Google API Disclosure

1. Overview

Menu Enterprises LLC. (“Menu,” “we,” “us,” or “our”) uses several Google API services to enhance the platform experience for consumers and restaurant partners. This page describes which Google services are used, what data is accessed, and how that data is handled.

This disclosure is provided in compliance with the Google API Services User Data Policy, including the Limited Use requirements. By using Menu.com, you acknowledge the practices described in this disclosure.

2. Google Services We Use

Menu.com integrates with the following Google API services:

Google Maps Platform

We use the Google Maps Platform to display restaurant locations on interactive maps, render delivery area boundaries, and calculate distances between restaurants and delivery addresses.

Google Places API

The Google Places API powers address autocomplete when you enter a delivery address, providing accurate suggestions as you type. We also use place details for restaurant location verification during partner onboarding.

Google OAuth 2.0

We offer optional “Sign in with Google” authentication for both consumer and restaurant partner accounts. This provides a convenient way to create an account or log in without managing a separate password.

Google Analytics

Google Analytics helps us understand website usage patterns so we can improve the platform experience, identify issues, and measure the effectiveness of new features.

Google Fonts

We use Google Fonts for consistent, high-quality typography rendering across the platform on all devices and browsers.

3. Data Accessed Through Google APIs

The following types of data are accessed through our use of Google API services:

• Address and location data (via Places and Maps APIs) — Used for delivery routing, delivery address validation, and restaurant discovery based on proximity.
• Basic profile information (via OAuth 2.0) — Name, email address, and profile picture. This data is accessed only when you choose to sign in with Google.
• Analytics data (via Google Analytics) — Anonymized usage patterns, page views, and session data collected across the platform.

We only request the minimum scopes necessary for each service to function. We do not request access to your Google contacts, calendar, drive, or any other Google services beyond those listed above.

4. How We Use Google API Data

Each type of Google API data is used for specific, limited purposes:

Address and Location Data

• Validate delivery addresses to ensure they are within a restaurant's delivery zone
• Calculate delivery distances and estimated delivery times
• Display restaurant locations on maps for browsing and discovery

OAuth Profile Data

• Create and authenticate your Menu account
• Personalize your experience by displaying your name and profile picture

Analytics Data

• Understand how users navigate the platform to improve usability
• Identify and fix technical issues and performance bottlenecks
• Measure the adoption and effectiveness of new features

5. Data Storage and Security

We take the security and responsible handling of Google API data seriously. The following measures are in place:

• Address lookups are cached temporarily at the session level to reduce API calls and improve performance. Cached data is not persisted beyond the active session.
• OAuth tokens are stored in encrypted form and can be revoked by you at any time through your account settings.
• Analytics data is processed by Google and accessed by Menu only in aggregate form. We do not store raw analytics data on our servers.
• Data in transit is encrypted using TLS 1.2 or higher for all communications between your browser, our servers, and Google APIs.
• Data at rest is encrypted using AES-256 encryption across all storage systems.

6. Limited Use Compliance

Menu.com complies with the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• We only use Google API data for the purposes described in this disclosure and as presented within the application.
• We do not transfer Google API data to others except as necessary to provide or improve the service, as required by applicable law, or with your explicit consent.
• We do not use Google API data for serving advertisements.
• We do not allow humans to read user data obtained through Google APIs unless: you have provided consent, it is necessary for security purposes, it is required to comply with applicable law, or the data has been aggregated and anonymized for internal operations.

7. Third-Party Sharing

Google API data may be shared with the following categories of third parties, strictly as needed to provide our services:

• Restaurant partners — Your delivery address is shared with the restaurant fulfilling your order, solely for the purpose of order delivery.
• Payment processors — Address information may be shared for billing verification and fraud prevention.
• Infrastructure providers — Cloud hosting providers that store encrypted data on our behalf, subject to strict data processing agreements.

8. Your Controls

You have full control over how your Google API data is used on Menu.com. The following options are available:

Revoke Google OAuth Access

Navigate to Account Settings, then Connected Apps, find Google, and select Disconnect. This will unlink your Google account from Menu. You can continue using Menu with an email and password.

Manage Google Analytics Opt-Out

Install the Google Analytics Opt-out Browser Add-on to prevent Google Analytics from collecting data about your visits to Menu.com.

Clear Location Data

Navigate to Account Settings, then Privacy, and select Clear Saved Addresses to remove all previously stored delivery addresses from your account.

Delete Your Account

You may request full account deletion at any time. When your account is deleted, all associated Google API data is permanently removed from our systems within 30 days.

9. Changes to This Disclosure

We may update this disclosure as we add or modify our use of Google API services. When material changes are made, we will notify you through one or more of the following methods:

• Email notification to the address associated with your account
• In-app or platform notification
• Updating the “Last updated” date at the top of this page

Your continued use of the Menu platform following any changes constitutes your acknowledgment of the updated disclosure. We encourage you to review this page periodically.

10. Contact Us

If you have questions about this Google API Disclosure or how we handle data received from Google APIs, please reach out to our privacy team.