Privacy Policy
Introduction
Purpose
Bestby Bites (“Bestby Bites,” “Company,” “we,” “us,” or “our”) operates a digital marketplace that connects consumers with surplus food offered by participating vendors.
This Privacy Policy explains how we collect, use, store, disclose, and protect personal information when you use our mobile application, website, and related services (collectively, the “Service”).
Scope and Acceptance
This Privacy Policy applies to all users of the Service, including customers, vendors, and visitors. By accessing or using the Service, you acknowledge that you have read, understood, and agree to this Privacy Policy. If you do not agree, you must discontinue use of the Service.
Interpretation and Definitions
Interpretation
Capitalized terms have the meanings assigned below, regardless of whether they appear in singular or plural form.
Definitions
Account: A unique account created to access the Service.
Affiliate: Any entity that directly or indirectly controls, is controlled by, or is under common control with the Company.
Company: Refers to Bestby Bites.
Cookies: Small text files stored on a user’s device to support functionality and analytics.
Device: Any device capable of accessing the Service, including smartphones, tablets, or computers.
Personal Data: Any information that identifies or can reasonably be linked to an identifiable individual.
Service: Refers to the Bestby Bites mobile application, website, and related services.
Service Provider: A third party that processes data on behalf of the Company.
Usage Data: Data collected automatically through interaction with the Service.
Website: Refers to bestbybites.com.
User / You: An individual or legal entity accessing or using the Service.
Information We Collect
Personal Information
We may collect personal information that you voluntarily provide when using the Service, including but not limited to the following:
- Full name
- Email address
- Phone number
- Delivery or pickup address
- Account login credentials
- Payment-related identifiers (processed by third-party providers)
- Vendor business information (business name, address, and contact details)
Usage Information
Usage information is collected automatically when you interact with the Service and may include:
- IP address
- Device identifiers and operating system
- Browser type and version
- Pages viewed, actions taken, and timestamps
- Application performance, diagnostics, and crash data
Mobile Device Information
When accessing the Service through a mobile device, we may collect additional technical information to ensure proper functionality, performance optimization, and security of the Service.
Tracking Technologies and Cookies
Use of Tracking Technologies
We use cookies and similar tracking technologies, including web beacons and pixels, to operate, secure, analyze, and improve the Service.
Categories of Cookies
Essential Cookies
Type: Session Cookies
Purpose: Enable authentication, secure account access, and fraud prevention.
Consent Cookies
Type: Persistent Cookies
Purpose: Record and manage user cookie preferences.
Functionality Cookies
Type: Persistent Cookies
Purpose: Remember user preferences such as login status and language settings.
Cookie Control
Users may disable cookies through their device or browser settings. Please note that disabling cookies may limit certain features or functionality of the Service.
Use of Personal Data
Core Operational Uses
We use personal data to support essential business operations, including:
- Operate and maintain the Service
- Create and manage customer and vendor accounts
- Facilitate surplus food listings, purchases, and order fulfillment
- Process transactions and payments
- Provide customer support and account-related communications
Improvement and Analytics
We may also use personal data to analyze and improve the performance and quality of the Service, including:
- Analyze usage trends and platform performance
- Improve functionality, reliability, and security
- Enhance overall user experience and service quality
Communications
We may contact users regarding service-related updates, security alerts, transactional messages, and promotional communications where permitted by applicable law.
Disclosure of Personal Data
Service Providers
We may share personal data with trusted service providers that support hosting, payment processing, analytics, communications, and customer support. These parties are contractually obligated to protect your information and use it only for authorized purposes.
Vendors and Customers
Limited personal data may be shared between vendors and customers solely to complete transactions, coordinate fulfillment, and provide the requested services.
Business Transfers
Personal data may be disclosed or transferred as part of a merger, acquisition, financing, reorganization, or sale of all or a portion of the Company’s assets.
Legal and Regulatory Obligations
We may disclose personal data where required to do so by law, regulation, court order, or lawful governmental request.
User Consent
We may disclose personal data for any other purpose with your explicit consent.
Data Retention
Retention Period
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including compliance with legal, accounting, and regulatory obligations.
Usage Data
Usage data is generally retained for a shorter period unless it is required for security, analytics, troubleshooting, or legal compliance.
International Data Transfers
Cross-Border Processing
Your personal data may be processed and stored outside your country or region. Data protection laws in other jurisdictions may differ from those in your location.
Safeguards
We implement reasonable administrative, technical, and organizational safeguards to protect personal data during international transfers.
User Rights and Controls
Your Rights
Depending on your jurisdiction and applicable data protection laws, you may have the right to:
- Access your personal data
- Correct inaccurate or incomplete information
- Request deletion of your personal data
- Restrict or object to certain processing activities
- Withdraw consent where applicable
Exercising Your Rights
Requests to exercise your rights may be submitted through your account settings or by contacting us directly using the information provided below.
Data Deletion
Account Deletion
Users may request deletion of their account and associated personal data in accordance with applicable laws and platform requirements.
Legal Exceptions
Certain information may be retained where required by law or for legitimate business purposes, including compliance obligations, fraud prevention, and dispute resolution.
Data Security
Security Measures
We employ commercially reasonable administrative, technical, and organizational safeguards designed to protect personal data from unauthorized access, disclosure, alteration, or destruction.
Security Limitations
While we take reasonable steps to protect your information, no system is completely secure. Accordingly, we cannot guarantee the absolute security of personal data.
Children’s Privacy
Age Limitation
The Service is not intended for individuals under the age of 13.
Data Removal
If we become aware that personal data has been collected from a child, we will take reasonable steps to delete such information promptly.
Third-Party Links
External Services
The Service may contain links to third-party websites or services that are not operated or controlled by the Company. We are not responsible for the privacy practices or content of such third-party services and encourage users to review their privacy policies.
Changes to This Privacy Policy
Updates
We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or Service functionality. Updates will be posted within the Service and reflected by the revised effective date.
Continued Use
Continued use of the Service after any changes become effective constitutes acceptance of the revised Privacy Policy.