Privacy Policy

Last updated: May 8, 2026

1. What we collect

• Account info: phone number (or email for admins), name, photo, language preference.
• Business info: business name, location, type, optional legal info (entity, EIN — hashed).
• Documents: licenses, permits, certificates you upload to your Journey.
• Identity documents (suppliers): ID, selfie, articles of incorporation. Stored encrypted, accessible only to our compliance team.
• Payment info: handled by Stripe; we do not store full card numbers.
• Usage data: pages visited, actions taken, device and browser info.

2. How we use it

• To provide the personalized Journey and the marketplace.
• To run OCR on documents and notify you of expirations.
• To verify supplier identity and businesses.
• To send transactional emails, push notifications and (opt-in) SMS.
• To improve the product (aggregated, never identifiable).

3. Who we share with

• Suppliers receive your name, contact info and request details only after they unlock your lead — and only if you keep your request open.
• Stripe processes payments.
• Google Cloud Platform hosts data and runs OCR (Vision API) and AI (Gemini) for Journey templates.
• Resend / Twilio deliver emails and SMS.

We never sell your data.

4. Data retention

We keep your account data while your account is active. If you delete your account, we anonymize personal data within 90 days. Identity documents from supplier verification are retained for 7 years for compliance.

5. Your rights

You may request access, correction, or deletion of your data by emailing privacy@restaurantjourney.com.

6. Cookies

See our Cookie Policy.

7. Changes

We will notify users of material changes via email.

8. Contact

For privacy questions, contact privacy@restaurantjourney.com.