Gruby is a budgeting-focused cooking companion app that helps you save money by cooking at home. It guides you through recipes while showing exactly how much you save compared to eating out or ordering delivery.

How does Gruby help me save money?

Gruby tracks grocery costs, calculates cost per serving for recipes, manages your pantry to reduce food waste, and shows you real-time savings compared to restaurant and delivery prices.

MESSAGING AND COMMUNICATIONS POLICY

Effective Date: December 22, 2025

This Messaging and Communications Policy explains how messaging works in the Gruby application, including our end-to-end encryption implementation, what data we can and cannot access, your responsibilities when messaging, and how we handle communications across the platform.

1. END-TO-END ENCRYPTION

1.1 How It Works

Direct messages between Gruby users are protected with end-to-end encryption using the TweetNaCl cryptography library. This means:

Messages are encrypted on your device before being sent to our servers
Only you and your recipient can decrypt and read the message content
Gruby cannot read the content of your encrypted messages
Encryption keys are generated and stored locally on your device
Even if our servers were compromised, message content would remain protected

1.2 Technical Implementation

Our encryption uses the following approach:

Public-key cryptography for key exchange
Symmetric encryption for message content
Cryptographic nonces to prevent replay attacks
TweetNaCl's authenticated encryption (crypto_box)

1.3 What This Means for You

Benefits:

Your private conversations stay private
Protection against server-side data breaches
Gruby employees cannot read your messages

Limitations:

If you lose access to your device, encrypted messages cannot be recovered
We cannot help you recover message content
We cannot provide message content to law enforcement (we don't have it)

2. WHAT WE CAN AND CANNOT ACCESS

2.1 Data We Can Access (Metadata)

To deliver messages and maintain the service, we access and store:

Sender and recipient identifiers
Timestamps of when messages are sent
Message delivery status
Conversation participant lists
Message count and frequency patterns
Whether a message contains attachments (but not the attachment content)

2.2 Data We Cannot Access

The actual content of your messages
Photos, videos, or files shared in messages
Recipe links or content shared privately
Any text you type in direct messages

3. TYPES OF COMMUNICATIONS IN GRUBY

3.1 Direct Messages (End-to-End Encrypted)

One-on-one private conversations between users
Fully end-to-end encrypted
Only visible to sender and recipient
Retained until you or the recipient deletes them

3.2 Gathering Chats

Group chats associated with Gatherings (collaborative cooking events)
Visible to all Gathering participants
Not end-to-end encrypted (for moderation purposes)
Stored for the duration of the Gathering and a reasonable period after

3.3 Circle Communications

Shared content and discussions within Circles (friend groups)
Visible to Circle members only
Not end-to-end encrypted
Subject to Circle administrator moderation

3.4 Public Content (Not Encrypted)

Comments on recipes
Public posts and stories
Reviews and ratings
Community feed content

This content is not encrypted and is visible according to your privacy settings.

4. MESSAGING RULES AND GUIDELINES

While we cannot read your encrypted messages, you remain responsible for your conduct. You agree NOT to use messaging to:

4.1 Prohibited Content

Send harassing, threatening, or abusive messages
Share explicit, obscene, or sexually suggestive content
Distribute malware, viruses, or malicious links
Engage in phishing or fraud attempts
Share illegal content or facilitate illegal activities
Send hate speech or discriminatory content
Share child sexual abuse material (CSAM) - this is reported to authorities

4.2 Spam and Commercial Messages

Send unsolicited commercial messages or advertisements
Send bulk or automated messages
Promote products or services without consent
Send chain messages or pyramid schemes
Repeatedly message users who have asked you to stop

4.3 Expected Behavior

Respect other users' wishes to end conversations
Use messaging for legitimate, food-related purposes
Be respectful and courteous in your communications
Report inappropriate behavior through the app

5. REPORTING AND MODERATION

5.1 How to Report

If you receive inappropriate messages, you can:

Block the user: Prevents them from messaging you
Report the conversation: Use the report feature in the app
Email us: Contact safety@gruby.app for urgent concerns

5.2 How We Handle Reports

When you report a message or user:

For encrypted messages, we receive metadata (who sent to whom, when) but NOT message content
You may choose to include screenshots of the problematic messages in your report
We review patterns of behavior (frequency, multiple reports, etc.)
We may take action based on behavioral patterns and user reports

5.3 Actions We May Take

Warning the offending user
Temporarily restricting messaging capabilities
Temporarily suspending the account
Permanently terminating the account
Reporting to law enforcement (for illegal activities)

6. MESSAGE RETENTION AND DELETION

6.1 Retention

Direct Messages: Retained in encrypted form until you or the recipient deletes them
Gathering Chats: Retained for the duration of the Gathering plus 90 days
Message Metadata: May be retained for security and abuse prevention purposes

6.2 Deleting Messages

Delete for yourself: Removes the message from your view only; the recipient still has their copy
Message deletion does not affect: Screenshots the recipient may have taken

6.3 Account Deletion

When you delete your account:

Your copy of all messages is deleted
Recipients retain their copies of messages you sent
Your encryption keys are deleted (messages become unrecoverable)

7. LAW ENFORCEMENT AND LEGAL REQUESTS

When we receive legal requests for messaging data:

Message Content: We cannot provide the content of end-to-end encrypted messages because we do not have access to them
Metadata: We may be required to provide message metadata (sender, recipient, timestamps) in response to valid legal process
Account Information: We may provide account information as required by law
Transparency: We will notify users of legal requests unless prohibited by law or court order

8. PUSH NOTIFICATIONS

Message notifications are handled as follows:

Push notifications for new messages do NOT contain message content
Notifications only indicate that you have a new message
You can customize notification settings in the app
You can disable message notifications entirely

9. GRUBY-INITIATED COMMUNICATIONS

Gruby may communicate with you through:

Email: Service announcements, security alerts, account-related notices
Push Notifications: Feature updates, reminders (expiration alerts, Gathering reminders)
In-App Messages: Tips, feature announcements, surveys

Opting Out: You can manage your communication preferences in app settings. Note that you cannot opt out of essential service communications (security alerts, Terms of Service changes, etc.).

10. CHANGES TO THIS POLICY

We may update this Messaging and Communications Policy from time to time. We will notify you of material changes (especially any changes affecting encryption) by posting the updated policy and sending a notification through the app.

11. CONTACT US

If you have questions about messaging or this policy, please contact us:

Gruby Privacy Team
Email: privacy@gruby.app

For Safety Concerns
Email: safety@gruby.app

Messaging Policy