Privacy Policy

Flavor Hub App Privacy Policy

Last updated Jan 22, 2021


Mastronardi Produce Limited (“we” or “us” or “our”) respects the privacy of our users (“user” or “you”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Flavor Hub mobile application, the related website(s), and subdomains (the “Application”). Please read this Privacy Policy carefully.  


This Privacy Policy is applicable to data subjects within the European Economic Area (“EEA”). Therefore, this Privacy Policy has been drafted to comply with the E.U. General Data Protection Regulation (EU) 2016/679 (“GDPR”). For the purposes of compliance with the GDPR, we are the data controller of information we collect from data subjects through the Application. For the purposes of this Privacy Policy, “data subject” means an identified or identifiable natural person located in the EEA.


This Privacy Policy does not apply to the third-party online/mobile store from which you install the Application or make payments, including any in-app purchases, which may also collect and use data about you.  We are not responsible for any of the data collected by any such third party. 


We may collect information about you in a variety of ways.  The information we may collect via the Application depends on the content and materials you use, and includes:  


Personal Data 

Demographic and other personally identifiable information (such as your name and email address) that you voluntarily give to us when choosing to participate in various activities related to the Application, such as posting messages and responding to questionnaires.  If you choose to share data about yourself via your profile, app messaging, or other collaborative areas of the Application, please be advised that all data you disclose in these areas is public and your data will be accessible to anyone who accesses the Application.


Derivative Data  

Information our servers automatically collect when you access the Application, such as your native actions that are integral to the Application, including signing into the Application, responding to questionnaires, as well as other interactions with the Application and other users via server log files. 


Sensitive Personal Information

In collecting your responses to questionnaires, we may collect personal information revealing your racial or ethnic origin and process your genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health, or data concerning a natural person’s sex life or sexual orientation (“Sensitive PII”). Under the GDPR, Sensitive PII qualifies as a special category of PII. We shall receive explicit consent from users prior to processing Sensitive PII.


Geo-Location Information 

We may request access or permission to and track location-based information from your mobile device, either continuously or while you are using the Application, to provide location-based services. If you wish to change our access or permissions, you may do so in your device’s settings.


Mobile Device Access 

We may request access or permission to certain features from your mobile device, including your mobile device’s camera and other features. If you wish to change our access or permissions, you may do so in your device’s settings.


Mobile Device Data 

Device information such as your mobile device ID number, model, and manufacturer, version of your operating system, phone number, country, location, and any other data you choose to provide.


Push Notifications 

We may request to send you push notifications regarding your account or the Application. If you wish to opt-out from receiving these types of communications, you may turn them off in your device’s settings.



Having accurate information about you permits us to provide you with a smooth, efficient, and customized experience.  We may use your personal information for lawful purposes: (i) as necessary for the performance of our contract with you, (ii) for our legitimate interests, so long as they are not overridden by users’ own rights and interests, or (iii) as required by law. These purposes further include to: 


  1. Compile anonymous statistical data and analysis for use internally or with third parties. 
  2. Create and manage your account.
  3. Enable user-to-user communications.
  4. Increase the efficiency and operation of the Application.
  5. Monitor and analyze usage and trends to improve your experience with the Application.
  6. Notify you of updates to the Application.
  7. Perform other business activities as needed.
  8. For any other purposes for which you provided the personal information.



We may share information we have collected about you in certain situations. Your information may be disclosed as follows: 


Interactions with Other Users 

If you interact with other users of the Application, those users may see your name, profile photo, and descriptions of your activity and messaging with other users. 


Online Messaging

When you post messages, contributions or other content to the Application, your posts may be viewed by all users within the Application.


We are not responsible for the actions of third parties with whom you share personal or Sensitive PII, and we have no authority to manage or control third-party solicitations.  If you no longer wish to receive correspondence, emails or other communications from third parties, you are responsible for contacting the third party directly.


To Service Providers

We may disclose your personal information and Sensitive PII to third party service providers that assist us in providing user support, communicating with users, and promoting our services, as well as third party service providers that provide other services to us relating to our services and/or the Application.


Law Enforcement, Safety, and Legal Processes

We may disclose your personal information and Sensitive PII to law enforcement or other government officials if it relates to a criminal investigation or alleged criminal activity.  We may also disclose your personal information and Sensitive PII: (i) if required or permitted to do so by law; (ii) for fraud protection and credit risk reduction purposes; (iii) in the good-faith belief that such action is necessary to protect our rights, interests, or property; (iv) in the good-faith belief that such action is necessary to protect your safety or the safety of others; or (v) to comply with a judicial proceeding, court order, subpoena, or other similar legal or administrative process.


Sale or Acquisition of Assets

If we become involved in a transaction involving the sale of our assets, such as a merger or acquisition of all or part of our business, or if we are transferred to another company, we may disclose and/or transfer your personal information and Sensitive PII as part of the transaction. 


