Privacy Policy

• Name, email, phone number
• Approximate location (to show nearby restaurants)
• Order and transaction history
• Reviews and ratings you submit
• Device identifiers required for push notifications

• Fulfilling orders and sending pickup updates
• Improving the app experience and providing recommendations
• Communicating about offers and notifications (you can opt out at any time)
• Fraud prevention and account protection

We share the minimum necessary data with the Partner (restaurant) only to the extent needed to fulfil your order. We do not sell your data to any third party.

We keep your data while your account is active. When you delete the account, we erase your data within 30 days, except where law requires retention (e.g. transaction records for tax purposes).

• Access your data
• Correct your data
• Request deletion of your account and data
• Export your data in a readable format

On the website we use the minimum cookies needed to run the site and remember your preferred language. We do not use third-party advertising or tracking cookies.

We use the following third-party services to run Wafra:

• Firebase (Google) — push notifications
• HyperPay — online payment processing
• Cloudinary — image storage

These services receive only the minimum data needed to perform their function.

Our service is for users 18 years and older only. We do not knowingly collect data from minors.

We may update this policy from time to time. Updates will be posted here, and for material changes we will notify you in the app or by email.

For privacy inquiries, reach us at privacy@wafra.app.