Get started Get started

BlazeBite Privacy Policy

Effective Date: January 1, 2025

This Privacy Policy describes how BlazeBite, operated by Avayla Solutions, LLC (“BlazeBite,” “we,” “us”), collects, uses, shares, stores, and protects your information when you (whether as an individual or on behalf of a business entity) use our website, mobile application, or related services (“Services”).

1. Information We Collect

We collect information to provide, improve, and secure our services. This data is collected through direct input from you, automated interactions, and third-party integrations.

a. Information You Provide (“BlazeBite Account Data”)

This includes information submitted by merchants, venues, or users during registration, platform use, or through customer support.

 

      • Identity and Contact Information:
        Name, phone number, and email address.


      • Venue-Specific Information:
        Venue name, venue description, and operational details like menu items.


      • Media and Branding Assets:
        Images and branding elements such as logos and venue pictures.


      • Business Financial Information:
        Tax rates, tip settings, and convenience fee settings.


    • User Preferences and Operational Data:
      Whether the venue is enabled or taking orders, and the current wait status.

b. Information Collected During Service Use (“Usage Data”)

This includes data collected automatically when users interact with BlazeBite services.

 

      • Usage Patterns:
        Session timestamps, page views, clickstream data, and interactions with platform features.


      • Location Information:
        Location data, when enabled by the user.


      • Transaction Information:
        Order details, payment status, and timestamps.


    • Operational and Performance Data:
      Metrics related to order processing, security events, and error messages.

c. Information From Third Parties (“External Data”)

We obtain data from trusted partners for transactions, marketing, and compliance.

 

      • Payment Processors:
        Transaction confirmations, fraud alerts, and chargeback notifications.


      • Analytics and Marketing Providers:
        Website interaction data, ad campaign performance metrics, and usage reports.


    • Identity Verification Services:
      Data used to verify business credentials and ensure compliance with regulations.

2. How We Use Your Information

We process your data for various purposes to deliver services, ensure compliance, and improve your experience on BlazeBite. Below are detailed explanations of how and why we use your data.

a. Service Provision and Personalization

We use your information to ensure that our services function as expected and are tailored to your needs.

 

      • Account Setup and Maintenance:
        To create and manage your account, including setting up administrative access for managing venue details such as menu items and prices.


      • Order Processing:
        To manage orders placed through BlazeBite, including item preparation, order notifications, and real-time updates on order status.


      • Service Customization:
        To personalize your experience by tailoring app views, push notifications, and feature accessibility based on venue operations, such as whether a venue is actively taking orders or in offline mode.


    • Menu and Reporting Management:
      To provide tools for managing menu changes, reporting dashboards, and venue-specific statistics like order counts and revenue metrics.

b. Payment Processing and Financial Transactions

We use your payment and financial information to facilitate secure, accurate transactions.

 

      • Payment Collection:
        To process payments from customers on behalf of your venue and deposit funds into your linked account.


      • Subscription and Fee Management:
        To charge subscription fees, apply convenience fees, and calculate tips, taxes, or refunds related to customer transactions.


    • Financial Reporting:
      To provide detailed transaction reports, including sales data, processing fees, and refunds, through the BlazeBite reporting dashboard.

c. Fraud Prevention and Security

We use data to detect, prevent, and respond to fraudulent activities and potential security threats.

 

      • Account and Identity Verification:
        To verify your identity and business credentials, ensuring compliance with regulations such as Know Your Customer (KYC) and anti-money laundering (AML) requirements.


      • Fraud Monitoring:
        To monitor transaction patterns and usage behavior for signs of suspicious activity, such as abnormal order counts or unauthorized access attempts.


    • Security Alerts:
      To notify you of potential security risks, including account breaches or suspicious login attempts, and provide steps to secure your account.

d. Compliance with Legal Obligations

We process data to comply with applicable laws, industry standards, and regulatory requirements.

 

      • Tax Reporting:
        To enable the identification, calculation, and reporting of applicable taxes for transactions processed through BlazeBite.


      • Regulatory Disclosures:
        To comply with court orders, subpoenas, or requests from regulatory authorities, including financial regulators and data protection agencies.


