How we handle your data

Customer accounts use email and password sign-in, with Google sign-in available as an alternative. Passwords are never stored in plaintext — authentication is handled by our backend provider, which stores credentials as salted hashes.

Admin access to manage products, recipes, journal posts and stockists is restricted by a role check enforced on the server, not just in the browser.

africacloser is built and hosted on Lovable, which provides the application runtime, database, authentication and file storage. Data is transmitted over HTTPS. Database access is controlled by row-level security policies that scope each request to the calling user.

When you create an account we store your email address and any profile details you provide. When you contact us, we keep the message so we can reply. Browsing pages on the site does not require an account.

We do not sell personal data. We share information with service providers only as needed to run the site (for example, our hosting and authentication platform).

We use a small number of cookies that are required for the site to work, such as keeping you signed in. If we add product analytics in the future, we will update this page.

You can request a copy of the personal data we hold about you, ask us to correct it, or ask us to delete your account. Send requests to the contact address below.

If you believe you have found a vulnerability, please email us before sharing it publicly so we can investigate and fix it.

Contact: hello@africacloser.com