Privacy Policy

MenuDock provides a multi-tenant white-label online ordering platform for hospitality businesses in the United Kingdom. Registered business address: United Kingdom. You can reach our privacy team at privacy@menudock.co.uk.

The categories of personal data we process include:

• Account data — email address, name, hashed password (when using email/password), OAuth identifiers (Google, Apple), and the tenant(s) you are linked to.
• Authentication tokens — session tokens issued by Supabase Auth used to keep you signed in to the web and mobile apps.
• Order data — when a customer places an order on a tenant storefront: name, contact details, delivery address (where applicable), order line items, order status, and order history.
• Payment data — payments are processed by Stripe. MenuDock does not store full card numbers; we receive payment status, last four digits, and Stripe transaction references only.
• Device and push tokens — when the MenuDock Admin mobile app is installed, we collect a Firebase Cloud Messaging (FCM) push token so we can deliver new-order notifications to the device.
• Uploaded content — images and files that Tenant admins upload (product photos, logos, etc.) are stored in Supabase Storage.
• Technical data — IP address, browser/device type, OS version, language, and log data generated by our hosting and database providers. Used solely for security, abuse prevention, and debugging.
• Communications — messages you send to our support address and any feedback you submit through the platform.

The MenuDock Admin mobile app (Android package com.menudock.admin) is provided for restaurant owners and staff to manage orders. It uses the following:

• Internet — required to connect to Supabase for authentication, real-time order updates, and data sync.
• Notifications — used to alert staff to new incoming orders. You can disable notifications at any time from system settings.
• Camera (optional, when available) — used only when you actively open the QR scanner. Camera frames are processed on-device and not transmitted or stored.
• Local storage — the app caches preferences and authentication state on-device using secure storage.

The mobile app does not collect location, contacts, microphone, SMS, call logs, or advertising identifiers. It does not run third-party analytics or advertising SDKs.

• To create and operate your MenuDock account and tenant workspace.
• To process orders, payments, refunds, and order-status updates.
• To send transactional emails (order confirmations, password resets, account notices) and, where enabled by the tenant, SMS notifications via Brevo.
• To deliver push notifications about new orders to authorised devices.
• To provide customer support and respond to enquiries you send us.
• To keep the service secure, detect abuse, and meet legal obligations.
• To improve the product through aggregated, non-identifying usage signals.

• Contract — to provide the platform you (or your tenant) have signed up for.
• Legitimate interests — to keep the service secure, prevent fraud, and improve the product.
• Legal obligation — to retain transactional records for accounting and tax purposes.
• Consent — for optional marketing communications, which you can withdraw at any time.

We rely on the following processors. They handle data on our behalf under written data-processing agreements:

• Supabase — authentication, PostgreSQL database, file storage, and real-time updates (EU region).
• Stripe — payment processing and Stripe Connect payouts.
• Vercel — hosting and content delivery for the web platform.
• Brevo — transactional and (where enabled) marketing email plus SMS delivery.
• Google Firebase Cloud Messaging — delivery of push notifications to the mobile apps.
• Google & Apple — OAuth sign-in providers (only when you choose to sign in with Google or Apple).

Some processors may transfer data outside the UK/EEA. Where this happens, we rely on the UK International Data Transfer Addendum or the EU Standard Contractual Clauses.

If you place an order on a MenuDock-powered storefront, your order data is shared with the tenant (restaurant/café) that operates that storefront. That tenant is an independent data controller for its own customer data and has its own privacy terms displayed on its storefront. MenuDock does not sell personal data, and we do not share order data between tenants.

• Account data: kept while your account is active, then deleted on request.
• Order and transaction records: retained for at least 6 years to meet UK accounting and tax requirements.
• FCM push tokens: deleted when you sign out of the mobile app, uninstall the app, or when the token is reported as invalid.
• Server logs: retained for up to 90 days for security and debugging.

Under UK GDPR you have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate data.
• Request deletion of your account and associated personal data.
• Request portability of your data in a machine-readable format.
• Object to or restrict certain processing.
• Withdraw consent at any time for processing based on consent.
• Lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

To exercise any of these rights, email privacy@menudock.co.uk. We will respond within one month.

We protect personal data with industry-standard measures including TLS in transit, encryption at rest provided by Supabase, row-level security to enforce tenant isolation, hashed passwords, and access controls limited to authorised personnel. No system is perfectly secure; if we become aware of a breach affecting your personal data, we will notify you and the ICO as required by law.

Our website uses cookies and similar technologies that are strictly necessary for the service to function (authentication, session, security). We do not use third-party advertising cookies. Where optional analytics or marketing cookies are used in the future, we will ask for your consent through a cookie banner.

MenuDock is not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have, please contact us and we will delete it.

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date above and, where appropriate, notify you by email or through the app.

Questions, requests, or complaints? Email privacy@menudock.co.uk.