Privacy Policy

Effective 2026-05-02. Aligned with Indonesia's UU PDP (Personal Data Protection Law) where applicable.

1. Who we are

Liat.Menu is operated from Indonesia. The DPO can be reached at liatmenu@protonmail.com.

2. What we collect

• From tenants: business name, handle, WhatsApp number (E.164), optional Telegram username, password hash.
• From visitors: a salted SHA-256 hash of your IP and user-agent when you click an order CTA — never the raw IP. We never set tracking cookies on the public menu.
• Operational logs: Apache/PHP error logs (rotating, 14 days), application logs (rotating, 14 days).

3. How we use it

To deliver the service, send activation links, count anonymous order intent (no per-visitor profile), and detect abuse.

4. Retention

• Raw order_clicks: 30 days, then aggregated into daily_click_rollups.
• Aggregated rollups: 24 months.
• Activation tokens: deleted 30 days after consumption or expiry.
• Admin audit log: 12 months.
• Account data: kept while the tenant is active; deleted 90 days after termination on request.

5. Sharing

We do not sell personal data. We share with: Cloudflare (CDN/Turnstile), our object-storage backup provider (encrypted backups), and Indonesian authorities when compelled by valid legal process.

6. Your rights (UU PDP)

You may request access, correction, deletion, or portability of your data. Contact liatmenu@protonmail.com; we respond within 30 days.

7. Security

HTTPS-only, Argon2id-equivalent password hashing, role-segregated dashboards, off-VPS encrypted backups verified monthly, principle of least privilege on database accounts.

8. Cookies

The public menu sets no cookies. The dashboard sets a single first-party session cookie for authentication and a CSRF cookie. We do not use third-party advertising or analytics cookies.

9. Changes

We will announce material changes 14 days before they take effect.