Vitore

Privacy Policy

Last updated: 12 October 2025

At Vitore we help restaurants deliver healthier meals and recurring subscriptions to their customers. Protecting the data you trust us with—whether you are a restaurant partner, diner, or team member—is a responsibility we take seriously. This policy explains what we collect, how we use it, and the rights available to you.

1. Mobile App (Diners)

  • Email address when you sign in with Google or create an account. We use it for authentication, receipts, support, and important service updates.
  • Precise or approximate location only after you grant permission in the app. We use location to surface nearby restaurants, estimate delivery times, and pre-fill delivery addresses.
  • Phone number when you place an order. It is shared with the restaurant fulfilling that order so they can coordinate delivery or resolve issues.
  • Order history, including selected meals, delivery instructions, and subscription preferences, so you can manage reorders, renewals, and see receipts.
  • Technical data such as device identifiers, app version, crash logs, and performance metrics to help us maintain reliability, comply with App Store and Google Play policies, and combat fraud.

2. Restaurant Partner Portal

  • Account information (name, email, profile photo) when you sign in with Google, plus any additional authorised team emails you enter.
  • Restaurant profile details you provide—description, menu, pricing, delivery zones, images, and location coordinates—so we can review, publish, and power consumer experiences.
  • Operational activity (logins, approvals, updates) so we can provide audit trails, detect unusual behaviour, and support your team.
  • If you opt to use the “Use my location” or “Pick on map” features, we collect the selected coordinates to pre-fill address fields and generate a Google Maps link for your profile.

3. How We Use Information

  • Operate and personalise the mobile app for diners, including recommendations, subscription reminders, and delivering order updates via email or push notifications.
  • Approve and publish partner restaurants, manage menus, fulfil orders, generate analytics, and provide customer support to both sides of the marketplace.
  • Send transactional messages (receipts, delivery confirmations, critical service announcements) and, where permitted, optional marketing or promotional material.
  • Improve features, monitor platform health, test usability, and protect our community against spam, abuse, or security threats.

4. Sharing & Disclosure

  • Restaurants fulfilling an order receive the diner’s name, delivery address, phone number, order contents, and relevant notes to complete the service.
  • Trusted service providers (cloud hosting, analytics, payment processors, email/SMS vendors) that help us run the platform. Each partner is bound by confidentiality and data-processing agreements.
  • Regulators, law-enforcement bodies, or other parties when legally required or necessary to protect Vitore, our partners, or our users.
  • If we participate in a merger, acquisition, or sale of assets, we will continue to protect data as outlined here and notify affected parties before transferring any personal information.
  • We never sell personal data or restaurant data to third parties.

5. Data Retention & Security

  • Draft restaurant records remain under the Firestore path “restaurants_temp/{uid}” until they are approved or you request deletion. Once published, live data is stored under “restaurants/{uid}”.
  • Consumer order history is retained so you can access receipts, manage subscriptions, and comply with accounting or legal obligations. You may request deletion where permitted.
  • Media assets (menu photos, logos) are stored in secure Google Cloud Storage buckets managed by Vitore with access controls and audit logs.
  • We use HTTPS, encryption in transit, least-privilege access policies, regular backups, and industry-standard monitoring to safeguard data.

6. Your Choices & Rights

  • Diners can update notification preferences, manage saved addresses, or request account deletion directly inside the app or by contacting support.
  • Restaurant partners can edit or remove profile information at any time from the portal. Contact us to permanently delete both draft and live copies if you leave the platform.
  • You may request a copy of the data we hold about you, ask for corrections, or object to certain processing by emailing us (details below).
  • You can revoke location permissions through your device settings. Without location we may be unable to offer certain proximity-based features.

7. International Transfers & Compliance

  • Vitore uses Google Cloud Platform data centres. Information may be processed outside your country but always under contractual safeguards, including Standard Contractual Clauses where applicable.
  • We comply with Google Play Developer Program Policies and Apple App Store Review Guidelines, including platform requirements for user consent, data minimisation, and transparent disclosure of collection practices.
  • We do not knowingly collect personal information from children under 13 (or the relevant local minimum age). If we learn we have done so, we will delete it promptly.

8. Updates to This Policy

  • We review this policy regularly and update it when laws, platform rules, or product features change.
  • Material changes will be communicated through the app, the partner portal, or by email to authorised contacts. Continuing to use Vitore after the update means you accept the revised terms.

Questions or requests?

Email us at support@vitore.app if you want to delete data, review outstanding drafts, or need a signed copy of this policy for the App Store or Google Play review processes.