Privacy Policy

Foodmato Privacy Policy

Effective Date: October 2025 | Last Updated: October 2025

At Foodmato, your privacy is our priority. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website, mobile apps, or related services (collectively the “Platform”).

1. Who We Are

Foodmato / Tech Jobs Fair GmbH
Registered in Germany

📍 Address: Köpenicker Strasse 159, 10997, Berlin, Germany

📧 Email: support@foodmato.com

🌐 Website: www.foodmato.com

Foodmato acts as both a data controller (for users and delivery partners) and data processor (for restaurant partners), depending on the context of data use.

2. What Data We Collect

a. Personal Information

  • Name, phone number, email, delivery address
  • Account login credentials (hashed passwords)
  • Profile photo (optional)
  • Date of birth (optional for loyalty programs)

b. Order Information

  • Order details, item preferences, order history
  • Payment status and transaction IDs (processed by third parties like Stripe or PayPal)

c. Device & Technical Data

  • IP address, device type, browser version
  • App version, crash logs, and performance analytics

d. Location Data

  • GPS data for delivery tracking (for customers and drivers)
  • Location sharing consent is required before activation

3. How We Use Your Data

  • Process and deliver food orders
  • Facilitate payments and issue receipts
  • Notify you about order updates
  • Provide customer support
  • Send relevant offers and loyalty rewards
  • Improve our app’s performance and user experience
  • Comply with legal and tax obligations

We never sell your personal data.

4. Legal Basis for Processing

  • Contractual necessity: to fulfill your order and manage payments
  • Legitimate interest: to enhance customer experience and prevent fraud
  • Consent: for marketing communications or location-based services
  • Legal obligation: to comply with German and EU regulations (e.g., tax, KYC)

5. How We Share Your Data

Your data may be shared with:

  • Partner Restaurants – to prepare and fulfill your order
  • Delivery Partners – to deliver your order accurately
  • Payment Providers – such as Stripe or PayPal for secure payment processing
  • Service Providers – cloud hosting (Supabase, Firebase), email, and analytics providers
  • Authorities – when required by law or court order

All partners are contractually obligated to handle your data securely and comply with GDPR.

6. Data Retention

Data Type Retention Period
Order data 6 years (tax compliance)
Account data Until account deletion
Payment data 10 years (legal requirement)
Location data Up to 30 days after delivery

7. Your Rights Under GDPR

  • Access – Request a copy of your data
  • Rectify – Correct inaccurate or incomplete data
  • Delete – Request deletion (“right to be forgotten”)
  • Restrict processing – Limit data usage in certain cases
  • Data portability – Obtain your data in a machine-readable format
  • Withdraw consent – Opt out of marketing or data tracking

Requests can be sent to: 📧 support@foodmato.com
We respond within 30 days.

8. Security

  • Encrypted data transmission (HTTPS, TLS)
  • Secure payment gateways
  • Regular system audits
  • Limited employee access based on role

Despite these measures, no online service is 100% risk-free, and users should take steps to protect their own accounts.

9. International Transfers

If data is transferred outside the EU (e.g., for hosting or analytics), it is done in compliance with GDPR-approved safeguards such as Standard Contractual Clauses (SCCs).

10. Children’s Privacy

The Platform is not intended for users under 16. If we learn that we have collected data from minors, it will be deleted immediately.

11. Updates to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website and app.

12. Contact Us

📧 support@foodmato.com

📍 Foodmato / Tech Jobs Fair GmbH, Köpenicker Strasse 159, 10997, Berlin, Germany