1. Introduction
LocalFeast ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.
Effective Date: January 2026
Contact: support@localfeast.co
2. Information We Collect
2.1 Information You Provide
- Account Information: Name, email address, business name, phone number, address, payment preferences
- Order Information: Delivery address, order details, special instructions
- Profile Information: Business description, menu items, photos, operating hours
2.2 Information Automatically Collected
- Usage Data: IP address, browser type, device information, pages visited, time and date of visits
- Cookies and Tracking: Session cookies, analytics cookies, preference cookies
3. How We Use Your Information
We use collected information for:
- Service Delivery: Process and fulfill orders, facilitate communication, process payments
- Account Management: Create and manage accounts, verify business licenses, send communications
- Communication: Send order confirmations, provide customer support, send service updates
- Improvement: Analyze usage patterns, improve user experience, develop new features
- Compliance: Comply with legal obligations, protect our rights, prevent fraud
4. Information Sharing and Disclosure
4.1 Service Providers
We share information with third-party service providers including Stripe (payments), Clerk (authentication), Vercel (hosting), Upstash (caching), and Inngest (background jobs).
4.2 Legal Requirements
We may disclose information if required by law, legal process, government requests, or to protect rights and safety.
5. Your Rights (GDPR)
If you are in the European Economic Area (EEA), you have the following rights:
- Right to Access: Request a copy of your personal data
- Right to Rectification: Correct inaccurate data
- Right to Erasure: Request deletion of your data
- Right to Restrict Processing: Limit how we use your data
- Right to Data Portability: Receive your data in a portable format
- Right to Object: Object to certain processing
- Right to Withdraw Consent: Withdraw previously given consent
6. Your Rights (CCPA)
If you are a California resident, you have the following rights:
- Right to Know: Know what personal information is collected
- Right to Delete: Request deletion of personal information
- Right to Opt-Out: Opt-out of sale of personal information (we do not sell your data)
- Non-Discrimination: We will not discriminate for exercising your rights
7. Data Security
We implement security measures including encryption in transit (HTTPS), encryption at rest, access controls, regular security audits, and secure payment processing through Stripe.
However: No method of transmission is 100% secure. We cannot guarantee absolute security.
8. Data Retention
We retain your information:
- Active Accounts: While account is active
- Inactive Accounts: 3 years after last activity
- Financial Records: 7 years (legal requirement)
- Deleted Accounts: Anonymized data may be retained for legal/operational purposes
- Verification documents: Optional ID and license uploads for cook trust badges are reviewed by authorized admins only. Approved identity documents are deleted within 90 days of verification; rejected documents within 30 days. Verification status may remain on your account after documents are deleted.
9. Cookies and Tracking
We use cookies for authentication, preferences, analytics, and security. You can control cookies through your browser settings.
Visit our Cookie Preferences page to manage your cookie settings.
10. Changes to This Policy
We may update this Privacy Policy. We will notify you of material changes by email (if significant), notice on our website, or by updating the "Last Updated" date.
Continued use after changes constitutes acceptance.