SifuChefSign in

Privacy Notice

Last updated: 4 June 2026

1. Who we are

SifuChef is operated by SifuChef (the “Controller”, “we”, “us”). We are the data controller for personal data collected through the Service.

2. Data we collect

  • Account data — name, email, login credentials.
  • Workspace content — client inquiries you receive, dishes, recipes, ingredient costs, event proposals, receipts, and menu images you upload.
  • Support communications — messages you send us.
  • Usage and telemetry — pages viewed, actions taken, device identifiers, IP address, approximate location, and error logs.
  • Cookies — strictly necessary cookies for authentication and security, and analytics cookies to understand product usage.

Payment data (card numbers, billing address) is collected by Paddle.com, our Merchant of Record, directly at checkout. We do not see or store full card details.

3. Why we use it and our legal basis

  • Provide the Service (create your account, store your workspace, send proposals) — performance of the contract.
  • Security and fraud prevention — legitimate interest in protecting the Service and our users.
  • Customer support — performance of the contract and legitimate interest in helping you.
  • Product improvement and analytics — legitimate interest in improving the Service.
  • Service announcements and marketing — legitimate interest, or consent where required by law. You can opt out at any time.
  • Legal obligations — tax records, responding to lawful requests.

4. Who we share data with

  • Paddle.com — our Merchant of Record. Paddle handles checkout, subscription management, payments, tax compliance, invoicing, and refund requests.
  • Hosting and infrastructure — Supabase (database, auth, storage) and Cloudflare (edge runtime).
  • AI processing — Google (Gemini) for menu and receipt parsing of files you upload to those features.
  • Professional advisers — legal and accounting advisers, where strictly necessary.
  • Authorities — where required by law or to protect rights and safety.

We do not sell your personal data.

5. International transfers

Our subprocessors may process data outside your country, including in the United States and the EU. Where transfers involve personal data from the UK or EEA, we rely on adequacy decisions and Standard Contractual Clauses (SCCs) as appropriate.

6. Retention

We keep account and workspace data for as long as your account is active. If you close your account, we delete or anonymise your personal data within a reasonable period, except where we must keep records to meet legal, tax, or fraud-prevention obligations. Billing records held by Paddle are retained according to Paddle’s policy.

7. Your rights

Depending on where you live, you may have the right to access, correct, delete, restrict, or port your personal data, to object to processing, to withdraw consent, and to complain to your data protection authority. To exercise these rights, contact us via the support channel inside the Service. We respond within one month.

8. Security

We apply appropriate technical and organisational measures — including encryption in transit, access controls, row-level security on tenant data, and signed URLs for file access — to protect personal data.

9. Cookies

We use strictly necessary cookies for authentication and security, and limited analytics cookies. You can manage cookies through your browser settings; disabling strictly necessary cookies may prevent the Service from working.

10. Changes

We may update this notice. Material changes will be notified in the Service or by email.

11. Contact

Privacy questions? Contact SifuChef via the support channel inside the Service. Billing and refund matters: paddle.net.