1. Who we are

The Services are operated by Fonsaw Technologies Private Limited (“Fonsaw,” “we,” “us,” or “our”) under the MyPeki brand. Learn more about us at fonsaw.com.

Registered address:
Fonsaw Technologies Private Limited,
7th Floor Kirloskar Tech Park,
Godrej Woodsman Estate, Hebbal Kempapura,
Bengaluru, Karnataka 560024, India

MyPeki privacy requests: care@mypeki.com (subject line: Privacy Request)
Company contact: care@fonsaw.com · +91 89433 66990
Support: Support page

2. Scope

This policy applies to personal data we process in connection with the Services. It does not govern third-party sites or apps that we link to; their policies control how they handle information.

3. Information we collect

We collect information in the categories below, depending on how you use MyPeki (e.g. as a food lover, home chef, or both).

Account and authentication

• Mobile phone number and one-time verification codes processed through our authentication provider to create and secure your account.
• User identifiers assigned by our systems (e.g. user ID).

Profile and preferences

• Name, optional email, optional bio, profile photo, role (e.g. food lover / cook), notification preferences, and optional personal details you choose to provide (such as date of birth or gender) for product features like occasions or personalization.
• Apartment or building-related information you provide when registering or ordering (e.g. building selection, unit or floor details, delivery or pickup context).

Orders, payments, and logistics

• Order details: items, quantities, pricing, kitchen or cook association, delivery or pickup method, special instructions, and related timestamps and status.
• Payment-related data: payment is handled by our payment partners. We may receive limited payment metadata (e.g. transaction or session identifiers, payment status, amounts) but not your full card number, which is processed by the payment provider under their terms and privacy policy.
• Recipient or contact details you provide for delivery coordination where applicable.

Community and engagement

• Food requests, offers, messages between users where the feature is enabled, reviews and ratings, favorites, referrals, and support tickets you submit.
• Content you upload (e.g. dish photos, profile images).

Device, technical, and security

• Device type, operating system, app version, language, diagnostic logs, crash reports, and security signals to maintain reliability and prevent abuse.
• Approximate location when you grant permission (e.g. to suggest country or region, or to support building and delivery-related features).
• Push notification tokens if you enable notifications.

Legal and compliance

• Records of consents (e.g. terms and policy version), fraud-prevention signals, and information we are required to retain by law.

4. How we collect information

• Directly from you when you register, complete your profile, place orders, message others, upload content, or contact support.
• Automatically when you use the app (e.g. technical logs, crash analytics, notification setup).
• From partners such as payment processors, cloud and authentication providers, and mapping or place services where you use those features.

5. Sensitive permissions (Android / iOS)

We request access only where needed for stated features. You can revoke many permissions in device settings; some features may not work without them.

• Camera and photos: to capture or choose a profile picture and, for cooks, dish images. Images may be stored and served via our infrastructure and providers.
• Location: coarse or fine location, as permitted by your OS, to support apartment search, delivery reach, or similar features.
• Notifications: to send order updates, messages, and service announcements (according to your preferences where applicable).

6. Why we use your information (purposes)

We process personal data to:

• Provide, operate, and improve the Services (accounts, profiles, discovery, checkout, fulfillment, payouts where applicable).
• Authenticate users, secure accounts, detect fraud, and enforce our Terms.
• Communicate with you (service messages, support, optional marketing where allowed and with consent if required).
• Analyze aggregated or de-identified usage to improve performance and user experience.
• Comply with legal obligations and respond to lawful requests.
• Resolve disputes and protect our rights, users, and the public.

Depending on your region, we rely on appropriate legal bases such as performance of a contract, legitimate interests (balanced against your rights), consent where required, or legal obligation.

7. How we share information

We do not sell your personal information. We may share data with:

• Service providers who host data, send SMS or push notifications, process payments, provide maps or search, analytics, crash reporting, and security—under contracts that require appropriate protection and limited use.
• Other users where the product requires it (e.g. cook sees order details needed to prepare food; limited profile information shown in the app).
• Authorities when required by law or to protect safety and rights.
• Successors in a merger, acquisition, or asset sale, subject to safeguards and notice where required.

We use infrastructure and services that may involve Google Firebase and related Google Cloud services (e.g. authentication, database, hosting, messaging, crash reporting) and payment processors you interact with at checkout. Those providers process data under their own agreements and policies as well as our instructions where applicable.

8. International transfers

Our providers may process data in countries other than where you live. Where required, we use appropriate safeguards (such as standard contractual clauses or equivalent mechanisms) and comply with applicable transfer rules.

9. Retention

We retain information for as long as your account is active and as needed to provide the Services, comply with law, resolve disputes, and enforce agreements. Retention periods vary by data type; some logs may be kept in shortened or aggregated form. When retention ends, we delete or anonymize data where feasible.

10. Security

We implement technical and organizational measures designed to protect personal data (access controls, encryption in transit where supported, secure development practices). No method of transmission or storage is 100% secure; we encourage strong device security and prompt reporting of suspected unauthorized access.

11. Your choices and rights

Depending on where you live, you may have rights to:

• Access, correct, or update your profile in the app where available.
• Request deletion or restriction of certain processing, or object to processing based on legitimate interests.
• Withdraw consent where processing is consent-based (without affecting prior lawful processing).
• Opt out of promotional communications (service-related messages may still be sent).
• Lodge a complaint with a data protection authority.

To exercise rights, email care@mypeki.com with Privacy Request in the subject. We may verify your identity before acting. You may appeal or escalate where local law allows.

12. Children

MyPeki is not directed at children under the minimum age required to enter a contract in their region (often 13 or higher, or 18 in some jurisdictions). We do not knowingly collect personal information from children below that age. If you believe we have, contact us and we will take appropriate steps to delete the information.

13. Region-specific notices

India (DPDPA and related frameworks): You may have rights regarding access, correction, erasure, and grievance redressal. Contact us at the email above; we will honor applicable requirements after legal review.

EEA / UK / Switzerland: You may have GDPR-based rights including data portability and objection; our legal basis for each processing activity is described in general terms in Section 6. The controller is the entity named in Section 1.

California and similar U.S. states: We do not “sell” or “share” personal information for cross-context behavioral advertising as defined under the CCPA/CPRA in the typical sense; you may still request access or deletion subject to exceptions under law.

14. Changes to this policy

We may update this Privacy Policy from time to time. We will post the new version on this page and update the “Last updated” date. If changes are material, we will provide additional notice as required (e.g. in-app message or email). Continued use after the effective date constitutes acceptance of the updated policy where permitted by law.

15. Contact

MyPeki (privacy): care@mypeki.com · Support
Fonsaw (operator): fonsaw.com · care@fonsaw.com · +91 89433 66990