Effective Date: 1st May  2026
 
1. Introduction
 
This Privacy Policy explains how Tanit House Ltd ("we", "us", "our") collects, uses, stores, shares, transfers, and protects your personal data when you access or use the Sauce.it mobile application, website, and related services (the “Services”).

This Privacy Policy also explains your privacy rights, the choices available to you, and how applicable data protection laws may apply depending on your location.


We are a company registered in the United Kingdom and act as the data controller for personal data collected through the Services, except where another party is clearly identified as the controller.


We may update this Privacy Policy from time to time in accordance with Section 12.


If you have any questions about this Privacy Policy or your personal data, you can contact us at:

Email: info@tanithouse.co.uk


2. Information We Collect

A. Information You Provide to Us

When you create an account or use the Services, you may provide us with:

* Name
* Username
Email address (where shared with us through Sign in with Apple) or an anonymised/private relay email address provided through Apple
* Profile photo
* Short biography or profile description
* Content you create, upload, or share through the app, including videos, photos, text, and audio

Additional content-related information may include saved drafts, timestamps, file size, file type, and user-selected tags associated with uploaded content.


B. Information We Receive from Apple Sign In

When you register or log in using Sign in with Apple, we may receive information from Apple necessary to authenticate your account and provide access to the Services.


This may include a unique Apple user identifier, your Apple relay email address (where enabled), and any other account information that Apple makes available to us based on your settings and permissions.


We use this information to create and manage your account, authenticate logins, maintain account security, communicate with you where necessary, and provide the Services.


We do not control the information Apple shares with us. Your use of Sign in with Apple is also subject to Apple’s own terms and privacy practices.


C. Location Information

We may collect limited location information such as your country or region based on your device settings, IP address, account information, or similar signals. We do not currently collect precise GPS location data.

D. Automatically Collected Information


When you use the Services, we may automatically collect, generate, infer, or receive certain technical, diagnostic, and usage information from your device, operating system, the app, integrated SDKs, and our systems.


This may include:


●       device type
●       operating system
●       app version
●       IP address
●       device identifiers
●       app activity and feature interactions
●       session information
●       performance metrics
●       crash reports
●       diagnostics logs
●       technical events and error data

The specific information collected may vary depending on your device, operating system, app version, permissions, settings, enabled features, third-party SDKs, and how you use the Services.

E. Analytics and Measurement Information


We use analytics, diagnostics, and measurement tools to understand how users interact with the Services, improve performance, identify issues, and support product development.


This may include:

●       Firebase and Google Analytics 4, which help us understand usage patterns, engagement, and app performance
●       Sentry, which is used for error tracking and may collect technical information such as device data, usage context, and IP address when an error occurs

We may also use Amazon Web Services (AWS) infrastructure, including services such as databases (RDS) and email delivery (SES), which may process personal data such as account information and email addresses in order to operate the Services.

We may introduce additional analytics, attribution, or marketing measurement providers (such as AppsFlyer or similar services) in the future to support growth, performance measurement, and user acquisition.


F. Public Content and Profile Information

Your username, profile information, collections, activity signals (such as likes or follows where visible), and content you upload or share through the Services may be visible to other users by default when posted publicly.


Content made public through the Services may be viewed, saved, shared, reposted, or interacted with by other users or third parties using available platform features or external tools.


If you delete content or your account, copies of public content may remain visible where it has been shared by others, stored in backups, cached by third parties, or retained for legal, safety, or enforcement reasons.


No profile privacy toggle is currently available.

G. Device Permissions

With your permission, Sauce.it may request access to certain features of your device in order to provide the Services, including:

* Photo Library / Media Library – to allow you to select and upload photos or videos
* Camera – to capture photos or record videos within the app
* Microphone – to record audio or video with sound
* Notifications – to send alerts, updates, and other app-related messages
* Files / Documents – to allow you to select and upload supported files or media stored on your device

You can manage or withdraw these permissions at any time through your device settings. If you disable certain permissions, some features of the Services may not function properly.


3. How We Use Your Information

We use your personal data for the following purposes:

A. To Provide and Operate the Services

We use your information to create and manage accounts, authenticate users, enable content creation and sharing, provide search functionality, and operate the core features of Sauce.it.

B. To Personalise Your Experience

We may use information about your activity, preferences, interactions, saved content, follows, engagement signals, device information, and usage patterns to personalise your experience within the Services.


This may include recommending creators, recipes, collections, or other content, ranking and organising feeds or search results, improving discovery, tailoring features, and helping surface content that may be more relevant to you.


We may also use automated systems, machine learning, artificial intelligence, testing, and analytics tools to improve recommendations, moderation, safety systems, product performance, and user experience.


Where required by applicable law, we will provide any required notices, controls, or choices in relation to automated processing.

C. Social Features

We may use your information to enable social features such as following users, displaying public profiles, and helping users discover relevant content and creators.

D. Notifications and Communications

We may send you service-related messages and notifications, including account updates, product announcements, upload confirmations, new content alerts, and other relevant activity notifications.

