Naadan.foodNaadan.food
CartSign In

Privacy Policy

Last updated: March 16, 2026

Table of Contents

1. Introduction

At Naadan.food, operated by Easyrun Pty Ltd (ABN 67 644 964 214), trading as Naadan.food, we are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, mobile application, and related services (collectively, the "Service").

This policy applies to all users of Naadan.food, including customers who order food and suppliers (home cooks, restaurants, and grocery stores) who list and sell food through our platform.

We comply with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). For users outside Australia, we endeavour to comply with applicable data protection laws in their jurisdiction. By using our Service, you consent to the practices described in this Privacy Policy.

2. Information We Collect

We collect different types of information to provide and improve our Service:

Account Information

When you create an account, we collect your name, email address, phone number, and password. For suppliers, we also collect business name, address, ABN (Australian Business Number), and food safety certification details.

Order Information

When you place an order, we collect details about your order including items purchased, order amounts, pickup locations, order history, and any special instructions or dietary requirements you provide.

Payment Information

For online card payments, transactions are processed by a secure third-party processor such as Stripe. We do not store your full card number or card security code on our platform. For pay-at-pickup orders, payment is collected directly at pickup.

When we collect personal information, we take reasonable steps to notify you of the purpose of collection, key third-party disclosures, and relevant consequences if required data is not provided.

Device and Usage Data

We automatically collect certain information when you use our Service, including your IP address, browser type, device type, operating system, pages visited, time spent on pages, and referring URLs. This helps us understand how our Service is used and improve user experience.

3. How We Use Your Information

We use the information we collect to:

  • Process and fulfill your orders, including sending order confirmations and updates
  • Create and manage your account
  • Facilitate communication between customers and suppliers
  • Process payments and prevent fraud
  • Provide customer support and respond to inquiries
  • Send you promotional emails and notifications (with your consent)
  • Improve our Service through analytics and research
  • Comply with legal obligations and protect our rights
  • Personalize your experience and show relevant food recommendations

We will only use your personal information for the purposes for which it was collected, unless we reasonably consider that we need to use it for another reason that is compatible with the original purpose.

4. Information Sharing

With Suppliers

When you place an order, we share your name, order details, and any special instructions with the relevant supplier so they can fulfill your order. We do not share your phone number or email unless necessary for order coordination.

With Payment Processors

Online card transactions are processed securely by a third-party processor such as Stripe, whose use of your information is governed by their own Privacy Policy. For pay-at-pickup orders, no card data is shared with a payment processor.

With Service Providers

We may share information with third-party service providers who assist us in operating our Service, such as cloud hosting, analytics, email delivery, and customer support tools. These providers are contractually obligated to protect your information.

We Never Sell Your Data

Naadan.food does not sell, rent, or trade your personal information to third parties for their marketing purposes. Your data is not a product we sell.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. We align our safeguards with applicable Australian Privacy Act obligations, including APP 11. These measures include:

  • SSL/TLS encryption for all data transmitted between your browser and our servers
  • Encrypted storage of sensitive information
  • Regular security assessments and vulnerability testing
  • Access controls limiting employee access to personal data
  • Secure password hashing and authentication protocols

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to implementing best practices to safeguard your data.

Data Breach Notification

In accordance with Part IIIC of the Privacy Act 1988 (Cth) (Notifiable Data Breaches scheme), if we become aware of a data breach that is likely to result in serious harm, we will notify the affected individuals and the Office of the Australian Information Commissioner (OAIC) as soon as practicable.

6. Group Deals Data Collection and Sharing

When you participate in Group Deals, we collect additional information specific to this feature.

What We Collect

  • Aggregate order counts (e.g., "16 people joined")
  • Current tier status
  • Your locked-in price
  • Deal participation timestamps
  • Order reservation details

What We Display Publicly

  • Total number of orders (no individual identities)
  • Current tier and progress to next tier
  • Time remaining until deadline

What We Don't Share

  • Your name with other participants
  • Your email or contact information
  • Individual order details
  • Payment information

Who Sees What

Suppliers can see:

  • Total order count
  • Customer first names (for pickup identification)
  • Contact info (only after deal locks, for order fulfillment)

Other customers can see:

  • Only aggregate counts
  • NO individual participant information

Data Usage

We use Group Deal data to:

  • Calculate real-time tier status
  • Send you deal progress notifications
  • Improve our platform and features
  • Generate anonymized analytics

Your Rights

You can request deletion of your Group Deal participation history at any time by contacting support@naadan.food.

7. Your Rights

Under the Australian Privacy Act and GDPR (where applicable), you have the following rights regarding your personal information:

Access Your Data

You can request a copy of the personal information we hold about you. We will provide this within 30 days of your request, free of charge in most cases.

Correct Your Data

You can update your account information at any time through your account settings. If you believe we hold inaccurate information about you, you can request correction.

Delete Your Account

You can request deletion of your account and associated personal data. Please note that we may need to retain certain information for legal or legitimate business purposes (such as financial records for tax compliance).

Opt Out of Marketing

You can unsubscribe from marketing emails by clicking the "unsubscribe" link in any promotional email, or by updating your preferences in your account settings. Note that you will still receive transactional emails related to your orders.

8. Cookies & Tracking

We use cookies and similar tracking technologies to enhance your experience on our Service. Cookies are small text files stored on your device that help us:

  • Remember your login status and preferences
  • Understand how you use our Service
  • Analyze traffic and usage patterns
  • Provide personalized content and recommendations

Essential Cookies: Required for the Service to function (e.g., authentication, shopping cart).

Analytics Cookies: Help us understand Service usage (e.g., Google Analytics).

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of our Service.

9. Third-Party Services

Our Service may contain links to third-party websites or integrate with third-party services. We use the following key third-party services:

  • Supabase - Database and authentication
  • Vercel - Website hosting
  • Stripe - Payment processing for online card orders

These third-party services have their own privacy policies governing the use of your information. We encourage you to review their policies. We are not responsible for the privacy practices of third-party services.

Cross-Border Data Transfers

Your data may be stored and processed in Australia, the United States, or other countries where our service providers (including Supabase, Vercel, and Stripe) operate. By using our Service, you consent to the transfer of your data to these countries, which may have different data protection laws than your country of residence. We take steps to ensure your data is treated securely and in accordance with this Privacy Policy regardless of where it is processed.

10. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we discover that we have collected personal information from a child under 18 without parental consent, we will take steps to delete that information as soon as possible.

11. Data Retention

We retain your personal information for as long as necessary to provide our Service and fulfill the purposes described in this Privacy Policy. Specifically:

  • Account Data: Retained while your account is active and for 2 years after account closure
  • Order History: Retained for 7 years for tax and legal compliance
  • Payment Records: Retained for 7 years per Australian tax law requirements
  • Analytics Data: Aggregated and anonymized data may be retained indefinitely

When data is no longer needed, we securely delete or anonymize it in accordance with our data retention procedures.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

  • Update the "Last updated" date at the top of this policy
  • Notify you via email (for registered users) or through a prominent notice on our Service
  • Obtain your consent where required by applicable law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Easyrun Pty Ltd (trading as Naadan.food)

ABN: 67 644 964 214

Email: support@naadan.food

Address: Clayton South, Victoria, Australia

Contact Form: naadan.food/contact

For privacy-related complaints, you may also contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.