Calendar • Shopping List • Dishes • Items

We're a small site. We don't have lawyers (yet). So we're going to make this as simple as possible.

1. Information Collection. We aim to collect the minimum amount of data possible for the site to function. At this time, we collect the following information:
   1. Information you explicitly provide:
      1. Email address -- this is not authenticated; therefore, you can use a fake address. If you do, you cannot reset your password, however.
      2. Password -- this password does not have to be (and ideally, should not be) the same as any other passwords you use for banking, online shopping, blogging, or skydiving. We expect that households will share a single account. Please bear in mind who you are working with when you select a password. We are not responsible if you accidentally divulge the information necessary for your roommate to find out that you're actually bar-hopping when you said you'd be "studying" so that you don't have to hang out with them.
      3. Recipes -- We understand that these may be near and dear to you, and in fact, could be your livelihood. We consider these to be your intellectual property (insofar as they can be; if you copied them out of a cookbook, well, that's on you). We will never share them without your express opt-in permission. We will not implement confusing tools by which you can accidentally broadcast your recipes to the world by default and not realize it. Not that any sites have ever done something like that. That'd be silly, right?
   2. Other information we collect because it's how websites work:
      1. IP address -- this is a unique identification number assigned either permanently or temporarily to your computer or mobile device so that you can communicate with the Internet. It comes from whoever you pay for Internet service. Our server can't send information to your computer to be displayed as the Saffronville web page unless we have that information. It's routinely logged by web servers, and our host doesn't give us the ability to turn off logging. We probably wouldn't even if they did. However, we do not in the course of our business have reason to look up your IP address unless you're breaking our site, and without a subpoena, we can't even find out that it's your address. You're just a number to us. (Especially if you used a fake email address.)
   3. Other information collected by people who aren't us:
      1. We have an ad bar on the page. This is how the site makes money. (We would prefer another model, but that'll have to wait.) When you load the page, the ad service (Google AdSense) detects that an ad was served. If you click on the ad, it records that click. We make more money that way. Google doesn't tell us who clicked on which ad, but I certainly can't promise that they're not keeping track of your IP address.
2. Information Sharing. Saffronville does not at this time, nor do we ever plan to, have any agreements to provide contact information for our users to any third parties for any reason.
   1. Besides Saffronville, there are two other entities that potentially have information about your visits to the site:
      1. JaguarPC is our web host; we pay them money, and they keep really expensive computers running nearly all the time so that you can visit saffronville.com. All the information we have, they technically have too; however, it is a matter of policy that they don't go poking around in their customers' data unless there's reason to believe that it's harming the computers, or if they get a subpoena.
      2. The other entity is Google, and we already mentioned them. They don't have your Neiman Marcus Cookie Recipe. (Well, they might, but they didn't get it from us. They probably looked it up on Snopes.)
3. Information Breach.
   1. In the event of a breach of user data (i.e. someone out there thinks that Aunt Ida's Pot Roast is going to make them rich, and illicitly accesses our database), we will notify all users within 48 hours of discovery. We will use the email address on file to notify you, so if you provided a fake one...
4. Personal Information Storage.
   1. Email addresses are stored in plain text.
   2. Passwords are stored hashed, which is an encryption method that makes it very difficult for someone to figure out the original password from getting the data table. It means that we technically don't even know your password; we just know what comes out when we run our hash function on your password. That's why when you lose your password, you have to reset it, not recover it. (For the technically inclined: We're using a bcrypt variant, not MD5 or SHA-1.)