Legal

Privacy Policy

Last updated: 14 May 2026

1. Who we are

Eatoshi ("we", "us", "our") operates an online food ordering and crypto payment platform in the United Arab Emirates. This policy explains what personal data we collect, how we use it, and the rights you have over it.

2. Data we collect

  • Account: name, email, phone, password hash, language preference.
  • Orders: delivery address, items ordered, notes, contact phone, order history.
  • Payments: payment method, crypto network used, on-chain transaction hash, sending wallet address. We never see or store your private keys or seed phrase.
  • Device: IP address, browser, OS, approximate location, cookies and similar identifiers.
  • Support: messages and attachments you send us.

3. How we use it

  • Process orders, route them to restaurants and couriers, and complete delivery.
  • Confirm crypto payments by reading public blockchain data.
  • Issue refunds, vouchers, and loyalty stamps.
  • Prevent fraud, abuse, and security incidents.
  • Comply with UAE law, including tax, AML/CFT, and consumer-protection rules.
  • Improve the product and send you transactional notifications. Marketing only with your consent.

4. Sharing

We share the minimum data needed with: the restaurant fulfilling your order, the courier delivering it, hosting and infrastructure providers, fraud-prevention services, and authorities when legally required. We do not sell your personal data.

5. On-chain payments

Crypto transactions are recorded on a public blockchain. Once you broadcast a payment, the transaction hash, sending address, amount, and timestamp are permanently public and outside our control. Use a wallet or address you are comfortable being publicly visible.

6. Retention

We keep order, payment, and tax records for as long as required by UAE law (typically 5 years). Account data is kept while your account is active and deleted on request, except where retention is legally required.

7. Your rights

You may request access, correction, deletion, or export of your personal data, and you may withdraw marketing consent at any time. Email privacy@eatoshi.com.

8. Security

We use TLS in transit, encrypted storage, role-based access control, and row-level database security. No system is perfectly secure; please use a strong, unique password and notify us of any suspicious activity.

9. Children

Eatoshi is not intended for users under 18.

10. Changes

We will update this page when our practices change and revise the "Last updated" date above. Continued use of Eatoshi after changes means you accept the updated policy.

11. Contact

Questions? privacy@eatoshi.com · See also our Terms & Conditions.