    • Anti-Money Laundering and Sanctions Checks:
      To cross-check your information with global watchlists and financial compliance databases as required by law.

e. Service Improvement and Development

We analyze data to improve existing services, develop new features, and enhance user satisfaction.

 

      • Usage Analytics:
        To track app performance, identify areas for improvement, and understand how users interact with various features.


      • Feedback and Surveys:
        To gather input from merchants and customers on their experience with BlazeBite, helping us prioritize new features and resolve usability issues.


    • Testing and Updates:
      To conduct testing of new features, security protocols, and system upgrades to maintain a smooth and reliable service experience.

3. Sharing Your Information

We share your information with various parties to support the provision, security, and functionality of BlazeBite’s services. We do not sell personal information under any circumstances. Below is a detailed breakdown of how and why we share your data.

a. Service Providers

We share your information with third-party service providers to facilitate core business operations. These providers act on our behalf to support and enhance BlazeBite services.

Types of service providers include:

 

      • Payment Gateways and Processors:
        These providers (e.g., Stripe) handle payment authorization, transaction processing, refunds, chargebacks, and financial reporting.


      • Cloud Storage and IT Services:
        Data storage providers securely store data, including order histories, user credentials, and financial records.


      • Marketing and Advertising Providers:
        Analytics platforms (e.g., Google Analytics) help us monitor user behavior to improve services and tailor marketing efforts.


    • Support and Maintenance Services:
      Providers that assist with customer service, app updates, and technical support.

Purpose: To ensure the smooth operation of our services, including payment processing, data storage, service analytics, and technical support.

b. Business Partners

We may share limited information with business partners to expand our service offerings, promote brand awareness, and develop co-branded initiatives.

Examples of business partners include:

 

      • Promotional Sponsors:
        We may collaborate with sponsors (e.g., corporate sponsors like beverage or food brands) to run marketing campaigns, which may involve limited sharing of venue information (e.g., venue name and promotional performance metrics).


      • Integration Partners:
        Partners that integrate with BlazeBite services to enhance business functionality, such as POS system providers or loyalty program platforms.


    • Corporate Sponsorship Programs:
      Large corporate sponsors may be granted access to aggregate, non-personalized data to evaluate the performance of sponsorship programs.

Purpose: To provide additional opportunities for business growth and to offer promotional support tailored to participating merchants and venues.

c. Legal Authorities

We may share your information when required by law, regulation, or a legal process, such as a subpoena or court order.

Situations in which we may share data include:

 

      • Compliance with Legal Obligations:
        To meet obligations under anti-money laundering (AML) and know-your-customer (KYC) regulations.


      • Law Enforcement Requests:
        In cases where law enforcement agencies request data to investigate fraud, criminal activity, or regulatory breaches.


    • Regulatory Compliance:
      To respond to inquiries or audits from regulatory bodies overseeing financial transactions, privacy compliance, or food safety.

Purpose: To ensure compliance with applicable laws, protect our rights and users’ safety, and cooperate with government or regulatory investigations.

d. Affiliated Companies

We may share your data with other business units or affiliates under Avayla Solutions, LLC for internal business operations and service optimization.

Examples include:

 

      • Shared Services:
        We may consolidate customer support, data storage, or administrative services across affiliated platforms to streamline operations.


      • Product Development:
        Affiliates may use aggregated data to develop new services or improve existing features.


    • Compliance Coordination:
      Affiliates ensure compliance with privacy laws (e.g., GDPR and CCPA) across different services.

Purpose: To enhance overall service quality and maintain a consistent user experience across related services.

e. Other Circumstances Where We May Share Your Data

In addition to the categories above, we may share your data under the following circumstances:

 

      1. Business Transfers:
        If BlazeBite undergoes a merger, acquisition, or sale of assets, your information may be transferred to the new owner or business entity.


      1. At Your Direction:
        We may share your data based on your instructions, such as when you request integration with a third-party service (e.g., loyalty program connections).


    1. Security and Risk Management:
      If necessary, we may share data to prevent or mitigate risks related to fraud, data breaches, or unauthorized access.

