EatVerify is operated by Developong Services ("EatVerify," "we," "us," or "our"), based in Accra, Ghana. This Privacy Policy explains what personal data we collect from food vendors and customers who use EatVerify, why we collect it, how we protect it, and the choices you have. By using EatVerify, you agree to the practices described here.
1Information we collect
From vendors who register
- Business name, description, area/location, and food category
- Owner's full name, phone number, WhatsApp number, and email address
- Instagram handle (optional)
- Government-issued ID type and ID number (Ghana Card, GRA TIN, passport, or voter ID)
- A photo or scan of the government-issued ID document
- A photo of the business premises (optional)
- Account password (stored in encrypted/hashed form — we never see or store your plain-text password)
From customers using the directory
- Search terms entered in the directory (not linked to your identity)
- If you submit a fraud report: the platform name, description of the incident, and optionally an uploaded screenshot
- Basic technical data such as browser type and approximate location, used only to operate the site
Customers do not need to create an account to search the directory or scan a vendor's QR code.
2How we use your information
- To review and verify vendor applications before granting a "Verified" badge
- To display a vendor's public profile, including business name, area, food types, and contact details, once verified
- To generate a unique QR code linking to the vendor's verified profile
- To send SMS notifications regarding application status (approved, rejected, or requiring resubmission)
- To investigate fraud reports and protect vendors from impersonation
- To enforce our Terms of Service and keep the platform trustworthy
- To comply with legal obligations under Ghanaian law
We never sell your personal data. EatVerify does not sell, rent, or trade vendor or customer information to third parties for marketing purposes.
3ID documents and verification data
Identity verification is the core of what makes EatVerify trustworthy, so we handle ID documents with extra care:
- ID documents are stored in a private, access-restricted file storage area. They are never made public and are never linked to your public vendor profile.
- Only you (the vendor who uploaded it) and authorised EatVerify administrators can view your ID document, and only for the purpose of verification or fraud investigation.
- Your ID number is stored separately and is never displayed on your public profile, the directory, or shared with other vendors or customers.
- Raw ID documents are automatically deleted from our storage 90 days after successful verification. We retain only the fact that verification occurred, not the document itself.
4How we share information
| What's shared | With whom | Why |
|---|
| Business name, area, food types, phone/WhatsApp, plan | Public (anyone visiting the directory) | This is the purpose of EatVerify — public verification |
| Email address, ID number, ID document | Never public | Used only for verification by EatVerify admins |
| Fraud reports | EatVerify admins, and the affected vendor (in summary form) | To investigate and alert the real business owner |
| SMS delivery (phone number only) | Africa's Talking (our SMS provider) | To send approval/rejection notifications |
| Hosting infrastructure | Google Firebase (Google Cloud Platform) | To run the website, database, and storage |
We may also disclose information if required by law, court order, or to protect the rights, property, or safety of EatVerify, our users, or the public — for example, in response to a verified law enforcement request investigating fraud.
5Data retention
- ID documents: deleted automatically 90 days after verification
- Vendor profile data: retained for as long as your account is active, plus a reasonable period after closure to prevent fraud re-registration
- Fraud reports: retained indefinitely as part of our trust and safety record
- Audit logs (admin actions such as approvals/rejections): retained indefinitely for accountability
You may request deletion of your vendor account and associated personal data at any time by contacting us — see Contact us below. Note that some information may be retained where required for legal, fraud-prevention, or accounting purposes.
6How we protect your data
- All data is transmitted over encrypted HTTPS connections
- Database access rules ensure vendors can only read and edit their own data — never another vendor's
- Sensitive fields (phone number, WhatsApp, status, verification state) can only be changed by EatVerify administrators, not by the vendor account itself — this protects you even if your account password is compromised
- ID documents are stored in a private area not accessible by the public or by other vendors
- Admin accounts use idle session timeouts and activity logging
- We follow the principle of least privilege across our systems
No system is 100% secure. While we work hard to protect your information, no method of transmission or storage is completely secure. We cannot guarantee absolute security.
7Your rights and choices
Under Ghana's Data Protection Act, 2012 (Act 843), you have the right to:
- Access the personal data we hold about you
- Correct inaccurate or incomplete data
- Request deletion of your account and associated data, subject to legal retention requirements
- Object to certain uses of your data
- Withdraw consent at any time, where processing is based on consent
To exercise any of these rights, contact us using the details in Contact us. We will respond within a reasonable timeframe.
Important note on contact details: Vendors cannot change their own phone number, WhatsApp number, or email directly through their dashboard. This is an intentional security measure to prevent fraud if an account is compromised. To update these details, contact EatVerify support directly so we can verify your identity first.
8Cookies and tracking
EatVerify uses minimal, functional browser storage to keep you signed in during your session. We do not use third-party advertising trackers or sell browsing data. Session data is cleared when you close your browser or sign out.
9Children's privacy
EatVerify is intended for business owners and adult customers. We do not knowingly collect personal data from children under 18. If you believe a child has provided us with personal data, please contact us so we can remove it.
10Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for legal reasons. We will update the "Last updated" date at the top of this page. Continued use of EatVerify after changes take effect constitutes acceptance of the revised policy.