BITEBOXX PRIVACY POLICY
Effective Date: March 20, 2026
Last Updated: March 20, 2026
Operated by: Anil Chouhan ("Service Provider")
---
1. Introduction
This Privacy Policy applies to the BiteBoxx mobile applications and web services (collectively referred to as the "Application"), developed and operated by Anil Chouhan (the "Service Provider"). Our services enable restaurant owners to manage their businesses and customers to discover and order food online.
By downloading or using the Application, you acknowledge that you have read, understood, and consent to the collection and use of information as described in this Policy.
---
2. Information Collection and Use
2.1 Information You Provide Directly
When you create an account, place an order, or manage a restaurant, we collect the following:
- Account Credentials: Name, email address, phone number, and password.
- Delivery Information: Physical addresses, delivery notes, and contact details.
- Business Data: Restaurant name, address, food menus, and financial reports.
- User Content: Profile photos, restaurant logos, food product images, and customer reviews.
- Payment Information: We use certified, PCI-DSS compliant third-party processors. Full payment card details are never stored on our servers.
2.2 Information Collected Automatically
While using the Application, we automatically record:
- Device Identifiers: IP address, device model, operating system version, and unique device IDs.
- Usage Activity: Features accessed, session timestamps, and time spent on specific pages.
- Precise Location (GPS): Collected only while the app is active to show nearby restaurants, track deliveries, and calculate logistics.
- Push Notification Tokens: Firebase Cloud Messaging (FCM) tokens used to deliver real-time order alerts.
---
3. Why We Collect Your Information
The Service Provider uses your information to:
- Authenticate user sessions and maintain account security.
- Facilitate food ordering, restaurant management, and delivery tracking.
- Process payments securely and generate transactional receipts.
- Deliver real-time push notifications for orders and status updates.
- Render maps and calculate delivery distances (via Google Maps).
- Conduct anonymized analytics to improve app performance and stability.
Note: We do NOT sell, rent, or trade your personal data for advertising purposes.
---
4. Android Permissions
To provide its core functions, the Application requires the following permissions. We do NOT request access to sensitive media storage (images/videos) directly; media selection is handled via the secure Android system photo picker.
- INTERNET: Communication with our servers for all core functions.
- LOCATION: Accurate restaurant discovery and real-time delivery tracking.
- BLUETOOTH: Connecting to paired thermal receipt printers (Restaurant App).
- NOTIFICATIONS: Real-time alerts for orders and delivery status updates.
- FOREGROUND SERVICE: Ensuring reliable notification delivery for active orders.
---
5. Security and Data Protection
We implement industry-standard physical, technical, and administrative safeguards:
- Encryption: All data in transit is protected using HTTPS/TLS 1.2+.
- Sandboxing: Sensitive documents, such as PDF reports and receipts, are stored in app-private storage, isolated from other applications.
- Access Control: Server-side data access is restricted to authorized personnel and is regularly audited.
---
6. Third-Party Services
The Application utilizes trusted third-party services that maintain their own privacy policies. These include:
- Google Play Services: Core platform support.
- Firebase (FCM, Crashlytics, Analytics): Push notifications, stability monitoring, and usage analysis.
- Google Maps SDK: Geospatial services and mapping.
- Payment Gateways: Secure, certified transaction processing.
Only aggregated, anonymized data is periodically transmitted to external services to assist in improving our offerings.
---
7. Data Retention and Deletion
The Service Provider retains your data for as long as your account is active and for a reasonable period thereafter to comply with legal, accounting, and regulatory obligations (up to 7 years for financial records).
To request the deletion of your account and all associated personal data, please contact us at biteboxx08@gmail.com. Deletion requests are processed within 30 days.
---
8. Your Data Rights
Subject to applicable law, you have the following rights:
- Access: Request a copy of your personal data.
- Correction: Request rectification of inaccurate information.
- Erasure: Request full closure of your account and data deletion.
- Portability: Receive your data in a machine-readable format.
- Objection: Opt-out of non-essential data processing.
---
9. Children's Privacy
We do not knowingly collect personal information from individuals under the specified age thresholds:
- Restaurant Partner App: Intended for users 18 years and above.
- Customer App: Intended for users 13 years and above.
If you believe a minor has provided data without parental consent, please contact us immediately to have the information removed.
---
10. Contact Us
For any privacy-related questions or data requests, please contact:
- Email: biteboxx08@gmail.com
- Support: support@admin.biteboxx.com
- Phone: +91 701 492 0354
- Address: Shoolini University, Solan, Himachal Pradesh — 173229, India
- Website: https://biteboxx.com
