Privacy Policy

Last updated: January 22, 2026

Menusify (“we”, “us”, or “our”) operates the website menusify.com and the Menusify service (collectively, the “Service”).

This Privacy Policy explains what information we collect, how we use it, who we share it with, and your rights regarding your personal information.

1. Information We Collect

1.1 Information You Provide Directly

  • Email address and basic profile information when you sign in with Google (via OAuth).
  • Menu data you voluntarily input or upload: dish names, descriptions, ingredients, prices, customization groups, images.
  • Payment information (handled exclusively by Stripe — we never store full card details).
  • Communications you send to us (support emails, feedback).

1.2 Information Collected Automatically

  • Device information: IP address, browser type/version, operating system, device identifiers.
  • Usage data: pages visited, time spent, features used (tracked via Umami — privacy-first analytics, no cookies for tracking individuals across sites).
  • Log data: access times, referring URLs, clickstream behavior within the Service.

1.3 What We Do NOT Collect

  • We do not collect precise geolocation data.
  • We do not collect payment card numbers, CVV, or full billing address (Stripe handles all PCI-compliant processing).
  • We do not collect sensitive health/medical data beyond what you include in menu ingredients (which we process only for allergen tagging).

2. How We Use Your Information

We use the collected information for the following purposes:

  • To provide, maintain, and improve the Menusify Service (menu compliance checking, AI description generation, modifier recommendations, image pre-checks, export functionality).
  • To authenticate your account and personalize your experience.
  • To communicate with you about your account, updates, support requests, and service announcements.
  • To detect, prevent, and address technical issues, fraud, abuse, or violations of our Terms of Service.
  • To generate aggregated, anonymized insights about menu trends (never linked to identifiable individuals).
  • To comply with legal obligations (e.g., responding to valid subpoenas or court orders).

3. How We Share Your Information

We do not sell your personal information. We share information only in these limited cases:

  • Service Providers: Stripe (payments), Google Cloud / Gemini API (AI processing), Umami (analytics), Vercel (hosting) — all under strict data processing agreements.
  • Legal Requirements: If required by law, regulation, legal process, or governmental request.
  • Business Transfers: In connection with merger, acquisition, or sale of assets (with notice where required).
  • With Your Consent: For any other purpose with your explicit permission.

4. Data Storage & Transfers

Your data is primarily stored in secure data centers in Singapore and/or the United States (depending on Vercel & Google Cloud region selection). When you use Gemini API, some menu text and image data may be processed on Google servers (subject to Google's Data Processing Addendum and safeguards).

We use appropriate safeguards (Standard Contractual Clauses, adequacy decisions, etc.) for any cross-border transfers.

5. Data Retention

  • Account data: retained while your account is active + 12 months after deletion (for legal & backup purposes).
  • Menu data: retained only as long as needed to provide the Service or until you delete it (whichever comes first).
  • Logs & analytics: retained up to 14 months (Umami default anonymization period).

6. Your Rights & Choices

Depending on your location, you may have the following rights:

  • Access, correct, or delete your personal data.
  • Object to or restrict certain processing.
  • Data portability (in machine-readable format).
  • Withdraw consent (where processing is consent-based).
  • Lodge a complaint with your local data protection authority.
To exercise any of these rights, email [email protected].

7. Security & Children's Privacy

We implement commercially reasonable technical, administrative, and physical safeguards to protect your information. However, no method of transmission over the Internet or electronic storage is 100% secure.

Our Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such data, we will delete it.

8. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by email or prominent notice on the Service. Continued use after changes constitutes acceptance.

Contact Us

Menusify Inc.

Email: [email protected]

Menusify is committed to protecting your privacy while helping restaurants safely and successfully operate on food delivery platforms.