Privacy Policy

Last updated: March 23, 2025

1. Information We Collect

We collect information you provide directly to us:

  • Account Information: Email address, username, password (encrypted), and optional profile photo
  • Ratings & Reviews: Wing ratings, comments, and photos you upload
  • Business Claims: Contact information when claiming a restaurant listing
  • Payment Information: Processed securely by Stripe (we never store full credit card numbers)

2. Automatically Collected Information

When you use our site, we automatically collect:

  • Log Data: IP address, browser type, pages visited, time spent
  • Location Data:
    • IP-Based: City-level location derived from your IP address (for showing local deals and trending wings)
    • GPS (Optional): Precise location (±500m) when you submit a rating and grant permission, to determine if you're likely at the restaurant
    • Storage: GPS coordinates are rounded to 1km precision before storage; IP addresses are hashed with SHA-256
    • Opt-out: Deny GPS permission in your browser; use a VPN to mask IP location
  • Cookies: See our Cookie section below
  • Analytics: Google Analytics helps us understand site usage

3. How We Use Your Information

  • Provide and maintain our services
  • Process restaurant subscriptions and payments
  • Send notifications about your account or activity
  • Prevent fraud and abuse
  • Comply with legal obligations

4. Data Sharing

We do not sell your personal information. We only share data with:

  • Stripe: Payment processing
  • Google: Analytics and Maps/Places API
  • Law Enforcement: When legally required

5. Your Rights (Canada & USA)

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and data
  • Export your data (ratings, comments)
  • Opt-out of marketing emails

To exercise these rights, contact us at admin@ratemywings.ca

6. Data Security

We implement appropriate security measures including:

  • Passwords hashed using industry-standard encryption (PBKDF2)
  • HTTPS/TLS encryption for all data transmission
  • Regular security updates and monitoring
  • Limited access to production servers

7. Cookies

We use cookies to:

  • Keep you logged in
  • Remember your city preference
  • Analyze site traffic (Google Analytics)

You can disable cookies in your browser settings, but some features may not work properly.

8. Data Retention

We retain your data as long as your account is active. If you delete your account:

  • Your profile and personal info are deleted within 30 days
  • Ratings may be anonymized (kept for averages, but username removed)
  • Payment records retained for 7 years (tax/legal requirement)
  • Analytics Data: Raw event logs (page views, clicks) purged after 90 days; aggregated statistics kept indefinitely
  • Login History: Successful logins purged after 90 days; failed login attempts kept for 180 days (fraud prevention)
  • Location History: GPS metadata from ratings purged after 90 days; "at restaurant" flags kept as aggregate stats only

9. Children's Privacy

Our service is not intended for users under 13. We do not knowingly collect data from children. If you believe a child has provided us with personal information, please contact us immediately.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via email or a notice on our site.

11. Your Location Privacy Rights

You have control over your location data:

  • Browser Controls: Deny GPS permission when prompted; this won't break core functionality
  • IP Location: We only store city-level data; use a VPN if you prefer not to share this
  • Rating Location: Ratings work without GPS; we just can't verify if you were "at the restaurant"
  • Data Export: Request a copy of all location data associated with your account
  • Deletion: Request immediate purging of your GPS/location history (ratings remain but location metadata removed)

12. Contact Us / Data Controller

For privacy-related questions, data requests, or to exercise your rights:

admin@ratemywings.ca

RateMyWings.ca
Saskatoon, SK, Canada

We respond to all privacy requests within 30 days as required by Canadian privacy law (PIPEDA).

Flavor Journal