4. Cookies & Tracking Technologies

We use cookies and similar technologies to improve the functionality of our services, provide a secure user experience, and offer personalized content. These technologies collect certain information automatically when you interact with BlazeBite’s website, mobile app, or services.

a. What Are Cookies and Similar Technologies?

 

      • Cookies:
        Small text files are stored on your browser or device when you visit our website. They enable the recognition of your browser and retain information such as preferences or login status.


      • Web Beacons and Pixels:
        Invisible images or code embedded in our emails or webpages help us measure engagement, such as whether you opened an email or clicked a link.


    • Local Storage:
      Data is stored directly on your device by your browser to remember settings or preferences for faster access.

b. How We Use These Technologies

 

      • Authentication and Security:
        Cookies help us recognize when you are logged in, maintain your session, and protect your account from unauthorized access.


      • Service Usage Analytics:
        We use cookies to gather data on how users interact with our services, such as pages visited, features used, and time spent on the platform. This helps us improve performance and enhance usability.


      • Performance Monitoring:
        Tracking technologies allow us to identify and fix technical issues by capturing system errors, browser crashes, or latency problems.


      • Personalization:
        Cookies enable us to tailor content and recommendations based on your preferences and previous interactions, such as recently accessed menus or venue-specific features.


    • Advertising and Promotions:
      We may use cookies to deliver relevant promotions, track the effectiveness of marketing campaigns, and manage sponsored offers. For example, if you interact with a BlazeBite ad on a third-party site, cookies help us attribute your engagement to that campaign.

c. Types of Cookies We Use

 

      • Essential Cookies:
        Required for basic functions like logging in, securing your account, and processing orders. These cookies cannot be disabled without affecting service functionality.


      • Performance and Analytics Cookies:
        Used to monitor service performance and gather aggregated data on user interactions. Examples include session tracking and page load times.


      • Functional Cookies:
        Enable advanced features, such as saving your language or location preferences, without requiring you to re-enter them on subsequent visits.


    • Advertising and Targeting Cookies:
      Help us and our advertising partners show you relevant ads based on your browsing history. These cookies may track your activity across different sites to build a profile of your interests.

d. Third-Party Cookies

We collaborate with third-party service providers (e.g., Google Analytics) to collect and analyze data about user behavior. These providers may set their cookies to track your interactions with their platforms.

 

    • Google Analytics:
      Used to understand how visitors use our services and to improve site performance. Learn more or opt-out here.

e. Your Control Over Cookies

You have the option to manage your cookie preferences through your browser settings or by using opt-out tools provided by third-party services.

 

      • Browser Settings:
        Most browsers allow you to block or delete cookies. However, disabling cookies may impact your ability to use certain features of our services.


    • Mobile Devices:
      Adjust your device settings to limit ad tracking, such as enabling “Limit Ad Tracking” on iOS or “Opt Out of Ads Personalization” on Android.

5. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy. The retention period depends on the nature of the information, applicable legal or regulatory requirements, and our legitimate business needs.

a. Retention for Service Provision

We retain data to ensure the continued operation of your BlazeBite account and to provide you with access to essential services.

 

      • Account Data:
        We keep data such as your name, business details, and contact information for the duration of your account.


      • Transaction Data:
        Order histories, payment records, and operational data are stored to provide accurate reporting, enable refunds, and support other business operations.
        Transaction records are typically retained for at least the lifetime of your account.


    • Service Usage Data:
      Data related to service interactions (e.g., feature usage, session logs) is kept to help us optimize service performance, troubleshoot issues, and provide personalized features.

b. Retention for Legal and Regulatory Compliance

Certain data must be retained to comply with legal and regulatory requirements, even after your account is closed.

 

      • Financial and Tax Records:
        We are required to retain records of transactions for a legally mandated period (e.g., for tax reporting or audits). This period may vary by jurisdiction but typically ranges from 5 to 10 years.


      • Regulatory Compliance Data:
        Data collected for identity verification, AML (Anti-Money Laundering), and KYC (Know Your Customer) requirements are retained in compliance with applicable financial regulations.


