Introduction
Welcome to mennu. We explain how we collect, use, and protect your data when you browse our site or run your QR menu experience.
This policy also covers the choices and rights you have over your personal information.
Privacy-first hospitality platform
Privacy Policy
Last updated: November 11, 2025
Enterprise-grade security
TLS encryption, bcrypt hashing, Convex hosting
Transparent retention
Detailed menu views kept 90 days then aggregated
Accessible support
Dedicated privacy desk responding within 48h
Information We Collect
We capture only what is necessary to deliver and improve your experience.
Personal information
- Name and contact details (email, phone number)
- Restaurant business profile (name, address, business info)
- Payment information handled via phonepe
- Account credentials stored as encrypted hashes
Usage data
- Menu views, session analytics, and engagement events
- Device type, browser version, IP address, and general location
- QR table scans and interaction metrics
Content data
- Menu items with descriptions, prices, and images
- Brand assets such as logos and color themes
- Staff profiles used for access management
How We Use Your Information
Data powers the features restaurants rely on daily.
- Deliver, personalize, and maintain the mennu platform
- Process payments and manage subscription lifecycles
- Send operational notifications and service updates
- Provide customer support and resolve issues quickly
- Generate analytics to help restaurants improve performance
- Detect fraud, enforce policies, and ensure platform safety
- Meet legal, tax, and regulatory obligations
Data Storage & Security
Security is designed in at every layer of our stack. Your data is safely managed under Flyinghash Coding St.
- TLS/SSL encryption for data in transit end-to-end
- bcrypt hashing for credentials with rotation policies
- Convex infrastructure with role-based access controls
- Regular security reviews, patches, and dependency audits
- Detailed analytics retained 90 days before aggregation
- Payments processed via PCI-compliant phonepe workflows
- All data is securely stored and managed by Flyinghash Coding St
Data Sharing
We never sell personal information. Sharing happens only with safeguards.
- Trusted service providers: Convex (hosting), phonepe (payments), Groq (AI services)
- Compliance requests: courts, regulators, or law enforcement when legally required
- Business continuity: mergers, acquisitions, or asset transfers with prior notice
Menu content is intentionally public via your chosen subdomain so guests can view it.
Your Rights
You stay in control of your data throughout the lifecycle.
- Access, review, or export the personal data we store about you
- Correct inaccurate records and update business information
- Request deletion where legally permissible
- Withdraw consent or object to certain processing activities
- File a complaint with relevant supervisory authorities
Cookies & Tracking
Only essential cookies and local/session storage are used for authentication and analytics. You can adjust preferences in your browser settings.
Third-Party Services
We partner with a few specialists so the platform remains fast and reliable.
- Convex for database, storage, and backend runtime
- phonepe for subscription billing and payment flows
- Groq for AI-powered content enhancements
- Google and GitHub for optional OAuth sign-in
Children’s Privacy
mennu is designed for restaurant professionals and is not directed to anyone under 18. Contact us if you believe a minor provided data so we can remove it promptly.
Changes to This Policy
We may update this policy to reflect new features, regulations, or safeguards. Updates are published here with an adjusted “Last Updated” date.
Need more help?
Reach out to the mennu privacy desk and we'll respond within two business days.
Privacy Team
privacy@mennu.in
Response time
Within 48 hours
Support hours
Mon–Fri · 9am–6pm IST