Your data, your kitchen
What Forkless stores about you, what we share with Kroger when you send a cart, and what we never share.
Forkless connects your meal plan to your grocery cart. To do that, we hold some data about you and we share a narrow slice with Kroger when you send your cart over. Here’s exactly what.
What we store
Section titled “What we store”- Your account info — email, name, password (hashed, never readable by us).
- Your profile — household size, intolerances, dietary preferences, calorie or macro goals, weekly grocery budget, cooking skill, appliances. The stuff you told us during onboarding.
- Your plans and pantry — the weekly plans we generate for you, what you’ve marked as “already have it,” your staples list.
- Your Kroger connection — an OAuth token from Kroger that lets us add items to your cart. We never see your Kroger password. The token can be revoked from your Kroger account or from Forkless settings at any time.
- App usage — basic events (plan generated, cart sent) so we can tell what’s working and fix what isn’t. No third-party ad trackers.
What we share with Kroger
Section titled “What we share with Kroger”When you tap Send to Kroger, we send the grocery list for that plan — item names, quantities, and the store you’ve chosen — to Kroger’s API so the items land in your cart.
That’s the entire handoff. Kroger doesn’t get your meal plan, your intolerances, your calorie goals, or anything else from your profile. Just the shopping list, the way you’d hand a piece of paper to a friend at the store.
You finish checkout in Kroger’s app or website. Forkless never places the order for you.
What we never share
Section titled “What we never share”- We do not sell your data. Not to advertisers, not to data brokers, not to anyone.
- We do not share your meal plans, intolerances, health goals, or budget with Kroger or any other retailer.
- We do not share your data with advertising networks. There are no third-party ad pixels in the Forkless app.
- We do not share your data with insurance companies, employers, or wellness programs.
Why we’d ever share anything
Section titled “Why we’d ever share anything”Three narrow cases:
- You asked us to. Sending a cart to Kroger is the obvious one.
- A vendor needs it to do their job. Our email provider sees your email so it can email you. Our hosting provider stores the data. These vendors are bound by contract to use your data only to run Forkless.
- The law requires it. Subpoena, court order, or equivalent legal process. We push back on overbroad requests.
Changing your mind
Section titled “Changing your mind”- Disconnect Kroger — Profile → Connected Accounts → Disconnect. Your token is revoked immediately. Your past plans stay; new carts can’t be sent until you reconnect.
- Update your profile — anywhere you entered the data, you can change it.
- Delete your account — email [email protected] and we’ll purge your data within 30 days. Self-serve deletion is on the roadmap; until it ships, the email path is the only one.
- Email us — [email protected] for anything that doesn’t have a button.
The full version
Section titled “The full version”The plain-English summary above covers the day-to-day. The formal Privacy Policy at /privacy is the legal version with the full list of vendors, retention windows, and your specific rights under California, EU, and UK law. Both documents say the same thing; the policy is just longer.