Privacy Policy

We’re Aussie-run and privacy-first. This policy explains what we collect, why we collect it, and how you can reach us. We follow the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). This policy applies to PODUPU PTY LTD (ACN 653 372 091).

What we collect

  • Restaurant account info: name, email, business details.
  • Guest feedback: dish ratings and comments — collected anonymously unless diners choose to leave details.
  • Usage data: device type, timestamps, and basic analytics to improve the service.

How we use data

  • Provide the platform and analytics dashboards.
  • Improve features and fix issues.
  • Security, fraud prevention, and compliance.

Storage and security

We host in reputable cloud regions and apply industry-standard security controls (encryption in transit, restricted access, logging). We retain data while you have an account or as required by law. You can request deletion of account data at any time.

Disclosure

We don’t sell personal information. We may share data with trusted service providers (e.g., hosting, email) under agreements, or if required by law. If ownership changes, we’ll let you know and your rights will continue.

Access and corrections

Under the APPs you can request access to your personal information and ask us to correct it if inaccurate. Contact us below and we’ll respond within a reasonable time.

International transfers

Some providers may process data outside Australia. We take steps to ensure appropriate safeguards are in place consistent with the APPs.

Contact

Questions or requests? Email anything@cravescore.app. If you’re not satisfied, you can contact the OAIC (Office of the Australian Information Commissioner).