MyMenu.AI – Security

We do not sell personal information.
We may share data with:

1.2 Business Transfers
In case of:

• Merger
• Acquisition
• Financing or restructuring

1.3 Legal and Compliance
When required:

• By law or regulation
• To protect rights, safety, or property

All third parties are contractually obligated to maintain confidentiality and security.

We implement enterprise-grade safeguards, including:

• Secure cloud infrastructure (Azure-native architecture)
• Encryption (in transit and, where applicable, at rest)
• Role-based access controls (RBAC)
• Monitoring, logging, and alerting systems

Despite these measures, no system can guarantee absolute security.

We retain data:

• As long as necessary to provide Services
• As required under contractual agreements (MSA)
• For legitimate business purposes (analytics, reporting)
• To comply with legal obligations

Upon termination:

• Data handling and deletion follow MSA / Order Form terms

In addition to the data security measures described above, MyMenu.AI implements:

• Annual third-party security assessments
• Incident response and breach notification procedures
• Vendor risk management for all subprocessors
• Data minimization and pseudonymization where feasible

Customers requiring specific security controls (e.g., SOC2, penetration testing summaries) may request further details under an applicable NDA or MSA.