption in transit, bcrypt password hashing, HTTP-only session cookies, and server-side input sanitization. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.
The Service is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us immediately at reggymarticus@aol.com and we will delete it promptly.
You may access, correct, or delete your personal data at any time through your account settings or by contacting us.
If you are a California resident, you have the right to:
To submit a verifiable consumer request, contact us at reggymarticus@aol.com. We will respond within 45 days as required by law.
Residents of Virginia (CDPA), Colorado (CPA), Connecticut (CTDPA), and other states with comprehensive privacy laws have similar rights to access, correct, delete, and port their data. Contact us to exercise these rights.
If you opt in to push notifications, your browser generates a subscription object (endpoint URL and cryptographic keys) that we store to deliver alerts. You can revoke notification permission at any time in your browser settings or within theBezra Settings page, which will stop further notifications. Revoking permission does not delete your account or inventory data.
We use one HTTP-only, Secure session cookie strictly necessary to authenticate you. We do not use tracking cookies, advertising cookies, or third-party analytics. The Service also uses browser localStorage solely to track which alert notifications you have already seen, preventing duplicate alerts.
We may update this Privacy Policy from time to time. When we do, we will revise the "Effective date" at the top. Continued use of the Service after changes are posted constitutes your acceptance of the revised policy. For material changes, we will make reasonable efforts to notify you (e.g., via an in-app notice).
For privacy questions, requests to exercise your rights, or to report a concern:
Bezra
Email: reggymarticus@aol.com