This Privacy Policy explains what data the Ordermaxx mobile application ("Ordermaxx", "the app", "we", "us") collects, why we collect it, and what we do with it.
Ordermaxx is published by Save Smart Group PTY LTD ("we"), a company registered in South Africa, address 71 Queen Victoria Street, Cape Town. You can reach us at hello@ordermaxx.app.
We've tried to write this in plain English. If anything is unclear, email us.
1. The short version
- We do not track you across other apps or websites.
- We do not sell your data, ever.
- We do not show third-party ads.
- We do not have user accounts — your profile lives only on your phone.
- We collect the minimum data needed to (a) find restaurants near you, (b) read menus you scan, and (c) personalise the picks we show you.
2. What we collect
2.1 Data stored only on your device
The following information stays on your phone, in iOS's standard UserDefaults storage. We never send it to our servers.
- Your profile — age, sex, height, current weight, goal weight, activity level, dietary goal (e.g. lose weight, gain muscle), dietary preferences (e.g. vegetarian, gluten-free), allergens, and the food types you said you love or dislike during onboarding.
- Saved items — restaurants and menu items you bookmark inside the app.
- Imported order history — if you import a delivery-app CSV/JSON file to generate your "EatsWrapped", the parsed orders are stored locally.
- Recent searches — the last 8 search terms you typed.
- App-side cache — menus you've previewed, restaurant photos, item nutrition cards.
Tapping Delete account in the app erases all of the above. Uninstalling the app also removes it.
2.2 Data sent to our backend (Cloudflare Worker at ordermaxx-menu-worker.workers.dev)
We send the following to our backend only at the moment you trigger the relevant feature:
- Coarse location (your approximate latitude and longitude) — sent when you tap Allow on the location permission so we can find restaurants near you. Used to call Google Places. Not stored.
- Restaurant name / website / address — sent when you open a restaurant's menu, so we can look up or scrape the menu for that location. Cached for 30 days by restaurant (not by you).
- Menu photos — sent when you tap Scan menu and take or pick a photo. The image is processed by our backend to extract menu items and nutrition data, then discarded. We do not store your menu photos beyond the duration of the request.
- The menu item name you're viewing — sent when we generate the "what's in this dish" intelligence card. Cached for 90 days by item name (not by you).
None of this is linked to a user identifier — we don't have one. Requests are authenticated with a shared app-wide token, not a personal one.
2.3 Subscription data (Apple + Superwall)
When you subscribe inside the app:
- Apple processes the payment and sends us only a "subscription is active / inactive" signal. We never see your Apple ID, name, email, payment details, or billing address.
- Superwall (our paywall and subscription-state provider) receives an anonymous device-level identifier so it can show you the correct paywall and let you restore purchases. See Superwall's privacy policy at https://superwall.com/privacy.
2.4 Information we don't collect
We don't collect: your name, your email address, your phone number, your contacts, your photos other than menu scans, your calendar, your microphone audio, your health/fitness data, your device's advertising identifier (IDFA), your IP address (logged transiently by Cloudflare for abuse prevention, not retained).
3. Why we collect each thing
| What | Purpose | Legal basis (GDPR/POPIA) |
|---|---|---|
| Coarse location | Find restaurants near you | Your consent (the iOS permission prompt) |
| Menu photos | Extract menu items + nutrition | Performance of the service you requested |
| Restaurant name + your location | Look up the right menu | Performance of the service you requested |
| Your profile (on-device) | Personalise recommendations | Your consent (you entered it in onboarding) |
| Subscription status | Unlock paid features | Performance of contract |
4. Who we share data with
We use a small number of third parties strictly to make the app work. We do not share data with anyone for advertising or marketing purposes.
| Third party | What they receive | What for |
|---|---|---|
| Apple | Subscription transactions | Process in-app purchases |
| Cloudflare (hosting our backend) | All API requests | Run the menu-lookup backend |
| Google Places | Restaurant name, coords, country | Return restaurant photos, ratings, reviews |
| Anthropic (Claude) | Menu text, menu photos, item names | Extract menu items, estimate nutrition |
| Firecrawl | Restaurant website URLs | Scrape menu pages |
| Superwall | Anonymous device-level subscription state | Manage paywalls and restore purchases |
Each provider acts as a sub-processor under our instructions and is contractually prohibited from using your data for any other purpose.
5. How long we keep things
- On your device: until you tap Delete account in the app or uninstall.
- Menu cache on our backend: 30 days per restaurant, then evicted.
- Item-intelligence cache on our backend: 90 days per item, then evicted.
- Restaurant photo cache: indefinitely (Google Place photos are immutable).
- Menu scan photos: discarded immediately after the request completes (not retained).
- Cloudflare access logs: transient (Cloudflare's default retention, used for abuse prevention only).
6. Your rights
You have the right to:
- Access the personal data we hold about you. Because the only personal data we have is the subscription-status signal Apple gives us, this is limited — email us and we'll confirm what we can see.
- Delete all your data. Tap Profile → Delete account in the app. This wipes everything on your device. There is no server-side account to delete.
- Withdraw consent at any time by turning off location/camera/photos permissions in iOS Settings → Ordermaxx, or by deleting the app.
- Object to processing, restrict processing, or port your data — email us. Since we hold almost no server-side data tied to you, these requests are usually fulfilled by the in-app delete flow.
- Lodge a complaint with your local data protection authority (e.g. the Information Regulator in South Africa, or your national DPA in the EU/UK).
We respond to verifiable requests within 30 days.
7. Children
Ordermaxx is rated 12+ on the App Store and is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, email us and we'll delete it.
8. Security
- All traffic between the app and our backend goes over HTTPS (TLS 1.2+).
- Our backend is hosted on Cloudflare Workers and uses standard industry security practices.
- Your on-device data is stored in iOS's standard application sandbox, protected by the device's passcode/biometric lock.
No system is perfectly secure. If you believe you've found a vulnerability, please email hello@ordermaxx.app with the details.
9. International data transfers
Our backend runs on Cloudflare's global edge network, which means your requests are processed at the data centre nearest to you. Third-party sub-processors (Anthropic, Google, Superwall) may process data in the United States or other countries. Where required, we rely on standard contractual clauses or other appropriate safeguards.
10. Cookies
Ordermaxx is a mobile app — it does not use browser cookies. The web pages at ordermaxx.app (this site) do not set tracking cookies. If we add analytics later, we'll update this policy and surface a clear notice.
11. Changes to this policy
If we change this policy in a material way we'll update the "Effective date" above and, where the change is significant, notify you inside the app or by adding a notice next to the in-app link. Continued use of the app after the effective date constitutes acceptance.
12. Contact
Questions, requests, complaints:
Email: hello@ordermaxx.app
Company: Save Smart Group PTY LTD
Address: 71 Queen Victoria Street, Cape Town, South Africa
This policy is provided for transparency and to comply with the App Store Review Guidelines, the EU GDPR, the UK GDPR, the California CCPA/CPRA, and South Africa's POPIA. It does not create any rights beyond those granted by applicable law.