Privacy Policy

Last updated: May 7, 2026 · Plento Pasto LLC, Illinois, US

This policy explains what Plento Pasto collects, what we do with it, and what we don't do with it. We've written it in plain English on purpose. If anything here is unclear, email hello@plentopasto.com and a real human will answer.

Who we are

Plento Pasto LLC is an Illinois-registered limited liability company building a meal-planning app for the everyday family. The website at plentopasto.com is operated by us. The "we," "us," and "our" in this policy means Plento Pasto LLC.

What we collect

Right now (presale stage), we collect very little. Specifically:

• Email address — if you join the waitlist or subscribe to build updates.
• Payment information — if you reserve a Founding Family spot, payment is processed by Stripe. We see your name and email and the receipt; we never see or store your card number, expiration date, or CVV.
• Aggregate, privacy-respecting analytics — page views and country-level location, gathered by Cloudflare Web Analytics. No cookies, no cross-site tracking, no individual fingerprinting.

When the app launches in 2027, we will collect data needed to make it work: household preferences, dietary restrictions, budget settings, and (for AI Kitchen Scan) photos of your fridge and pantry. Photos for AI Kitchen Scan are processed on your device wherever technically possible and are not retained on our servers after a plan is generated. We will publish a more detailed app privacy policy before beta opens.

What we do with it

• Email — to send you the updates you signed up for, and (if you're a Founding Family member) your receipt and beta invitation. That's it. You can unsubscribe at any time using the link at the bottom of any email.
• Payment information — to process your Founding Family payment, send you a receipt, and (when beta opens) match you to your account.
• Analytics — to know whether the site is working. Did people find it? Which pages did they read? It tells us nothing about you specifically.

What we will never do

• Sell your data. Not to ad networks, not to data brokers, not to anyone. Your information is not a revenue stream for us.
• Run ads in the app or on this site. Working families are advertised at constantly by takeout services, fast-food chains, and BNPL companies. We refuse to be one of them.
• Track you across the web. No third-party advertising cookies, no Facebook Pixel, no Google Ads tracking, no remarketing.
• Sell or share your fridge photos. When AI Kitchen Scan launches, the photos are processed on-device wherever possible. They are never used to train third-party AI models, never sold, and never shared.

Third parties we use

To run the business we rely on a small set of trusted vendors. These companies process limited data on our behalf:

• Stripe — payment processing for Founding Family checkout and (eventually) Plus subscriptions. Stripe is PCI-DSS Level 1 certified and handles all card data directly. Their policy: stripe.com/privacy.
• Resend — sends transactional and update emails on our behalf. Their policy: resend.com/legal/privacy-policy.
• Cloudflare — hosts this website and its associated services, and provides privacy-respecting analytics. Their policy: cloudflare.com/privacypolicy.
• Auth0 (Okta) — when the app launches, login is managed by Auth0. Their policy: okta.com/privacy-policy.
• Instacart (when you check out groceries) — when you choose to send a shopping list to Instacart for fulfillment, Instacart processes your order under their own policy: instacart.com/privacy. We never see your Instacart account credentials or payment method.

Your rights

You can ask us, at any time, to:

• See what we have on you. Email hello@plentopasto.com and we'll send you a copy within 30 days.
• Correct it if anything's wrong.
• Delete it entirely. We'll honor the request unless we're legally required to keep it (for example, payment receipts for tax purposes — but even then we'll delete what we can).
• Unsubscribe from any of our emails using the link at the bottom of every message.

If you live in California (CCPA / CPRA), the European Union (GDPR), or another jurisdiction with specific privacy rights, the rights above apply to you and we'll honor any additional rights your local law requires.

Children

Plento Pasto is for adults running households. We do not knowingly collect personal information from anyone under 13. If you believe a child under 13 has signed up, please contact us and we'll delete the account.

Security

We follow standard practices to protect your information: TLS encryption everywhere, no plaintext credentials, scoped API keys, no user data in logs. No system is perfect, but we treat security as a first-class concern, not an afterthought.

Changes to this policy

If we materially change this policy — for example, when the app launches and we start collecting more data — we'll update the "last updated" date at the top, and email everyone on our list with a plain-English summary of what changed. We won't make material changes retroactively.

Contact

Questions, concerns, or requests: hello@plentopasto.com.

Plento. Pasto. Grazie mille.