Effective Date: July 20, 2025

menuPe (company "Kumani") ("we," "our," or "us") is committed to protecting the privacy of our users. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our digital menu platform. menuPe (company "Kumani") is an Indian company, and we comply with applicable Indian laws and regulations regarding data protection.

1. Information We Collect

1.1 Restaurant Data

When restaurants register and use our platform, we collect:

• Business Information: Restaurant name, business address, type of establishment
• Contact Details: Owner/manager name, phone numbers, email addresses
• Legal Information: GST number, FSSAI license, other tax identifications
• Menu Information: Item names, descriptions, prices, categories, images
• Operational Data: Business hours, delivery areas, special offers
• Financial Information: Bank account details (only when payment integration is enabled for payouts). This is considered Sensitive Personal Data or Information (SPDI) under Indian law.
• Account Credentials: Username, encrypted passwords

1.2 End Customer Data

1.3 Advertiser Data

For businesses using our advertising platform, we collect:

• Business name and contact information
• Advertisement content and creatives
• Campaign preferences and targeting parameters
• Billing information
• Campaign performance metrics

2. How We Use Your Information

2.1 Restaurant Data Usage

• Create and maintain restaurant accounts
• Display digital menus to end customers
• Process payments and payouts (when applicable)
• Provide customer support and technical assistance
• Send service-related communications and updates
• Analyze platform usage to improve our services
• Comply with legal obligations and enforce our terms
• Send marketing communications (with consent)

2.2 Advertising Data Usage

• Display advertisements on our platform
• Measure ad performance and provide analytics
• Process advertising payments
• Optimize ad delivery and targeting

3. Data Sharing and Disclosure

We respect your privacy and limit data sharing to essential purposes:

3.1 Public Information

Restaurant names, menus, prices, and other publicly visible information are displayed to end customers as part of our service.

3.2 Third-Party Service Providers

• Payment Processing: Razorpay (for secure payment processing)
• Analytics: Google Analytics (for website analytics)
• User Experience: Smartlook (for improving user experience)
• Infrastructure: Amazon Web Services (AWS) Mumbai region (for hosting)
• Communication: Email and SMS service providers

3.3 Legal Requirements

We may disclose information when required by law, court order, or government regulations, or to protect our rights and safety.

4. Data Security

We implement robust security measures to protect your data:

• All data is hosted on secure AWS servers in Mumbai, India
• SSL/TLS encryption for data transmission
• Encrypted storage of sensitive information
• Regular security audits and updates
• Access controls and authentication mechanisms
• Regular data backups
• Compliance with industry security standards

5. Cookies and Tracking Technologies

We use cookies and similar technologies for:

• Essential Cookies: Required for platform functionality and user authentication
• Analytics Cookies: Google Analytics to understand platform usage and improve services
• Session Management: To maintain your logged-in state

You can control cookies through your browser settings. However, disabling cookies may limit certain features of our platform.

6. Data Retention

We retain your data according to the following schedule:

• Active Accounts: Data is retained as long as your account is active
• Deleted Accounts: Data is retained for 3 months after account deletion
• Legal Compliance: Some data may be retained longer if required by law
• Anonymized Data: May be retained indefinitely for analytics purposes

7. Your Rights and Choices

As a user of menuPe, you have the following rights:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your data (subject to legal requirements)
• Portability: Receive your data in a structured format
• Objection: Object to certain data processing activities
• Withdrawal of Consent: Withdraw consent for marketing communications

To request data deletion, please visit: https://menupe.com/data-deletion-request

8. Children's Privacy

Our services are not directed to individuals under 18 years of age. To open a restaurant account, you must be at least 18 years old. Our end customers may be under 18 years of age, but their data is not collected by us.

9. International Data Transfers

All data is stored and processed within India on AWS Mumbai servers. We do not transfer personal data outside of India.

10. Compliance with Indian Laws

menuPe complies with applicable Indian privacy laws, including:

• Information Technology Act, 2000
• Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
• Applicable provisions of the upcoming Personal Data Protection Bill (when enacted)

11. Updates to Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or platform notifications. Your continued use of our services after changes indicates acceptance of the updated policy.

12. Grievance Officer

In accordance with Indian law, we have appointed a Grievance Officer to address privacy concerns:

13. Contact Us

For any questions or concerns about this Privacy Policy or our data practices, please contact us:

• Email: [email protected]
• Grievance Officer: [email protected]
• Data Deletion Requests: https://menupe.com/data-deletion-request

This Privacy Policy was last updated on July 20, 2025