    • Legal Requests:
      If we receive a valid legal request, such as a preservation order, search warrant, or subpoena, we may retain your information as required by law.

c. Retention for Fraud Prevention and Dispute Resolution

We retain data to protect the security of your account and to resolve disputes that may arise.

 

      • Fraud and Security Monitoring:
        Data such as IP addresses, transaction patterns, and login attempts are retained to help detect, investigate, and prevent fraud or unauthorized access.


      • Dispute Resolution:
        If a dispute occurs between you and a customer, service provider, or regulatory authority, we may retain relevant information (e.g., transaction details, correspondence) until the issue is fully resolved.


    • Retention After Account Closure:
      Even after account deactivation, we may retain certain data for a specified period to handle pending disputes, enforce terms, or prevent fraudulent activity.

d. Determining Retention Periods

We evaluate how long to retain your data based on the following criteria:

 

      • Purpose of Collection:
        We assess whether the information is still necessary to provide services, comply with legal obligations, or resolve disputes.


      • Type of Data:
        Different data types have varying retention periods. For example, transaction data may be retained longer than usage logs due to tax or audit requirements.


    • Legal Requirements:
      Retention periods are influenced by industry regulations, financial laws, and jurisdiction-specific mandates.

e. Secure Data Deletion

When data is no longer needed, we take steps to delete, anonymize, or securely archive it. If full deletion is not feasible due to technical or regulatory constraints, we restrict access and use of the data to prevent unauthorized access or further processing.

6. Your Rights and Choices

Depending on your location and the laws applicable to you (e.g., GDPR, CCPA), you may have certain rights regarding your personal information. BlazeBite is committed to respecting and facilitating these rights to the extent required by applicable laws.

a. Right to Access Your Data

You have the right to request access to the personal information we have collected about you.

What you can request:

 

      • A copy of your data.


    • Details on how your data is being used, including the purpose of processing, the categories of information collected, and any third parties with whom we share your data.

How to exercise this right:
Submit an access request through your BlazeBite account or contact us at info@blazebite.com. We will verify your identity before fulfilling the request and respond within the legally required timeframe.

b. Right to Correct Your Data

You can request corrections to any inaccuracies in your personal information.

What you can correct:

 

      • Incorrect or outdated contact information (e.g., name, email, phone number).


    • Business details, such as venue name, hours, or menu information.

How to exercise this right:
Update your information directly through your BlazeBite account or contact our support team if you are unable to make the changes yourself.

c. Right to Request Data Deletion

You may request that we delete your personal information under certain circumstances.

When data deletion may apply:

 

      • The data is no longer necessary for the purpose for which it was collected.


      • You withdraw consent (where data processing is based on consent).


      • You object to the processing and no overriding legitimate interest exists.


    • Your data has been processed unlawfully.

Exceptions:
We may retain certain information if required by law (e.g., for tax reporting or fraud prevention) or for legitimate business purposes (e.g., dispute resolution).

How to exercise this right:
Submit a deletion request through your BlazeBite account or contact us at info@blazebite.com. We will confirm your request and notify you of any data that cannot be deleted due to legal or regulatory obligations.

d. Right to Object to Processing (GDPR)

If you are in the European Economic Area (EEA) or the United Kingdom, you have the right to object to the processing of your data under certain circumstances.

When you may object:

 

      • If your data is being processed based on our legitimate interests, and you believe your rights outweigh those interests.


    • If your data is being used for direct marketing, you can object to further marketing communications at any time.

How to exercise this right:
Contact us at info@blazebite.com. For marketing objections, you may also opt-out directly through unsubscribe links in emails or notification settings in the BlazeBite app.

e. Right to Data Portability

Under GDPR, you have the right to request that your personal information be provided to you or transferred to another service provider in a structured, commonly used, and machine-readable format.

How to exercise this right:
Contact us at info@blazebite.com to request a data export. We will verify your identity and provide the data as required by law.

f. Right to Opt-Out of Targeted Advertising (CCPA and Similar Laws)

You may choose to opt out of data processing activities related to targeted advertising, also known as “interest-based advertising.”

