Privacy Policy — MenuSelf

Last updated: October 21, 2025 • Website: www.menuself.com

At MenuSelf (hereinafter referred to as "we", "us", "our"), we attach great importance to the privacy of our users' personal data. This Privacy Policy explains what personal data we collect, how we use it, and how we protect it when you use our website, our QR-based digital menu service, and related online services.

By using our services, you agree to the terms set out in this policy.

1. Who We Collect Data From

MenuSelf serves two main user groups:

Business Owners / Restaurants: Users who register on the platform to create and manage their digital menus.
End Users / Visitors: Individuals who access the menu by scanning the QR codes at restaurants.

2. Data We Collect

Data Collected from Business Owners

Name, surname, business name
Tax number, tax office, address information
Email address and phone number
Payment and invoicing information
Login credentials (securely encrypted)
Menu contents, images, and product information

Data Collected from Customers / Visitors

Device information (browser type, operating system, screen resolution)
Approximate location information (if the user gives permission)
Usage statistics (pages visited, duration, etc.)
Cookies and analytics data

3. Purpose of Data Use

The collected data is used for the following purposes:

Provision and maintenance of the digital menu service
Creation and management of user accounts
Fulfillment of invoicing and legal obligations
Improving service quality and resolving technical issues
Communication for user support and information purposes
Compliance with legal requirements

MenuSelf never sells or leases your personal data to third parties for marketing purposes.

4. Legal Grounds (KVKK & GDPR)

Personal data is processed based on the following legal grounds:

Performance of the contract: Data required for the provision of the service.
Legal obligation: Tax, invoicing, and audit processes.
Legitimate interest: System security and performance tracking.
Explicit consent: Collection of cookies and analytics data (where necessary).

5. Data Storage and Security

All data is stored on secure servers located within the EU. Data is retained only for the necessary period or as long as legally required.

Security measures applied:

Data encryption with AES-256
Transmission security with SSL/TLS
Restriction of access to authorized personnel
Regular security tests and audits

6. Cookies

MenuSelf may use cookies to improve user experience and perform analysis. Users can reject or delete cookies via browser settings. However, disabling cookies may restrict the use of some features.

7. Your Rights Regarding Personal Data

Your rights under KVKK and GDPR include:

Right to request access to your personal data
Right to request correction or erasure
Right to object to or request restriction of processing
Right to transfer your data to another service (data portability)
Right to withdraw your explicit consent

To exercise these rights or send a request, please contact us at destek@menuself.com.

8. Third-Party Service Providers

We may collaborate with certain trusted third-party providers for payment processing, analytics, and infrastructure services. These providers process data in compliance with GDPR and KVKK requirements and are obligated to protect the data under the scope of their agreements with us.

9. Policy Updates

This Privacy Policy may be updated from time to time. Updates will be published on the website, and the "Last updated" section will be changed accordingly. Users may be notified of significant changes via email.