Partner Privacy Policy

At Nibblify Food, we are committed to protecting your business data and ensuring the security of your restaurant's information. This Partner Privacy Policy outlines how we collect, use, store, and safeguard your data when you use the Nibblify Partner mobile application.

1. Information We Collect

To provide you with comprehensive restaurant management services, we collect the following types of information:

1.1 Account & Business Information

• Owner Details: Full name, email address, and phone number (verified and encrypted using industry-standard AES-256 encryption)
• Restaurant Profile: Restaurant name, business address, operating hours, cuisine types, and contact information
• Media Assets: Restaurant logo, cover images, menu item photos, videos, and gallery images
• Menu Data: Complete menu structure including sections, items, descriptions (multilingual), pricing, nutritional information, dietary tags, and availability schedules

1.2 Legal & Financial Data

• Tax Information: Tax ID/VAT number (encrypted using AES-256-GCM algorithms before storage)
• Subscription Data: Active plan (Starter, Growth, Pro), subscription status, payment history, and renewal dates processed via Apple App Store or Google Play Store In-App Purchases
• Commission Structure: Your agreed commission rates and payment cycle preferences
• Banking Details: Payout account information for revenue transfers (stored securely with our PCI-DSS compliant payment partners)

1.3 Operational Data

• Location Data: Precise GPS coordinates of your restaurant and delivery drivers (when active) to facilitate delivery logistics and order tracking
• Order Management: Real-time order details, preparation times, customer delivery addresses, order status updates
• Driver Information: Driver profiles, verification documents (licenses, insurance, ID cards), vehicle details, and real-time location tracking during active deliveries
• Working Hours: Regular operating hours, special dates, holiday schedules, and temporary closure settings

1.4 Analytics & Performance Data

• Sales Metrics: Daily, weekly, and monthly revenue, completed orders, cancelled orders, average order value
• Hourly Patterns: Peak hours analysis, hourly sales distribution, order volume heatmaps
• Top-Selling Items: Best-performing menu items, sales statistics per item
• Customer Feedback: Ratings, reviews, and customer comments about your restaurant and menu items

1.5 Device & Technical Information

• Device model, operating system version, app version
• Preferred language/locale and timezone settings
• Push notification tokens (FCM Token) for real-time order alerts
• IP address and session logs for security monitoring

2. How We Use Your Information

We use the collected data strictly for the following purposes:

• Order Management: Enable you to receive, process, accept/reject, and track food orders in real-time
• Driver Coordination: Assign delivery drivers, track delivery progress, and manage your delivery fleet
• Business Intelligence: Provide detailed analytics dashboards showing sales trends, top-selling items, peak hours, and performance metrics
• Subscription Management: Process and manage your tiered subscriptions (Starter, Growth, Pro) and unlock features based on your plan
• Marketing Tools: For eligible partners (Pro Plan), enable creation of coupons, special offers, promotional campaigns, and push notifications to customers
• Menu Optimization: Support multilingual menus, dynamic pricing, inventory management, and menu layout customization
• Financial Operations: Calculate commissions, process payouts, and maintain transparent financial records
• Security & Fraud Prevention: Verify identities, prevent unauthorized access, detect fraudulent activities
• Platform Improvement: Analyze usage patterns to enhance app functionality and user experience

3. Data Sharing & Third Parties

We do not sell your business data. We only share necessary information with trusted third parties under strict confidentiality agreements:

• Google Firebase: For cloud infrastructure, authentication, real-time database, and cloud storage services
• Apple App Store & Google Play Store: For processing in-app subscription purchases and managing billing
• Payment Processors: PCI-DSS compliant partners (e.g., Stripe) for secure financial transactions
• Customers: Your restaurant name, address, menu, photos, operating hours, and reviews are visible to customers on the consumer app
• Delivery Partners: Order details and delivery addresses shared with assigned drivers
• Legal Authorities: When required by law, court order, or to protect our rights and safety

4. Data Security Measures

Security is paramount. We implement industry-leading security measures:

• Encryption at Rest: Sensitive data including Tax IDs, phone numbers, and secure keys are encrypted using AES-256-GCM algorithms before storage
• Encryption in Transit: All data transmitted between your device and our servers is protected using SSL/TLS encryption
• Secure Storage: Data is stored in secure Google Cloud Platform (Firebase) environments with 24/7 monitoring and intrusion detection
• Access Controls: Decryption keys are managed securely and isolated from standard database access. Only authorized personnel with legitimate business needs can access sensitive data
• Regular Audits: We conduct security audits and vulnerability assessments to identify and fix potential risks
• PCI-DSS Compliance: Payment data is processed through certified payment gateways that meet Payment Card Industry Data Security Standards

5. Data Retention

• Active Account Data: Retained as long as your restaurant account is active
• Order History: Maintained for 7 years for tax and legal compliance purposes, even after account deletion
• Analytics Data: Anonymized performance metrics may be retained indefinitely for platform improvement
• Deleted Account Data: Upon account deletion, personal identifiers (name, phone, email) are removed within 30 days. Financial records remain in anonymized form for legal compliance

6. Your Rights & Controls

You have full control over your data. Your rights include:

• Access: Request a complete copy of all personal and business data we hold about your restaurant
• Correction: Update or correct your restaurant profile, menu, and account details anytime via the app settings
• Deletion (Right to be Forgotten): Request total deletion of your account and associated data by contacting support. Note: some financial records may be retained for legal compliance
• Data Portability: Request your data in a structured, machine-readable format (e.g., JSON, CSV)
• Opt-Out: Disable push notifications or marketing communications at any time through app settings
• Subscription Management: Upgrade, downgrade, or cancel your subscription directly through your Apple or Google Play account settings

7. Subscription Plans & Data Access

Different subscription tiers provide different levels of features and analytics:

• Starter Plan (Free): Basic order management, 5% commission, standard analytics
• Growth Plan: Advanced analytics, coupon creation, 2% commission, priority support
• Pro Plan: Marketing campaigns, custom branding, verified badge, 0% commission, premium analytics, dedicated account manager

Your data access and features automatically adjust based on your active subscription level.

8. International Data Transfers

Your data may be stored and processed in servers located in different countries where Google Cloud Platform operates. We ensure adequate data protection measures are in place regardless of location, complying with GDPR, CCPA, and other applicable data protection regulations.

9. Account Deletion Process

You can request account deletion through:

1. Open the Nibblify Partner app
2. Navigate to Settings > Account > Delete Account
3. Confirm your choice when prompted
4. OR contact our support team at partners@nibblifyfood.com

Upon deletion, personal identifiers will be removed within 30 days. However, anonymized financial records for tax compliance and completed order data may be retained as required by law.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes via email or in-app notification. Your continued use of the Nibblify Partner app after changes constitutes acceptance of the updated policy.

11. Contact Us

For any privacy concerns, security questions, data requests, or account deletion inquiries, please contact our Data Protection Officer: