ThrillEats Privacy Policy

Effective Date: 10/1/2025

ThrillEats, Inc. (“ThrillEats,” “we,” “our,” or “us”) values your privacy. This Privacy Policy explains how we collect, use, share, and protect your information when you use the ThrillEats app or related services.

By downloading, accessing, or using ThrillEats, you agree to this Privacy Policy. If you do not agree, please do not use the app. Click for Terms and Conditions.

1. Information We Collect

We may collect the following categories of information:

  • Account Information: Name, username, email address, password, or login credentials.

  • User-Generated Content: Reviews, ratings, photos, comments, favorites, or lists you create.

  • Usage Data: How you interact with the app (features used, frequency, time spent).

  • Device & Technical Data: Device type, operating system, app version, IP address, crash/error logs.

  • Location Information: If enabled, GPS or approximate location to support maps, itineraries, or check-ins.

  • Transaction Data: Points, badges, redemptions, or in-app purchases.

  • Communications: Emails, messages, or feedback submitted to us.

Sensitive Data: ThrillEats does not intentionally collect sensitive personal data (e.g., government IDs, financial account numbers, health records, or religious affiliations). Religious dietary restrictions (kosher, halal, vegetarian, etc.) may be mentioned in user-generated content, but ThrillEats does not verify or guarantee compliance.

2. How We Use Information

We use your information to:

  • Provide, personalize, and improve the ThrillEats app.

  • Enable gamification features (points, badges, quests, rewards).

  • Suggest recommendations and personalized itineraries.

  • Operate community features (reviews, ratings, content sharing).

  • Communicate updates, offers, and service notices.

  • Support analytics, security, and fraud prevention.

  • Ensure compliance with our Terms & Conditions.

Data Minimization: We collect only the data necessary for the purposes described, and do not use personal data for unrelated purposes.

3. Legal Basis for Processing (GDPR)

For users in the European Union and UK, we process personal data under the following legal bases:

  • Consent (when you enable location services or marketing communications).

  • Contract (to provide app functionality you request, such as account management).

  • Legal obligation (to comply with applicable law, such as responding to lawful requests).

  • Legitimate interests (to improve services, maintain security, prevent fraud, and support customer service).

4. How We Share Information

We may share information only in the following ways:

  • With Service Providers: Vendors supporting hosting, storage, analytics, push notifications, or customer support.

  • With Reward Partners: If you redeem a third-party gift card or prize, limited data may be shared to fulfill redemption.

  • With Analytics & Advertising Partners: We may use Google Analytics, Firebase, or similar SDKs to measure app usage and engagement.

  • With Payment Processors/App Stores: ThrillEats does not process or store payment card details. Any purchases are handled by app stores or third-party providers, subject to their own privacy policies.

  • For Legal Obligations: When required by law, regulation, subpoena, or to protect ThrillEats rights and users.

  • Business Transfers: If ThrillEats is involved in a merger, acquisition, or asset sale.

We do not sell personal information.

5. Cookies & Tracking Technologies

We and our partners may use cookies, device identifiers, or similar technologies to:

  • Track app performance and usage.

  • Save user preferences.

  • Support targeted content or advertising (if enabled).

Do Not Track Disclosure (California): ThrillEats does not respond to “Do Not Track” browser signals. You may control tracking through device settings.

6. Location Services

If enabled, ThrillEats may collect location data:

  • Used for maps, itineraries, check-ins, and recommendations.

  • Location is not shared with other users unless you include it in posted content.

  • You can disable location services in your device settings.

7. Data Security

We take reasonable measures to protect your data from unauthorized access, misuse, or loss. However, no system is completely secure. By using ThrillEats, you acknowledge that we cannot guarantee absolute data security.

Employee & Contractor Access: Only authorized employees and contractors with a business need have access to personal data, and they are bound by confidentiality obligations.

8. Data Retention

We retain data as long as necessary for providing services, complying with legal obligations, or resolving disputes. You may request account and data deletion at any time by contacting us at admin@thrilleats.com.

9. Push Notifications & Marketing Communications

ThrillEats may send you push notifications, alerts, or emails related to:

  • New menus, seasonal events, or food festivals

  • Gamification updates, badges, or rewards

  • App updates, offers, or service messages

You can manage or disable push notifications at any time through your device settings. You may also unsubscribe from marketing emails by following the opt-out instructions in each message.

10. Aggregated & De-Identified Data

ThrillEats may use or share aggregated and de-identified information that does not personally identify you. For example, we may publish insights such as “most popular snacks at a park” or “average ratings for seasonal events.”

This data may be used for analytics, research, marketing, or to share with partners and sponsors. It cannot reasonably be linked back to any individual user.

11. Children’s Privacy

  • ThrillEats is not directed at children under 13.

  • Users under 18 must have parental/guardian consent.

  • We do not knowingly collect personal data from children under 13. If we discover it, we will delete it.

12. Community Standards & Inclusivity

ThrillEats is committed to an inclusive, respectful community.

  • We do not moderate based on religion, beliefs, gender, or identity.

  • Discriminatory, harassing, or hateful content is prohibited and may be removed.

  • Religious dietary restrictions may be discussed, but ThrillEats does not verify compliance of any listed food item.

13. Your Privacy Rights

Depending on your location, you may have rights under laws like GDPR (EU/UK) and CCPA/CPRA (California):

  • Access: Request a copy of personal data we hold.

  • Correction: Fix inaccurate or incomplete information.

  • Deletion: Request deletion of your personal data.

  • Portability: Request a portable copy of your data.

  • Opt-Out of Sale/Sharing: ThrillEats does not sell data, but you may opt out of third-party sharing for marketing.

  • Withdraw Consent: You may withdraw consent for certain processing (e.g., location services) at any time.

  • Right to Lodge a Complaint: If you are located in the EU/UK, you may also lodge a complaint with your local supervisory authority.

Verification Process: To protect your account, we may require reasonable verification (such as confirming account details or responding via your registered email) before fulfilling requests.

14. Data Storage & Transfers

Your data may be stored on servers in the United States and other jurisdictions (including Google Firebase/Cloud).

Cross-Border Transfers (GDPR): Where data is transferred outside the EU/EEA or UK, we rely on lawful mechanisms such as Standard Contractual Clauses (SCCs) or equivalent safeguards.

15. Automated Decision-Making

ThrillEats may use automated systems (e.g., to assign badges, award points, or trigger rewards). These processes do not produce legal or significant effects on users, and users can always contact ThrillEats for assistance.

16. Breach Notification

If a breach occurs that may affect your personal data, we will notify you and regulators as required by law.

17. Third-Party Links & Services

ThrillEats may link to external sites or integrate third-party services. We are not responsible for their privacy practices, policies, or content.

18. Force Majeure

We are not responsible for failure to safeguard or provide services due to events outside our control, including natural disasters, power outages, pandemics, or system failures.

19. Arbitration & Dispute Resolution

Disputes relating to this Privacy Policy shall follow the arbitration and dispute resolution process set forth in our Terms & Conditions.

20. Severability

If any provision of this Privacy Policy is found invalid or unenforceable, the remaining provisions will remain in full effect.

21. Data Controller

ThrillEats, Inc. is the data controller for the information processed through the app. If required by law, ThrillEats may appoint an EU or UK representative or Data Protection Officer (DPO) to handle privacy inquiries from users in those regions.

22. Changes to Privacy Policy

We may update this Privacy Policy from time to time. Continued use of the app after updates constitutes acceptance of the revised policy.

23. Contact Us

For privacy inquiries, legal requests, or to exercise your rights, contact:

ThrillEats, Inc.
admin@thrilleats.com

If you are in the EU/UK, you also have the right to lodge complaints with your local supervisory authority.

✨ In short: ThrillEats collects only what it needs to power your foodie adventures, keeps it safe, and gives you control. We send push notifications for events and menus, and we may share anonymized stats like “Top Rated Foods”, but never your identity. You can access, delete, or update your data anytime. We don’t sell your data, and we respect your rights under GDPR, CCPA, and global privacy laws.