FoodyePay - Privacy Policy

Last Updated: October 5, 2025

1. Introduction

Welcome to FoodyePay. This Privacy Policy explains how FoodyePay Technology, Inc. ("we," "us," or "our") collects, uses, shares, and protects information in relation to our mobile application, website, and any other services we provide (collectively, the "Service").

2. Information We Collect

Information You Provide to Us:

• Account & Identity Information: Your wallet address, email address (for verification), and phone number (verified via Twilio).
• Business Information: For our merchant accounts, we collect restaurant name, location information associated with Google Maps, and other details necessary for business verification (KYB).

Information We Collect Automatically:

• Usage and Log Data: We collect service-related, diagnostic, and performance information. This may include information about your activity, log files, and diagnostic, crash, and performance logs and reports.
• Blockchain Data: We may collect publicly available data from the blockchain, including transaction data related to your public wallet address.

Information from Third Parties:

We may receive information from third-party services that you connect to our Service, such as metadata from Coinbase Onramp or location data from Google Maps.

3. How We Use Your Information

• To Provide and Maintain the Service: To complete restaurant verification, facilitate transactions, and distribute platform rewards and loyalty incentives.
• For Security and Fraud Prevention: To protect the integrity of our platform, prevent fraud, and secure the Service.
• To Improve Our Service: To understand how our users interact with the Service to improve user experience and develop new features.
• For Legal and Compliance Purposes: To comply with applicable legal requirements, such as tax reporting or responding to lawful requests from law enforcement.

4. How We Share Your Information

We do not sell your personal data to advertisers or other third parties. We may share your information in the following limited circumstances:

• With Third-Party Service Providers: We share information with essential third-party vendors and partners who provide us with services, such as data hosting (Supabase), payment processing (Coinbase Onramp), verification (Twilio), and mapping services (Google Maps). These providers are contractually obligated to protect your data.
• For Legal Reasons: We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation or respond to a valid request from a law enforcement agency.

5. Data We Do NOT Collect

• Full, plaintext payment card data (this is handled directly by Coinbase Onramp).
• Biometric data.
• Government-issued identification documents (this may be handled by our KYC partners, but not stored on our servers).

6. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• Right to Access: You can request a copy of the information you have provided to us.
• Right to Rectification: You have the right to correct any inaccurate information we hold about you.
• Right to Erasure ('Right to be Forgotten'): You may request the deletion of your personal information, subject to certain legal limitations (e.g., irreversible on-chain records).
• Right to Restrict Processing: You have the right to request the restriction of certain data processing, such as opting out of marketing communications.

To exercise these rights, please contact us at the email address provided in Section 12.

7. Data Security

We implement and maintain reasonable administrative, physical, and technical security safeguards to help protect your information from loss, theft, misuse, and unauthorized access. This includes measures such as Supabase Row Level Security (RLS) and storing sensitive keys in secure environment variables. However, no electronic transmission or storage is 100% secure.

8. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. After this period, we will either delete or anonymize your information.

9. Children's Privacy

The Service is not directed to individuals under the age of 13, and we do not knowingly collect personal information from children under 13.

10. International Data Transfers

Your information may be stored and processed in any country where we have facilities or in which we engage service providers. By using the Service, you consent to the transfer of information to countries outside of your country of residence, which may have different data protection rules than those of your country.

11. Changes to This Privacy Policy

We may modify this Privacy Policy from time to time. We will post any changes on this page and update the "Last Updated" date at the top. We encourage you to review this Privacy Policy periodically.

12. Contact Us

If you have any questions or requests regarding your data protection, please contact us at: support@foodyepay.com.