What this means:
We and our advertising partners may use cookies and other tracking technologies to deliver personalized ads. By opting out, you can limit the use of your data for these purposes.

How to opt-out:

 

      • Enable the Global Privacy Control (GPC) setting in your browser.


    • Adjust your cookie preferences through your BlazeBite account or browser settings.

g. Authorized Agents (CCPA)

You may designate an authorized agent to submit privacy requests on your behalf, as permitted by the CCPA.

How to authorize an agent:
Provide written authorization and ensure the agent can verify their identity. Contact us at info@blazebite.com to submit privacy requests through your authorized agent.

h. Right to Appeal (Where Applicable)

If your privacy request is denied, you may have the right to appeal the decision.

How to appeal:
Contact us at info@blazebite.com to request a review of the denial. We will provide a response in accordance with applicable laws.

i. How to Contact Us Regarding Your Rights

To exercise any of these rights, you may:

 

      • Log into your BlazeBite account and use the available privacy management tools.


    • Contact us at: info@blazebite.com

We will verify your identity before processing your request and respond within the legally required timeframe (typically 30-45 days).

7. Security

We take the security of your data seriously and implement a range of technical and organizational measures to protect it from unauthorized access, misuse, loss, alteration, and destruction. However, despite these efforts, no system can guarantee complete security.

a. Technical Measures

We use advanced technologies to secure your information during storage, transmission, and access.

 

      • Data Encryption:
        We encrypt sensitive data both at rest and in transit using industry-standard protocols (e.g., HTTPS, TLS, and AES encryption).


      • Access Controls:
        Access to personal information is restricted to authorized personnel who require it to perform their duties. Role-based access control (RBAC) and multi-factor authentication (MFA) are used to prevent unauthorized access.


      • Secure Infrastructure:
        We host data on secure servers managed by trusted cloud providers that comply with security and privacy standards, including regular vulnerability testing.


    • Network Monitoring:
      We use intrusion detection and prevention systems to monitor suspicious activity and to protect against distributed denial-of-service (DDoS) attacks and other security threats.

b. Organizational Measures

We enforce internal policies and best practices to minimize security risks.

 

      • Employee Training:
        All employees undergo security and privacy training, emphasizing data protection responsibilities and incident response protocols.


      • Data Access Policies:
        We implement least-privilege access policies, ensuring that staff and contractors only access the data they need to perform their roles.


      • Security Audits:
        Regular audits and assessments are conducted to ensure compliance with security standards and to identify potential vulnerabilities.


    • Vendor Management:
      We assess and monitor third-party service providers to ensure they adhere to strict security protocols when handling your data.

c. Incident Response

We have a defined process in place to respond to security incidents.

 

      • Detection and Containment:
        We continuously monitor security threats. If an incident is detected, we take immediate action to contain and mitigate the impact.


      • Notification:
        If your data is affected by a breach, we will notify you as required by applicable laws, providing details about the breach and any steps you should take to protect your information.


    • Investigation and Remediation:
      We conduct a thorough investigation of security incidents to determine the cause and implement measures to prevent recurrence.

d. User Responsibilities

While we take significant steps to secure your data, you also play a critical role in maintaining the security of your account.

 

      • Account Protection:
        Keep your username, password, and other authentication credentials confidential. Use strong, unique passwords and update them periodically.


      • Avoid Phishing Attacks:
        Be cautious of unsolicited emails or messages requesting personal information or login credentials. BlazeBite will never ask for sensitive information via email.


    • Secure Devices and Networks:
      Ensure that your devices and networks are protected by antivirus software, firewalls, and secure passwords. Avoid using public Wi-Fi for accessing your BlazeBite account without a VPN.

e. No Guarantee of Absolute Security

Despite our efforts to secure your data, no system can provide 100% protection against all threats. Factors such as human error, sophisticated attacks, or vulnerabilities in third-party services may pose risks.

We encourage you to take proactive steps to secure your data and notify us immediately if you suspect any unauthorized activity on your account.

