طيب|TayibEats
Order Food
Legal

Privacy Policy

Last updated: March 2026

1. Who We Are

TayibEats ("we", "us", or "our") operates the TayibEats platform, a halal food ordering and Muslim community service available at tayibeats.com. We serve the Muslim community nationwide.

2. Information We Collect

We collect the following information when you use TayibEats:

  • Account information: Name, email address, and optional phone number when you create a customer account.
  • Order information: Items ordered, special instructions, and order history when you place a pickup order.
  • Guest checkout information: Name, email, and phone number if you check out as a guest.
  • Location data: Your address or coordinates, stored locally in your browser, used only to show you how far you are from restaurants. We do not store your location on our servers.
  • Payment information: We use Stripe to process payments. TayibEats never sees or stores your card details. They go directly to Stripe.
  • Usage data: Server logs including IP addresses and request timestamps for security and abuse prevention.

3. How We Use Your Information

  • To process and fulfill your pickup orders.
  • To send you order confirmation and status emails.
  • To maintain your account and order history.
  • To detect and prevent fraud, abuse, and security threats.
  • To communicate platform updates or important notices.

We do not sell your personal information to third parties. We do not use your data for advertising.

4. Data Sharing

We share your information only as necessary to operate the platform:

  • Restaurants: Your name, order details, and phone number are shared with the restaurant you order from so they can prepare your order.
  • Stripe: Payment processing. Subject to Stripe's Privacy Policy.
  • Resend: Email delivery. Used only to send transactional emails (order confirmations, verification).
  • Supabase / Vercel: Database and hosting infrastructure.

5. Data Retention

We retain your account and order data for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us. Guest order records may be retained for up to 12 months for fraud prevention purposes.

6. Cookies and Local Storage

TayibEats uses cookies only for authentication (signing you into your account). We use browser localStorage to remember your address and cart between visits. This data never leaves your device. We do not use tracking or advertising cookies.

7. Security

We protect your data with HTTPS encryption, HMAC-signed session cookies, bcrypt password hashing, and rate limiting on all authentication endpoints. Passwords are never stored in plain text.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your account and personal data.
  • Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at privacy@tayibeats.com.

9. Children's Privacy

TayibEats is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with their information, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of significant changes by email. Continued use of TayibEats after changes take effect constitutes acceptance of the updated policy.

11. Contact

Questions about this policy? Reach us at privacy@tayibeats.com or through our contact page.