Privacy Policy
Last updated: June 6, 2026
This Privacy Policy explains how JiuMe (揪Me) (“JiuMe”, “we”, “us”) collects, uses, shares, and protects your information when you use our group-buy ordering app and website (the “Service”).
JiuMe lets you start a group order, share a link, and have friends add menu items so an organizer can place one combined order with a store. By using the Service, you agree to the practices described here.
1. Information We Collect
We collect the following categories of information:
- Account information — When you sign up with email and password or with Google, we receive your email address and, from Google sign-in, your name and profile picture. Passwords are handled by our authentication provider and stored only as a salted hash — we never see your plaintext password.
- Profile information — Your first and last name, an optional phone number (used so a store can reach the organizer about an order), and an avatar (your Google picture or an image you upload).
- Group-order content — The store name, items, quantities, customizations, and the names participants enter when joining an order. This may include allergy or dietary notes you choose to add.
- Health-related information — Allergy and dietary notes are health-related information. We process them only to pass your order to the organizer and the store — provide them at your discretion.
- Menu photos and images — Photos of menus you take or upload, and item/store images merchants upload. Menu photos are sent to a third-party AI service for text recognition (OCR).
- Merchant information — If you operate a store, we collect your store name, address, contact channels (phone, email, optional LINE/social), opening hours, and catalog items.
- Feedback — Messages you send through the in-app feedback tool, optional screenshots you attach, the page you were on, your user agent, and the app build version.
- Technical and usage data — Limited device, browser, and diagnostic data collected automatically to keep the Service running and to detect and fix errors (see “Cookies and Local Storage” and “Error Tracking”).
2. How We Use Your Information
- To create and manage your account and authenticate you.
- To operate core features: starting group orders, joining via a shared link, locking an order, and generating summaries.
- To recognize text in menu photos so items and prices can be detected automatically.
- To look up restaurants and addresses you search for.
- To let stores receive and fulfill orders and contact the organizer when needed.
- To respond to your feedback and support requests.
- To keep the Service secure, prevent abuse and spam, and diagnose and fix errors.
- To comply with legal obligations.
3. Legal Bases for Processing
Where data-protection law (such as the EU/UK GDPR) applies, we rely on these legal bases:
- Contract — to provide the Service you request, including your account and group orders.
- Legitimate interests — to secure the Service, prevent abuse, and improve and debug the product.
- Consent — for optional information you choose to provide, such as allergy notes, an uploaded avatar, or feedback screenshots. You may withdraw consent at any time.
- Legal obligation — where we must process data to comply with applicable law.
4. Third-Party Service Providers
We share information with the following service providers (processors) only as needed to run the Service:
- Supabase — authentication, database, and file storage (hosted). Stores your account, profile, order, and uploaded files.
- Google — Google Sign-In (OAuth); Google Places and Maps for restaurant and address lookup; and Google Gemini, which receives menu photos to perform text recognition (OCR).
- Vercel — application hosting and delivery.
- Sentry — error and performance monitoring. Configured to mask text, inputs, and media so it does not capture menu photos or names.
- Expo — (mobile app) build and delivery infrastructure for the iOS and Android apps.
These providers process information on our behalf under their own terms and security commitments. We do not sell your personal information.
5. How Information Is Shared
- With other participants — the name you enter and the items you order are visible to the order's organizer and, in aggregate, to the group.
- With merchants — when an order is sent to a store, the store sees the ordered items, customizations, allergy notes, and the organizer's contact details so they can prepare and fulfill it.
- With service providers — as described in Section 4.
- For legal reasons — if required by law, regulation, legal process, or to protect the rights, property, or safety of JiuMe, our users, or others.
- Business transfers — if JiuMe is involved in a merger, acquisition, or asset sale, information may be transferred as part of that transaction.
6. Data Retention
We keep personal information for as long as your account is active or as needed to provide the Service. Group orders and saved item lists are retained so you can revisit them, and you can delete them from within the app. When you delete your account, we delete or de-identify your personal information within a reasonable period, except where we must retain it to comply with legal obligations, resolve disputes, or enforce our agreements.
7. Security
We use industry-standard measures to protect your information, including encryption in transit, hashed passwords, access controls, and database-level row security. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.
8. International Data Transfers
Our service providers may process and store information in countries other than the one you live in, including the United States. These countries may have different data-protection laws. Where required, we rely on appropriate safeguards (such as standard contractual clauses) for these transfers.
9. Your Rights and Choices
Depending on where you live, you may have the right to:
- Access the personal information we hold about you.
- Correct inaccurate information — you can edit your name, phone, and avatar in your profile.
- Delete your information or your account.
- Object to or restrict certain processing, and withdraw consent.
- Request a copy of your information in a portable format.
To exercise these rights, edit your profile in the app or contact us at support@jiu-me.com. We may need to verify your identity before acting on a request.
10. Children's Privacy
The Service is not intended for children. You must be at least 13 years old (or 16 where required by local law) to use JiuMe. We do not knowingly collect personal information from children below that age. If you believe a child has provided us information, contact us and we will delete it.
11. Cookies and Local Storage
On the web, we use cookies and browser local storage for essential functions such as keeping you signed in and remembering your language and theme preferences. On mobile, we use on-device storage (AsyncStorage) for the same purposes. The mobile app also requests camera and photo-library access so you can take or choose menu photos; these are used only for the feature you invoke.
12. Error Tracking
We use Sentry to detect and diagnose crashes and errors. It is configured to mask text, form inputs, and media, and to record session replays only when an error occurs, so it does not capture your menu photos, names, or order details.
13. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date above and, where appropriate, provide additional notice. Your continued use of the Service after an update means you accept the revised policy.
14. Contact Us
If you have questions about this Privacy Policy or how we handle your information, contact us at support@jiu-me.com.