This Privacy Policy explains how Qayema, operated by Lebify Group, collects, uses, and protects information about you when you use our service at qayema.com. By using Qayema, you agree to the practices described here.
Information we collect
Account information
When you register for a Qayema account (via email or Google), we collect your name, email address, and authentication credentials. We do not store your Google password.
Restaurant & menu data
To provide the service, we store the restaurant information, categories, dishes, prices, images, and settings you add to your account. This data belongs to you.
Usage & analytics data
We collect information about how you use the dashboard, including pages visited, actions taken, and session duration. For public menus, we collect anonymised visitor statistics — session identifiers, device type, browser, operating system, time on page, and whether the visit came from a QR code scan. We do not collect names or personal details of your guests.
Technical data
We automatically receive standard server log data, including IP addresses, request timestamps, and HTTP headers. This is used for security, debugging, and infrastructure monitoring.
Payment data
Qayema does not directly handle payment card information. Payments are processed by third-party providers (such as Stripe) who are responsible for the security of your financial data.
How we use your information
- To create and maintain your account and restaurant profile
- To deliver the Qayema dashboard and public menu features
- To provide you with visitor analytics for your menu
- To send transactional emails (account confirmation, password reset)
- To detect and prevent fraud, abuse, and security incidents
- To improve and develop our service based on usage patterns
- To comply with legal obligations
We do not sell your data. We do not use your data for advertising purposes.
Sharing your information
We share your information only in the following circumstances:
- Service providers: Infrastructure partners (hosting, databases, email delivery, image storage) that process data on our behalf under strict data processing agreements.
- AI services: When you use the AI Menu Scanner, images you upload are sent to Google's Gemini API for processing. No personally identifiable information is included.
- Legal requirements: If required by law, court order, or to protect the rights and safety of Qayema or others.
- Business transfers: In connection with a merger, acquisition, or sale of assets, with appropriate confidentiality obligations.
We never sell, rent, or trade your personal data to third parties for their own marketing purposes.
Data storage & security
Your data is stored on secure servers. We apply industry-standard security measures including encryption in transit (HTTPS/TLS), encrypted storage for sensitive fields, access controls, and regular security reviews.
No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. In the event of a data breach that affects your rights, we will notify you in accordance with applicable law.
We retain your data for as long as your account is active. When you delete your account, your data is permanently removed from our systems within 30 days, except where retention is required by law.
Cookies
We use cookies and similar technologies to operate the service. For full details, please read our Cookie Policy.
Your rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you.
- Correction: Ask us to correct inaccurate or incomplete data.
- Deletion: Request deletion of your account and associated data.
- Portability: Receive your data in a machine-readable format.
- Objection: Object to certain types of processing.
- Restriction: Request that we limit how we use your data.
To exercise any of these rights, contact us at dany.a.seifeddine@gmail.com. We will respond within 30 days.
Children's privacy
Qayema is intended for restaurant owners and operators and is not directed at children under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.
Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by displaying a notice in your dashboard at least 14 days before the changes take effect. Continued use of Qayema after that date constitutes acceptance of the updated policy.
Contact us
If you have questions or concerns about this Privacy Policy or our data practices, please contact us:
- Email: dany.a.seifeddine@gmail.com
- Company: Lebify Group
- Location: Barja, Lebanon