Where permitted by law, we may also send marketing communications about new features, promotions, or updates. You can opt out of marketing communications at any time.

E. Safety, Security, and Moderation

We use information to detect, investigate, and address misuse of the Services, enforce our terms and policies, review reported content or accounts, and protect users and the platform.

Some moderation processes may be carried out manually and may in future be supported by automated tools or artificial intelligence systems.

We may review user-generated content where required to enforce our policies, investigate reports, maintain platform safety, or comply with legal obligations.

F. Analytics, Improvement, and Support

We use data to analyse usage trends, improve features, develop new functionality, troubleshoot technical issues, fix bugs, and provide customer support.

G. Legal and Compliance Purposes

We may use personal data where necessary to:


●       comply with applicable laws, regulations, court orders, or lawful requests from public authorities
●       detect, prevent, investigate, or address fraud, abuse, security incidents, or unlawful activity
●       enforce our Terms, policies, and other legal rights
●       establish, exercise, or defend legal claims
●       protect the rights, safety, property, users, personnel, or integrity of the Services




4. Legal Basis for Processing

Where applicable under data protection law, we rely on the following legal bases to process your personal data:

A. Performance of a Contract

We process personal data where necessary to provide the Services you request, including creating your account, authenticating users, enabling content sharing, providing platform features, and delivering customer support.

B. Legitimate Interests

We may process personal data where it is necessary for our legitimate interests, provided those interests are not overridden by your rights and freedoms. This includes improving the Services, developing new features, personalising content, maintaining security, preventing misuse, analysing usage trends, and administering our business.

C. Consent

We rely on your consent where required by law, including for certain marketing communications, device permissions, and any tracking technologies that require consent. You may withdraw consent at any time, but this will not affect the lawfulness of processing carried out before withdrawal.

D. Legal Obligations

We may process personal data where necessary to comply with applicable laws, regulations, court orders, or lawful requests from public authorities.



5. Sharing Information With Third Parties


We may share personal data with trusted third parties, affiliates, advisers, and service providers where reasonably necessary to operate the Services, support our business, protect users, comply with legal obligations, or pursue legitimate business interests.


We do not sell personal data for money. We may share information for analytics, advertising, attribution, or similar purposes as described in this Privacy Policy.

A. Service Providers

We may share information with third-party service providers that help us deliver the Services, including hosting, infrastructure, storage, analytics, diagnostics, communications, customer support, security, fraud prevention, and technical operations providers.


These may include providers such as Amazon Web Services (AWS), Firebase, Google Cloud, Mailchimp, and similar vendors.

B. Analytics and Advertising Partners

We may share certain information with analytics, attribution, advertising, and measurement partners to understand engagement, measure performance, improve campaigns, and support growth activities.


These partners may include Google, Meta, TikTok, Apple Search Ads, AppsFlyer, and similar providers. Where required by law, we will request consent before engaging in certain tracking or advertising activities.

C. Payment and Subscription Providers

If paid features, subscriptions, or transactions are introduced, we may share necessary information with app store operators, payment processors, billing providers, or subscription management providers in order to process payments and manage purchases.

D. Legal and Regulatory Disclosures

We may disclose information where required to comply with applicable law, regulation, legal process, court order, lawful request from a public authority, or where reasonably necessary to detect fraud, protect rights, enforce our agreements, or protect users or the Services.

E. Business Transfers and Investment Activity

If we are involved in a merger, acquisition, investment round, financing, reorganisation, sale of assets, or similar corporate transaction, personal data may be disclosed to affiliates, advisers, investors, lenders, auditors, insurers or prospective counterparties under appropriate confidentiality obligations, and may be transferred as part of that transaction.


6. International Data Transfers


Your personal data may be stored, processed, transferred to, or accessed in the United Kingdom, the European Economic Area, the United States, and other countries where we, our affiliates, partners, or service providers operate or maintain infrastructure.


This may include the use of cloud hosting providers such as AWS and other vendors whose servers, backup systems, support teams, or network infrastructure may be located in multiple jurisdictions worldwide. Systems may be hosted in one country and accessed by authorised personnel or vendors located in another country.


Where personal data is transferred outside the United Kingdom or the European Economic Area, we will take appropriate steps to ensure that such transfers are carried out in accordance with applicable data protection laws.


These safeguards may include:


●       transfers to countries recognised as providing an adequate level of data protection
●       standard contractual clauses, international data transfer agreements, or equivalent approved safeguards
●       reliance on derogations or other lawful transfer mechanisms where permitted by law


By using the Services, you understand that your information may be transferred to and processed in countries outside your country of residence, subject to the protections described in this Privacy Policy.




7. Data Retention

We retain personal data for as long as necessary to provide the Services and fulfil the purposes described in this Privacy Policy, comply with legal obligations, resolve disputes, enforce our agreements, and protect the safety, security, and integrity of the Services.

A. Account Data


We retain your account information for as long as your account remains active.


If you delete your account, we will permanently delete your personal data and associated account information without undue delay, except where retention is required or permitted for legal, regulatory, security, or legitimate business purposes.


