Privacy Policy

1. Introduction

MYTEBETO ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our meal benefits management platform.

By using MYTEBETO, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Personal Information

We collect the following types of personal information:

From Employers:

Company name and registration details
Business contact information (address, phone, email)
Tax identification numbers
Authorized representative details
Payment and billing information

From Employees:

Full name and employee ID (MyTebeto ID)
Email address and phone number
Job title and department
Employer information
Order history and preferences

From Restaurants:

Restaurant name and business registration
Business address and contact information
Menu items and pricing
Bank account details for settlements
Operating hours and capacity

2.2 Automatically Collected Information

Device Information: IP address, browser type, device type, operating system
Usage Data: Pages visited, time spent, clicks, navigation paths
Location Data: General location based on IP address
Cookies and Tracking: Session cookies, preference cookies, analytics cookies
Log Files: Access times, error logs, performance data

2.3 Transaction Information

Order details (items, quantities, prices)
Transaction timestamps and status
Budget utilization and balance information
OTP verification records
Payment and settlement records

3. How We Use Your Information

We use collected information for the following purposes:

3.1 Service Provision

Creating and managing user accounts
Processing and fulfilling meal orders
Managing meal budgets and allocations
Facilitating payments between parties
Generating invoices and settlement reports

3.2 Communication

Sending order confirmations and updates via SMS and email
Notifying users of account activities
Providing customer support
Sending service announcements and updates
Marketing communications (with consent)

3.3 Platform Improvement

Analyzing usage patterns and trends
Improving user experience and features
Developing new services and functionalities
Conducting research and analytics
Testing new features and updates

3.4 Security and Compliance

Preventing fraud and unauthorized access
Monitoring for suspicious activities
Complying with legal obligations
Enforcing our Terms of Service
Resolving disputes and issues

4. Information Sharing and Disclosure

4.1 With Other Users

We share limited information between platform participants:

Restaurants see employee names and order details for fulfillment
Employers see aggregated employee spending data (not individual orders)
Employees see their own order history and budget information

4.2 With Service Providers

We share information with third-party service providers who assist us:

SMS gateway providers for OTP and notifications
Email service providers for communications
Payment processors for financial transactions
Cloud hosting and infrastructure providers
Analytics and monitoring services

All service providers are bound by confidentiality agreements and may only use information as necessary to perform their services.

4.3 Legal Requirements

We may disclose information when required by law or to:

Comply with legal obligations or court orders
Respond to government requests
Protect our rights and property
Prevent fraud or security threats
Protect user safety

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred to the new entity. We will notify you of any such change and provide options regarding your information.

5. Data Security

We implement appropriate technical and organizational measures to protect your information:

Encryption of data in transit and at rest
Secure authentication using OTP verification
Regular security audits and vulnerability assessments
Access controls and user permission management
Secure backup and disaster recovery procedures
Employee training on data protection

While we strive to protect your information, no method of transmission over the internet is 100% secure. You are responsible for maintaining the security of your account credentials.

6. Data Retention

We retain your information for as long as necessary to:

Provide our services and maintain your account
Comply with legal obligations (tax records, financial audits)
Resolve disputes and enforce agreements
Prevent fraud and maintain security

Specific retention periods:

Active accounts: Data retained while account is active
Transaction records: Retained for 7 years for tax compliance
Inactive accounts: Data deleted after 3 years of inactivity
Marketing data: Retained until consent is withdrawn
Log files: Retained for 90 days for security purposes

7. Your Rights and Choices

7.1 Access and Correction

You have the right to:

Access your personal information
Correct inaccurate or incomplete information
Request a copy of your data
Update your account information

7.2 Marketing Communications

You can:

Opt out of marketing emails by clicking "unsubscribe"
Opt out of marketing SMS by replying "STOP"
Manage your communication preferences in account settings

Note: You cannot opt out of essential service communications (order confirmations, account notifications).

7.3 Data Deletion

For employees: Contact your employer to request account deletion.

For employers and restaurants: Contact us at privacy@mytebeto.com to request account deletion. Note that some information may be retained for legal compliance.

7.4 Cookies

You can control cookies through your browser settings. Disabling cookies may limit your ability to use certain features of our Service.

8. Children's Privacy

MYTEBETO is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we discover that we have collected information from a child, we will delete it immediately.

9. International Data Transfers

Your information is primarily stored and processed in Zambia. If we transfer data internationally, we ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

10. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to review their privacy policies before providing any information.

11. Employee Wishlist Data

When you join our employee wishlist:

Your information is used solely to contact your employer about MYTEBETO
We do not create an account or user profile from wishlist submissions
Your data is retained until contacted status is marked or for 2 years, whichever is shorter
You can request removal from the wishlist at any time
We track your IP address and device information for fraud prevention

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Email notification to registered users
Prominent notice on our platform
Updating the "Last Updated" date

Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Data Protection Officer

For any privacy-related questions or concerns, contact our Data Protection Officer:

Data Protection Officer

MYTEBETO Platform

Email: privacy@mytebeto.com

Phone: +260 XXX XXX XXX

Address: Lusaka, Zambia

14. Compliance

MYTEBETO complies with applicable Zambian data protection laws and regulations. We are committed to protecting your privacy and handling your information responsibly.