Privacy Policy

1. Information We Collect

Information you provide directly

• Phone number — used to create and verify your account via OTP
• Name — displayed on your profile and order history
• Email address — used for order confirmations and invoices only
• Delivery addresses — saved to your account for faster checkout
• Profile photo — optional, displayed on your profile

Information collected automatically

• Device information — device model, OS version, app version
• Location data — GPS coordinates to find nearby stores and enable delivery (see Section 5)
• Order history — items ordered, order value, timestamps
• App usage data — screens visited, features used, crash reports
• Payment method type — we store only the payment method category (UPI, card, COD), never card numbers

Information from third parties

• Firebase Authentication — phone number verification via Google Firebase
• Razorpay — payment processing (we do not store payment credentials)
• Google Maps / Places API — address search and geocoding

2. How We Use Your Information

• To create and manage your account
• To process and fulfil your food orders
• To calculate delivery charges and connect you to the nearest kitchen
• To send order confirmation and status updates via the app
• To send invoices to your email address
• To manage BlintzCoins rewards and referral bonuses
• To improve app performance and fix bugs using crash reports
• To detect and prevent fraud
• To comply with legal obligations

3. Information Sharing

We do not sell, trade, or rent your personal information to third parties. We share data only in the following limited circumstances:

• Delivery partners — your delivery address and first name are shared with the delivery rider to complete your order
• Kitchen staff — your order details (items, special instructions) are shared with the kitchen preparing your order
• Razorpay — your phone number and name are shared for payment processing
• Google Firebase — your phone number is processed for OTP verification
• Legal requirements — we may disclose data if required by law, court order, or government authority

All third-party partners are contractually bound to protect your data and use it only for the specific purpose it was shared.

4. Data Storage & Security

Your data is stored on Google Firebase servers, which are located in data centres that comply with international security standards including ISO 27001 and SOC 2.

• All data is encrypted in transit using TLS 1.2+
• Data at rest is encrypted using AES-256
• Access to user data is restricted to authorised personnel only
• We retain your account data for as long as your account is active
• Order history is retained for 3 years for legal and accounting compliance

To delete your account and all associated data, please contact us at support@blintzpizza.com. We will process deletion requests within 30 days.

5. Location Data

The Blintz Pizza app requests access to your device's location for the following purposes:

• To automatically detect your delivery area and connect you to the nearest kitchen
• To suggest your current location as a delivery address
• To verify that delivery is available at your location before you place an order

Location access is requested only when you open the app and is not tracked in the background. You can deny location permission and manually enter your address instead.

We do not share precise location data with any third party except as needed to calculate delivery routes.

6. Phone Number & SMS Verification

We use your phone number as your primary account identifier. When you register or log in:

• An OTP (One Time Password) is sent to your number via Firebase Authentication
• On Android devices, the app may request permission to automatically read the OTP SMS to speed up verification
• Your phone number is stored securely and is never shared with advertisers
• You cannot change your registered phone number — it is your permanent account identifier

7. Cookies & Analytics

Our website uses minimal cookies for essential functionality only:

• Session cookies — to maintain your browsing session
• Firebase Analytics — anonymous app usage statistics to improve user experience
• Firebase Crashlytics — anonymous crash reports to help us fix bugs

We do not use advertising cookies, tracking pixels, or third-party analytics that profile individual users.

8. Your Rights

Under applicable Indian data protection laws, you have the right to:

• Access — request a copy of all personal data we hold about you
• Correction — update your name, email, or delivery addresses in the app
• Deletion — request deletion of your account and personal data
• Portability — request your order history in a machine-readable format
• Objection — object to any processing of your data that you did not consent to

To exercise any of these rights, contact us at:

9. Children's Privacy

Our services are not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us immediately and we will delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will:

• Update the "Last Updated" date at the top of this page
• Display an in-app notification for material changes

Your continued use of the app after changes are posted constitutes your acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us: