Security & Privacy
How Ladle protects your recipes, in plain language.
Your recipes never leave your iCloud
All your recipes, meal plans, and shopping lists sync via CloudKit, which is end-to-end encrypted by Apple. Only your devices can read the contents. Not Apple, not us, not anyone else.
The smart stuff runs on your device
Meal planning, tonight's "what can I cook?" suggestions, ingredient swaps on a recipe, and the speech transcription behind video import all run locally on your iPhone or iPad, using Apple Intelligence (Apple's FoundationModels framework) and on-device speech recognition. Nothing goes to the cloud, and no recipe data leaves your device.
Cloud AI import is request-only
When a link or photo needs AI to read it, we send just that link or image to a Cloudflare Worker that talks to Anthropic's Claude. Claude extracts the recipe and we send it back to your app. We don't keep anything afterwards.
Grocery aisles use ingredient names only
To sort your shopping list into aisles, Ladle looks up ingredient names, never your list, your recipes, or anything tied to you. The mapping is shared across users so it improves over time, but it only ever sees words like "spinach", not who's buying it.
Every API call is verified by your device
Ladle uses Apple's App Attest framework to cryptographically prove every request to our extraction service comes from a real, untampered copy of Ladle on your device. That's what stops anyone from abusing our AI service. You don't have to do anything for it to work.
No tracking, no ads
Ladle has no analytics SDK, no third-party trackers, no ad networks. The only data we collect is anonymized failure logs from URL imports (domain only, never the full URL) so we can keep extraction working on more sites.
Have a question?
Email us at privacy@getladle.app. For the full legal terms, see our Privacy Policy and Terms of Service.