8. Children’s Privacy

BlazeBite’s services are designed for use by businesses, merchants, and users over the age of 18. Our services are not directed at, nor intended for, children under the age of 13. We do not knowingly collect, use, or share personal information from children.

a. No Intentional Collection of Data from Children

We do not knowingly solicit or collect personal information from anyone under 13. If we discover that personal information from a child has been collected without verified parental consent, we will take immediate steps to delete that information.

b. Parental Consent and Oversight

If you are a parent or guardian and believe that your child under 13 has provided personal information to BlazeBite, please contact us at info@blazebite.com. We will work with you to review and delete any relevant information in accordance with applicable laws, such as the Children’s Online Privacy Protection Act (COPPA).

c. Users Between 13 and 18

Users aged 13 to 18 may use our services only with the involvement, consent, and supervision of a parent or legal guardian. Parents or guardians are responsible for monitoring their child’s use of the platform and for providing consent where necessary.

d. Compliance with Laws

BlazeBite complies with applicable laws regarding children’s privacy, including COPPA in the United States. We have safeguards in place to prevent the unintentional collection of data from children and to ensure compliance with these regulations.

e. Age Verification

For services that involve sensitive or restricted content (e.g., age-restricted products such as alcohol), merchants and users are responsible for verifying the age of customers to ensure compliance with local laws.

9. International Data Transfers

BlazeBite operates from the United States. If you access our services from outside the U.S., your personal information may be transferred to and processed in the United States or other countries where BlazeBite or its service providers maintain servers or operations. These countries may have different data protection laws than the country in which you reside.

a. Purpose of Cross-Border Data Transfers

We transfer data internationally to provide and improve our services, including managing transactions, account settings, and customer support. Key data transfers may involve storing account details, transaction records, and service usage data on U.S.-based infrastructure.

b. Compliance with Data Protection Laws

We comply with applicable cross-border data protection laws to safeguard your information when it is transferred outside your country of residence.

For residents of the European Economic Area (EEA), United Kingdom, and Switzerland:
We implement safeguards in accordance with the General Data Protection Regulation (GDPR) to protect personal data during international transfers. These safeguards include:

 

      • Standard Contractual Clauses (SCCs):
        We enter into data processing agreements with our service providers that include SCCs approved by the European Commission, ensuring that your personal data is protected.


    • Supplementary Measures:
      Where necessary, we apply additional security measures such as encryption, access restrictions, and regular audits to protect your data.

For residents of other jurisdictions:
We follow applicable local laws governing data transfers, which may include contractual obligations or compliance with privacy frameworks such as the Asia-Pacific Economic Cooperation (APEC) Cross-Border Privacy Rules.

c. Data Access and Retention

Data transferred to the U.S. may be accessed by BlazeBite personnel or service providers to maintain your account, process payments, or provide technical support. Your data is retained in accordance with our Data Retention policy and is subject to the security measures outlined in the Security section of this policy.

d. Your Rights Regarding Data Transfers

Depending on your jurisdiction, you may have rights regarding the transfer and protection of your data, including the right to:

 

      • Request details about cross-border data transfers.


      • Access or request a copy of the safeguards in place for your data.


    • Object to transfers that do not comply with applicable privacy regulations.

To exercise these rights, contact us at info@blazebite.com.

10. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our business practices, legal obligations, or technological advancements.

a. Notification of Changes

If we make significant changes to how we collect, use, or share your information, we will notify you through one or more of the following methods:

 

      • Email notification (if you have provided an email address).


      • In-app notifications or pop-up alerts.


    • An updated notice on our website.

The effective date of the updated policy will be indicated at the top of this document.

b. Your Responsibility to Review Changes

We encourage you to periodically review this Privacy Policy to stay informed about how we protect and handle your data. Your continued use of our services after the effective date of any updates constitutes acceptance of the revised policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, you may contact us using the details below:

BlazeBite (Avayla Solutions, LLC)
Email: info@blazebite.com

Alternatively, you can contact us through the support section of our website or app. We will respond to inquiries in accordance with applicable legal requirements, typically within 30 days.

 

 

BlazeBite Stacked Logo - All White
Order. Eat. Go!
get blazebite on google
download blazebite on app store
BlazeBite Legal Links

Hit enter to search or ESC to close

Get started