Privacy Policy for The Baking Pro

Last updated: 22 April 2026

The Baking Pro ("we", "our", or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and protect your information when you use The Baking Pro mobile application ("the App").

1A. Data Controller

For the purposes of applicable data protection laws, The Baking Pro is the data controller responsible for your personal data.

1. Information We Collect

a) Account Information

When you create an account or log in to the App, we collect your username, email address, and password. We also record basic login activity such as the time of your last login.

b) Contacts Information

If you choose to use the Import from Contacts feature, the App may access and collect full names, phone numbers, email addresses, and physical addresses (if available).

Contacts are accessed only when you explicitly initiate the import action. The App requests the Contacts permission at runtime and only reads the single contact you select.

c) Business & App Data

You may provide data related to:

• Customers/clients (name, email, phone, address, company, tax number, notes)
• Orders and order items (descriptions, quantities, prices, delivery details, notes)
• Invoices and quotes (line items, totals, terms, notes, generated PDF documents)
• Recipes (ingredients, instructions, costs, preparation times, images)
• Designs (name, description, components, pricing, images, sketches)
• Stock/inventory items and transactions
• Shopping lists

d) Financial & Banking Information

If you configure your business settings for invoicing, you may provide banking details including bank name, account holder name, account number, branch code, account type, SWIFT code, and payment reference. This information is used solely to display on your invoices and is stored securely on our servers.

e) Business Profile & Logo

You may upload a business logo from your device's photo library. The App accesses your photo library only when you explicitly choose to upload an image. No camera access is used. The logo is stored as part of your business profile and may appear on generated invoices and quotes.

f) Recipe & Design Images

You may attach images to recipes and designs from your device's photo library. These images are stored as part of your recipe or design data on our servers. The App accesses your photo library only when you explicitly choose to attach an image.

2. How We Use Your Information

We use your information to:

• Provide core app functionality (managing clients, orders, invoices, recipes, designs, and inventory)
• Generate invoices, quotes, and downloadable PDF documents
• Display your business details and banking information on invoices
• Provide business insights and analytics derived from your orders, invoices, and client data
• Send transactional emails such as password resets, verification codes, welcome messages, and account security alerts
• Improve app performance and user experience

3. Data Storage and Processing

Your data is securely stored in a cloud-hosted PostgreSQL database hosted via our infrastructure provider (Render). Our backend API is hosted on secure cloud infrastructure. All data transmitted between the App and our servers is encrypted in transit using HTTPS.

Your data may be processed and stored in countries outside of your country of residence, including outside the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place in accordance with applicable data protection laws.

Service providers and hosting platforms may change over time, but all providers are required to meet appropriate security and data protection standards.

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or similar jurisdictions, we process your personal data under the following legal bases:

• Contractual necessity — to provide and operate the App and its core features
• Legitimate interests — to improve app performance, security, and user experience
• Consent — where you explicitly grant permissions (such as accessing contacts or photos)
• Legal obligations — where required to comply with applicable laws

5. Data Sharing

We do not sell your personal data. Data may be shared only with:

• Email delivery service (SendGrid)
• Cloud hosting provider (Render)
• Legal requirements

We do not use advertising SDKs or engage in cross-app tracking. We do not currently use third-party analytics tools that track user behaviour across apps or services.

We may introduce limited analytics in the future to provide users with insights into their own data and to understand general app usage in an aggregated and non-identifiable manner. Where required by law, we will request your consent before enabling such features.

6. Data Retention & Deletion

Data is retained only as long as your account is active or as needed to provide you with the App's services.

7. Permissions

The App requests the following device permissions:

8. Data Security

We implement appropriate technical measures to protect your information.

We may process limited technical data such as system logs or error reports for maintaining app stability and security. This data is not used for tracking individual user behaviour.

While we take reasonable steps to protect your data, no method of transmission or storage is completely secure.

8A. Data Breach Notification

In the event of a data breach affecting your personal data, we will notify users and relevant authorities where required by law.

9. Your Rights

• Right to access your data
• Right to correct data
• Right to delete data
• Right to restrict or object
• Right to data portability
• Right to withdraw consent

EU/UK users may lodge complaints with their data protection authority.

10. Changes

We may update this policy from time to time.

11. Contact

Email: app@thebakingpro.com