Last updated: [DD Month YYYY] · Applies to the FoodValve, FoodValve Vendor and FoodValve Ops applications and this website.
Value Workers ("FoodValve", "we", "us", "our") operates the FoodValve workplace food-court platform, comprising the FoodValve app (for employees and guests), the FoodValve Vendor app (for food businesses), the FoodValve Ops app (for site operations teams), the FoodValve admin console and this website.
This policy explains what personal data we collect, why we collect it, how it is used and shared, and the choices you have. It is published in accordance with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023.
| Category | Examples | Who provides it |
|---|---|---|
| Identity & contact | Name, phone number, email address, password (stored hashed) | All users |
| Workplace details | Employer/company, employee ID, office site, work email (for SSO) | Employees (often via your employer's roster) |
| Vendor business details | Business name, category, outlet details, bank account details for payouts | Vendors |
| Vendor compliance documents | FSSAI license, GST certificate, Shop & Establishment license, PAN, bank proof, owner ID proof | Vendors (during registration) |
| Order & preference data | Orders, subscriptions, favourites, ratings, special instructions | Employees & guests |
| Support communications | Grievances, support tickets, feedback | All users |
We do not sell your personal data.
| Recipient | What & why |
|---|---|
| Your employer (tenant company) | Subsidy utilisation and aggregate dining reports tied to their subsidy programme. Your employer does not see your payment instrument details. |
| Food vendors | Your name, order contents and pickup details — only for orders you place with that vendor. |
| Razorpay (payments) | Payment processing, refunds and settlement. Governed by Razorpay's own privacy policy. |
| Communication providers | SMS/OTP delivery (e.g. MSG91) and transactional email (e.g. SendGrid/Twilio). |
| Cloud infrastructure | Hosting, database and file storage providers (e.g. Supabase/AWS data centres) under contractual safeguards. |
| Authorities | Where required by law, court order or to protect the rights and safety of users and the platform. |
We do not access your contacts, call logs or SMS inbox.
We use industry-standard safeguards: encrypted transport (HTTPS/TLS), hashed passwords, token-based session management with rotation, role-based access control, private (non-public) document storage with time-limited access links, and audit logging of administrative actions. No system is 100% secure; if we become aware of a breach affecting your data, we will notify you and the authorities as required by law.
You can delete your account from within the app (Profile → Delete Account) or request deletion without the app via our Account Deletion page. On deletion, your personal profile is removed or irreversibly anonymised; transaction records we must keep by law are retained in de-identified or restricted form for the statutory period.
FoodValve is intended for users aged 18 years and above (or the age of majority required to transact). We do not knowingly collect data from children. If you believe a child has created an account, contact us and we will delete it.
We may update this policy from time to time. Material changes will be notified in-app or by email, and the "Last updated" date above will always reflect the current version. Continued use of the service after an update constitutes acceptance of the revised policy.
Privacy queries: privacy@foodvalve.com
Grievance Officer: see Grievance Redressal
Postal address: Value Workers, [Registered Office Address]