Trendyol Yemek integration is now live.Start free trial →
syncmenu.

LEGAL

Privacy Policy

Last updated: April 2025

1. Introduction

syncmenu.app ("we", "our", or "the Service") is operated by the syncmenu.app team. This Privacy Policy explains how we collect, use, and protect your personal data when you use our service.

By creating an account or using syncmenu.app, you agree to the practices described in this policy. If you do not agree, please discontinue use of the Service.

2. Data We Collect

We collect only what is necessary to provide the Service:

  • Account data: name, e-mail address, and password (stored as a hashed value).
  • Business data: restaurant name, address, and contact details you enter during onboarding.
  • Menu data: categories, items, prices, and images you upload or sync through the Service.
  • Platform credentials: OAuth tokens issued by Yemeksepeti, Getir Yemek, Trendyol Yemek, and other connected platforms — stored encrypted and used solely to perform menu synchronisation on your behalf.
  • Usage data: log files, IP address, browser type, and pages visited, collected automatically for security and performance monitoring.

3. How We Use Your Data

  • To create and manage your account.
  • To synchronise your menu across connected delivery platforms on your instruction.
  • To send transactional e-mails (account verification, invoices, alerts).
  • To detect fraud, abuse, and security incidents.
  • To improve the Service through anonymised, aggregated analytics — never tied back to individual users.

We do not use your data for advertising and we never sell it to third parties.

4. Data Sharing

We share your data only with sub-processors required to operate the Service:

  • Cloud infrastructure (hosting, database, object storage) — servers located in the EU/EEA or Turkey.
  • Payment processor — to handle subscription billing; we never store full card details.
  • Transactional e-mail provider — to deliver system-generated e-mails.
  • Delivery platform APIs — your menu data is sent to the platforms you explicitly connect.

All sub-processors are bound by data-processing agreements that prohibit them from using your data for their own purposes.

5. Data Retention

We retain your data for as long as your account is active. If you delete your account, we permanently delete your personal data within 30 days, except where we are legally required to retain records for longer (e.g., financial records for 5 years under Turkish commercial law).

6. Security

We use industry-standard safeguards: TLS in transit, AES-256 encryption at rest for sensitive credentials, hashed passwords (bcrypt), and regular security audits. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.

7. Cookies

We use strictly necessary cookies to maintain your session and a small number of analytics cookies (first-party, anonymised) to understand aggregate usage patterns. We do not use third-party advertising cookies.

8. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, or export your personal data. To exercise these rights, e-mail us at info@syncmenu.app. We will respond within 30 days.

Turkish residents may additionally refer to the KVKK notice available at syncmenu.app/kvkk.

9. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via e-mail or a prominent notice in the app at least 14 days before they take effect.

10. Contact

Questions or complaints: info@syncmenu.app