Privacy Policy

Effective Date: September 6, 2025

1. Introduction

EatsForAI ("we," "our," or "us") operates the EatsForAI platform, which helps restaurants and food trucks become discoverable by AI systems. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

Account Information

  • Email address and authentication credentials
  • Business name and contact information
  • Restaurant or food truck details (location, hours, cuisine type)
  • Menu items, descriptions, and pricing

POS Integration Data

  • Square POS data (menu items, pricing, modifiers) when you connect your Square account
  • Payment processing information through Stripe Connect
  • Order data and transaction history

Generated Content

  • AI-generated images and descriptions for your menu items
  • Website templates and customizations
  • Content optimized for AI discovery

Usage Data

  • Platform usage analytics and performance metrics
  • Customer interactions with your generated websites
  • Technical logs and error reports

3. How We Use Your Information

  • Provide and maintain our service
  • Generate websites and profiles for your business
  • Process payments and manage subscriptions
  • Sync data with your connected POS systems
  • Generate content for your menu and business profile
  • Provide customer support and technical assistance
  • Improve our platform and develop new features
  • Send service-related notifications and updates
  • Comply with legal obligations

4. Information Sharing and Disclosure

Third-Party Services

We work with trusted third-party providers to deliver our service:

  • Database and hosting providers: For secure data storage and website hosting
  • Square: POS integration and payment processing
  • Stripe: Payment processing and Connect accounts
  • AI service providers: For content and image generation
  • Analytics providers: For website performance analytics

Public Information

Information you choose to make public through your generated website (business name, menu, hours, location) will be publicly accessible.

Legal Requirements

We may disclose your information if required by law or to protect our rights, property, or safety.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. This includes:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication measures
  • Secure hosting infrastructure

6. Data Retention

We retain your personal information only as long as necessary to provide our services and comply with legal obligations. When you delete your account, we will delete your personal data, though some anonymized usage data may be retained for analytics purposes.

7. Your Rights

General Rights

Depending on your location, you may have the following rights:

  • Access to your personal information
  • Correction of inaccurate data
  • Deletion of your personal information
  • Portability of your data
  • Opt-out of certain data processing activities
  • Withdrawal of consent where processing is based on consent

California Residents (CCPA/CPRA Rights)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: Request information about the categories and specific pieces of personal information we collect
  • Right to Delete: Request deletion of your personal information
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out: Opt-out of the sale or sharing of your personal information
  • Right to Limit: Limit the use and disclosure of sensitive personal information
  • Right to Non-Discrimination: Not receive discriminatory treatment for exercising your privacy rights

European Residents (GDPR Rights)

If you are in the European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR):

  • Right of Access: Confirm whether we process your data and request a copy
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion under certain circumstances
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Rights Related to Automated Decision-Making: Not be subject to automated decisions with legal effects

To exercise these rights, please visit our Contact page at /contact. We will respond to your request within the timeframes required by applicable law.

8. Cookies and Tracking

We use cookies and similar tracking technologies to provide authentication, analyze usage, and improve our service. Types of cookies we use include:

  • Essential Cookies: Required for authentication and basic functionality
  • Analytics Cookies: Help us understand how users interact with our platform
  • Performance Cookies: Monitor and improve website performance

You can control cookie settings through your browser preferences. Note that disabling essential cookies may affect your ability to use certain features of our service.

Do Not Track: We do not currently respond to Do Not Track signals, but we provide opt-out mechanisms for analytics and non-essential tracking.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

10. Age Restrictions

Our service is not intended for individuals under 18 years of age. You must be at least 18 years old and legally able to enter into contracts to use our service. We do not knowingly collect personal information from individuals under 18.

If we become aware that we have collected personal information from someone under 18, we will take steps to delete that information promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the effective date.

12. Data Breach Notification

In the event of a data breach that may affect your personal information, we will notify you and relevant authorities as required by applicable law, typically within 72 hours of becoming aware of the breach.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please visit our Contact page:

/contact

EatsForAI, Inc.
Los Angeles, California