Privacy

Last updated: 2026-06-11

The short version: Leanmeal collects only what's needed to give you a logged-in experience — an email and a password hash — plus whatever you voluntarily enter for the calorie calculator. Nothing is shared with anyone. There are no ad networks, no third-party analytics, and no trackers.

What we store about you

If you create an account, we store:

• Your email address — for sign-in, password reset, and (if you opt in) the optional weekly summary email.
• A bcrypt hash of your password (cost factor 12). We do not store, log, or have any way to recover your actual password.
• A display name, if you set one.
• The calculator inputs you choose to save: age (year of birth), sex, height in cm, weight in kg, activity level, and your daily calorie target. These are used only to suggest meal plans and to render your dashboard. You can change or clear them at any time from your account page.
• Your favourites, meal plans, and daily log entries, tied to your account.
• A short-lived session cookie (signed, HttpOnly, scoped to /weightloss). It contains a random session ID — no personal data inside the cookie itself.

Security events we log

To prevent brute-force attacks and abuse, we log:

• A truncated SHA-256 hash of your IP address (not the raw IP) and user-agent at sign-in attempts.
• Failed login attempts (with the email entered) and successful sign-ins.
• Password reset requests.

These records are kept for 90 days for security analysis and then deleted.

What we do NOT do

• No third-party analytics (no Google Analytics, no Plausible, no Mixpanel, nothing).
• No ad tracking pixels, no Facebook Pixel, no remarketing tags.
• No selling, sharing, or "partnering" of your data, ever.
• No emails outside of: verify-your-email, reset-your-password, and the weekly summary if you explicitly opt in.
• No SMS, push notifications, or other off-channel contact.

USDA nutrition data

Per-ingredient nutrition is computed from a snapshot of the U.S. Department of Agriculture's FoodData Central (FDC) public database, retrieved at build time. No personal data is sent to USDA when you browse a recipe.

Cookies

We set exactly one cookie: wl.sid, an HttpOnly session ID. It is sent only with requests to /weightloss, expires after 30 days of inactivity, and is destroyed on sign-out.

Where the data lives

The database is a single SQLite file on the same server that serves these pages (a Hostinger VPS in Europe). It is owned by an unprivileged Linux user, not readable by the web server process, and backed up nightly to encrypted storage on the same VPS.

Your rights

• Export — ask via email and we'll send you a JSON dump of everything we have on you within 14 days.
• Delete — you can delete your account from the account page. We hard-delete users, favourites, plans, and log entries within 24 hours. Security event hashes are retained for 90 days as noted above.
• Correct — you can edit every saved field yourself from the account page.

Contact

Questions, requests, or notices to frogswiper@gmail.com.

Changes to this notice

If we change anything material, we'll bump the "last updated" date above and (for logged-in users) show a banner on your next sign-in.

See also: important information about weight loss.