The Application may contain links to third-party websites and applications of interest, including advertisements and external services, that are not affiliated with us. Once you have used these links to leave the Application, any information you provide to these third parties is not covered by this Privacy Policy, and we cannot guarantee the safety and privacy of your information. Before visiting and providing any information to any third party websites, you should inform yourself of the privacy policies and practices (if any) of the third party responsible for that website, and should take those steps necessary to, in your discretion, protect the privacy of your information. We are not responsible for the content or privacy and security practices and policies of any third parties, including other websites, services or applications that may be linked to or from the Application.


We use administrative, technical, and physical security measures to help protect your personal information.  While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse.  Any information disclosed online is vulnerable to interception and misuse by unauthorized parties.  Therefore, we cannot guarantee complete security if you provide personal information.


GDPR Data Subject Rights

If you are a data subject located in the EEA, the GDPR grants you certain data privacy rights. Your rights include the:

  • Right to Access: You have the right to request a copy of your personal information.
  • Right to Rectification: You have the right to request that we correct any mistakes in your personal information.
  • Right to Erasure: You have the right request that we delete your personal information.
  • Right to Restrict Processing: You have the right to restrict processing of your personal information.
  • Right to Object to Processing: You have the right to object to our processing of your personal information.
  • Right to Data Portability: You have the right to receive your personal information in a in a structured, commonly used and machine-readable format.
  • Right to Not be Subject to Automated Individual Decision Making: You have the right not to be subject to a decision based solely on automated processing.


To exercise your rights, please contact us at the Contact Information provided below. Please be aware that your rights are limited to the extent permitted by the GDPR.

Withdraw Consent

In the event that we process your personal information pursuant to your consent, you have the right to withdraw your consent at any time, without affecting the lawfulness of the processing based on said consent before its withdrawal. If you would like to withdraw your consent, please contact us at the Contact Information provided below.

File a Complaint

If you would like to file a complaint with us about our privacy practices, please contact us at the Contact Information provided below. If you are a data subject located in the EEA, the GDPR grants you the right to lodge a complaint with a competent supervisory authority as well. To find a competent supervisory authority, please use the following resource:

California Privacy Rights

California’s “Shine the Light” law permits users of the Application that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us at the Contact Information provided below.


Under the California Consumer Privacy Act (“CCPA”) signed into law June 28, 2018 and entering into effect Jan. 1, 2020, California residents have certain rights and privileges. These rights include the:

  • Right to Know: the right to request disclosure of personal information collected or sold.
  • Right to Deletion: the right to request deletion of personal information collected from you.
  • *“Do Not Sell Right”: the right to opt-out of the sale of personal information (if applicable).
  • Right to Sue for Security Breaches.


*We do not sell your personal information to third parties and have no plans to do so in the future.


We reserve the right to ask for information verifying your identity and residency prior to disclosing any information to you or acting on your request.  Should we ask for verification, the information you provide to verify your identity and residency will be used only for that purpose, and all copies of this information in our possession will be destroyed when the process is complete. We strive to respond to your request within 45 days of receiving a verifiable consumer request however,  we reserve the right to respond within 90 days when reasonably necessary.


Your information, including personal information, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.


If you are located outside the United States and choose to provide information to us, please note we transfer your information, including personal information and Sensitive PII, to the United States and process it there. Please note the EU has not adopted an adequacy decision with respect to data transfers to the United States; however, we value your privacy and protect your data using reasonable information security practices.


Upon transfer to the United States, any personal information would then be subject to United States laws, and may be subject to disclosure to the United State’s government authorities, courts, law enforcement, or regulatory agencies of that country, pursuant to United States laws.


We will retain users’ personal information and Sensitive PII while they maintain an account with us or to the extent necessary to provide the services through the Application. Thereafter, we will keep personal information for as long as necessary: (i) to respond to any queries from users; (ii) to demonstrate we treated users fairly; (iii) for ordinary business continuity procedures; or (iv) to comply with any applicable laws. We delete personal information within a reasonable period after we no longer need the information for the purposes set out in this Privacy Policy. 


Some internet browsers may transmit “do-not-track” signals to websites with which the browser communicates. The Application does not currently respond to these “do-not-track” signals.


We do not offer our services or promote the Application to, nor do we intentionally collect or retain personal information and Sensitive PII from, children who are younger than 18 years of age. Application users are cautioned, however, that the collection of personal information and Sensitive PII submitted in an e-mail or through the Application will be treated as though it was submitted by an adult, and may, unless exempted from access by Federal or State law, be subject to public access.  If you become aware of any data we have collected from children under age 18, please contact us using the contact information provided below. 


We reserve the right to update this Privacy Policy from time-to-time in our sole discretion. If our privacy practices change materially in the future, we will post an updated version of the Privacy Policy to the Application. It is your responsibility to review this Privacy Policy for any changes each time you use the Application. We will not decrease your rights under this Privacy Policy without your explicit consent. If you do not agree with the changes made, we will honor any opt-out requests made after the Effective Date of a new privacy policy. 


If you have questions or comments about this Privacy Policy, or would like to exercise your rights, please contact us at:


Mastronardi Produce® Ltd.


2100 Road 4 East

Kingsville, ON N9Y 2E5


Customer Service: 1-844-GROWN-4-U (1-844-476-9648)