Melio

Privacy Policy

Last Updated: March 26, 2026

We are committed to protecting your privacy and being transparent about how we collect and use your information. This policy explains our practices in detail.

Introduction

Melio ('we', 'our', or 'us') is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our meal planning platform and services. Please read this policy carefully to understand our practices regarding your personal data.

Information We Collect

Personal Information

  • Account information (name, email address, password)

  • Profile data (age, gender, height, weight, activity level)

  • Dietary preferences and restrictions

  • Health goals and medical conditions (optional)

  • Payment information (processed securely by third-party providers)

Usage Information

  • Meal plans created and customizations made

  • Recipes saved, rated, or modified

  • App usage patterns and feature interactions

  • Device information and technical data

How We Use Your Information

  • To provide personalized meal planning and nutrition recommendations

  • To improve our AI algorithms and service quality

  • To communicate with you about your account and our services

  • To process payments and manage subscriptions

  • To provide customer support and respond to inquiries

  • To comply with legal obligations and protect our rights

Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following limited circumstances:

  • Service Providers

    With trusted third-party companies that help us operate our platform (payment processors, cloud storage, analytics)

  • Legal Requirements

    When required by law, court order, or to protect our rights and safety

  • Business Transfers

    In connection with a merger, acquisition, or sale of assets (with notice to users)

  • With Your Consent

    When you explicitly agree to share information with third parties

  • AI Service Providers

    Your dietary preferences, health goals, and meal plan parameters are processed by AI service providers (such as Anthropic and OpenAI) to generate personalized meal plans and nutritional recommendations. Data sent to AI providers is used solely for meal plan generation and is subject to their respective data processing agreements.

  • Payment Processor

    Payment information is processed by Stripe, Inc., our third-party payment processor. Stripe acts as a data sub-processor and handles your payment data in accordance with PCI DSS standards. We do not store your full credit card details on our servers.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction:

  • Encryption of data in transit and at rest

  • Regular security assessments and updates

  • Access controls and employee training

  • Secure payment processing through certified providers

Your Rights and Choices

You have several rights regarding your personal information, including:

  • Access and Portability

    Request a copy of your personal data in a portable format

  • Correction

    Update or correct inaccurate personal information

  • Deletion

    Request deletion of your personal data (subject to legal requirements)

  • Restriction

    Limit how we process your personal information

  • Objection

    Object to processing based on legitimate interests

  • Withdraw Consent

    Withdraw consent for data processing where applicable

  • Right to Lodge a Complaint

    You have the right to lodge a complaint with the Polish supervisory authority: Urzad Ochrony Danych Osobowych (UODO), ul. Stawki 2, 00-193 Warsaw, Poland, https://uodo.gov.pl/

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage, and provide personalized content. You can control cookie preferences through your browser settings. For detailed information about our use of cookies, please see our Cookie Policy.

Children's Privacy

Our services are not intended for children under 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such information, we will take steps to delete it promptly.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable law.

Data Retention

We retain your personal data for as long as your account is active or as needed to provide our services. After account deletion, we retain data for up to 30 days for backup purposes, after which it is permanently deleted. Payment records may be retained longer as required by applicable tax and accounting laws.

Legal Basis for Processing

We process your personal data on the following legal bases under GDPR Article 6: (a) Contract performance — to provide our meal planning services; (b) Consent — for marketing communications and non-essential cookies; (c) Legitimate interest — for service improvement, fraud prevention, and analytics; (d) Legal obligation — for tax, accounting, and regulatory compliance.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on our website and updating the 'Last Updated' date. Your continued use of our services after such changes constitutes acceptance of the updated policy.