B. User-Generated Content


Content you upload may remain visible to other users until deleted by you or removed by us in accordance with our policies.


If you delete your account, your associated content (including recipes and uploaded materials) will be permanently removed from active systems.


If content has been shared, saved, or interacted with by other users prior to deletion, references or copies may persist within those users’ interactions or external environments.


C. Backup and System Data


Deleted data may remain in backup systems, logs, archives, or disaster recovery systems for a limited period before being overwritten or permanently deleted in accordance with our retention processes.


D. Legal and Safety Obligations


We may retain certain information where necessary to investigate misuse, enforce our terms, comply with legal obligations, respond to lawful requests, protect users, or address unlawful or harmful content.




8. Security

We take reasonable and proportionate technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse, alteration, disclosure, destruction, or other unlawful processing.


These measures may include the use of secure cloud infrastructure (such as AWS), encrypted data transmission over HTTPS/TLS, access controls, authentication mechanisms, and the use of trusted service providers.


We rely on infrastructure-level security measures provided by our hosting and service providers, including default encryption and security controls where applicable.


We may collect and review limited technical and error-related logs (for example via tools such as Sentry) to help identify, diagnose, and resolve technical issues.


Access to personal data is limited to authorised personnel and service providers where required for legitimate business purposes.


Where appropriate, we may investigate suspected security incidents, misuse, or unauthorised access and take action to protect users, the Services, and our systems.


You are responsible for maintaining the security of your own device, login methods, and account credentials.


While we work to protect your information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security.




9. Your Rights

Depending on your location and applicable law, you may have certain rights regarding your personal data.

These rights may include the right to:


●       Access the personal data we hold about you
●       Request correction of inaccurate or incomplete data
●       Request deletion of your personal data
●       Object to or restrict certain processing
●       Withdraw consent where processing is based on consent
●       Request a copy of your data in a portable format where applicable
●       Lodge a complaint with a relevant data protection authority

Managing Your Account

You may be able to access, update, or delete certain account information directly within the app. You may also manage your content within the Services, including creating new content, editing existing content, deleting content, and requesting deletion of your account where available.

Making a Request

To exercise your rights or make a privacy-related request, contact us at:


Email:
info@tanithouse.co.uk


We may need to verify your identity before responding to your request. We will respond within applicable legal timeframes.


If you are based in the United Kingdom, you may also lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk.




10. Children’s Privacy

Sauce.it is not intended for children under the age of 13, or such higher minimum age as may be required under applicable law in your country.


Certain content available through the Services may be intended for a general audience and may include themes such as food, drink, hospitality, lifestyle, or other user-generated topics. We may take steps to restrict, label, remove, or limit content that is unlawful, harmful, age-inappropriate, or otherwise breaches our policies.


We do not knowingly collect personal data from children below the applicable minimum age. If we become aware, or reasonably believe, that an account is operated by a child below the required minimum age, we may request age verification, suspend access, delete the account, remove associated data, or take other appropriate action.


Parents or guardians who believe that a child has provided personal data to us may contact us at:


Email:
info@tanithouse.co.uk




11. Cookies, Tracking Technologies, and SDKs

We may use cookies, software development kits (SDKs), pixels, tags, local storage, device identifiers, and similar technologies to operate the Services, understand usage, improve performance, personalise experiences, prevent fraud, and support analytics, attribution, and marketing activities.

A. Analytics Technologies


We use analytics tools such as Firebase and Google Analytics 4 to understand how users interact with the Services, diagnose issues, improve features, measure performance, and support product development.


B. Attribution and Advertising Technologies


We may use attribution, advertising, and marketing technologies provided by partners such as AppsFlyer, Google, Meta, TikTok, Apple Search Ads, or similar providers to measure campaign effectiveness, understand installs and conversions, attribute marketing performance, and improve user acquisition activities.


C. Device Identifiers


These technologies may use app instance identifiers, device identifiers, IP address, approximate country or region, usage events, and other technical signals to support the purposes described above.


D. Consent and Controls


Where required by applicable law, we will request your consent before using certain tracking, advertising, or optional analytics technologies. You may also be able to manage permissions or preferences through your device settings, platform privacy controls, or available in-app settings.




12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to the Services, our data practices, applicable law, regulatory guidance, or business operations.


When we make material changes, we will update the Effective Date at the top of this Privacy Policy and, where appropriate, provide additional notice through the app, website, email, or other communications.


Any updated version will become effective when published, unless otherwise stated.


We encourage you to review this Privacy Policy periodically to stay informed about how we collect, use, and protect your information.


Your continued use of the Services after an updated Privacy Policy becomes effective means that you acknowledge the revised policy.




13. Contact Us

If you have any questions, concerns, complaints, or requests relating to this Privacy Policy, your personal data, or the Services, you can contact us using the details below:

Tanit House Ltd
United Kingdom
 Email:info@tanithouse.co.uk


We may request additional information to verify your identity or understand your request before responding where appropriate.