Privacy Policy

1. Data Controller

Ramen Joe Lda. is the entity responsible for processing your personal data under the General Data Protection Regulation (GDPR). For any privacy-related questions, contact [email protected].

2. The Ramen Joe Ecosystem

Ramen Joe operates four distinct digital components, each with its own purpose and data processing:

• Website ramenjoe.pt — institutional presence, menu, reservations, contact.

• iOS mobile app "Ramen Joe" — loyalty club, points, coupons, reservations, menu (App Store).

• Android mobile app "Ramen Joe" — same features as iOS (Google Play).

• Apple Wallet and Google Wallet passes — portable version of the loyalty card.

Each component collects only the data needed for its function, detailed in the sections below.

3. Website and Online Reservations

When booking a table on the website we collect: full name, email, phone, chosen location, date, time, number of guests, and optional notes.

Purpose: confirm the reservation, send confirmation email, and contact you in case of changes or cancellations.

Legal basis: performance of the reservation contract (GDPR Art. 6(1)(b)).

4. Mobile App — Account and Authentication

To sign in to the app (iOS or Android) you can choose one of:

• Email magic link (single-use email code)

• SMS OTP code (via Telnyx)

• Sign in with Apple (iOS only, Apple identifier)

• Sign in with Google (iOS and Android, Google identifier)

We store only the identifier of the chosen method (email, phone, Apple user ID, or Google sub) and the last sign-in time. We do not store passwords — there are no passwords in the app.

5. Mobile App — Profile

You may optionally add to your profile: first name, birthday, preferred language, and known allergens. These fields personalize your experience and let us warn you about dishes you should avoid.

The birthday is used once a year for a courtesy. It can only be set once to prevent promotion abuse.

6. Mobile App — Loyalty Points

You earn one point per visit, validated by a unique QR code generated by the app and scanned by the in-store team. We store: customer identifier, location, exact timestamp, and the staff member who granted the point (for internal audit).

Your point history is visible in your profile and used to compute your loyalty rank (Curious, Apprentice, Initiated, Loyal, Master, Legend).

7. Mobile App — Coupons and Rewards

At 5 points you unlock a complimentary starter. At 10, a complimentary ramen. Additional coupons (birthday, special campaigns) may be granted by our team.

Every redemption is logged to prevent duplicates. We do not share which coupons you redeemed with third parties.

8. Digital Wallet Passes (Apple Wallet and Google Wallet)

You can add your loyalty card to Apple Wallet (iOS) or Google Wallet (Android). The pass is digitally signed and contains: first name, current point count, loyalty rank, and an opaque pass identifier.

To keep the pass up to date, Apple and Google communicate with us through their respective services (APNs for Apple, Google Wallet API for Google). We exchange with Apple and Google only device and pass identifiers — never personal data — to signal that the pass should be refreshed.

9. Push Notifications (APNs and FCM)

If you accept push notifications from the app, your device generates a unique token which we store:

• iOS generates an APNs token (Apple Push Notification service).

• Android generates an FCM token (Firebase Cloud Messaging).

We use this token to send:

• Reservation reminders (one hour before)

• Alerts when you are a few points away from a reward

• Targeted campaigns (e.g. birthday courtesy, in-store events)

• Review prompts ~2h after a stamp is granted

• Wallet pass updates

Notification content is delivered via Apple servers (APNs) or Google servers (FCM). Tokens are automatically deactivated if your device stops renewing them (uninstall, reset).

You can revoke permission at any time:

• iOS: Settings → Notifications → Ramen Joe

• Android: Settings → Apps → Ramen Joe → Notifications

10. Device Permissions (Android and iOS)

The app asks for the minimum permissions required and never collects data from permissions you did not grant:

• Notifications (POST_NOTIFICATIONS on Android, UNNotificationSettings on iOS) — optional, for the reminders and campaigns described above.

• Location (ACCESS_FINE_LOCATION / ACCESS_COARSE_LOCATION on Android, CLLocationManager on iOS) — optional, used only to sort the list of locations by proximity. Location never leaves your device, is not sent to our servers, and is not shared with third parties.

• Camera — only when you open the in-app stamp QR scanner (Android uses CameraX, iOS uses AVFoundation). We do not capture or store images; the QR is decoded locally.

• Internet — required to sync your account, points, and reservations.

The app does NOT access contacts, photos, microphone, motion sensor, calendar, or device files.

11. Diagnostics and Stability (Firebase Crashlytics)

To keep the app stable we collect anonymized crash reports through Firebase Crashlytics (Google). These reports contain: error type, source line, device model, OS version, and app version. They never include your name, email, phone, message content, or account identifiers.

Collection is enabled by default and can be disabled on request by contacting [email protected]. Data is retained in Firebase for 90 days.

12. Sub-processors

To provide the service we rely on the following sub-processors:

• Apple Inc. (APNs, Sign in with Apple, Apple Wallet, App Store) — US, with appropriate safeguards.

• Google LLC and Firebase (Sign in with Google, Firebase Cloud Messaging, Google Wallet, Firebase Crashlytics, anonymized Firebase Analytics, Google Play) — US, with appropriate safeguards.

• Telnyx LLC (SMS OTP and reminders) — US/EU.

• Hostinger (infrastructure hosting) — EU.

Each sub-processor processes your data only for the purpose contracted with us. We never sell or rent your data to third parties for marketing purposes.

13. Data Retention

We retain data only as long as strictly necessary:

• Reservations: up to 5 years (legal record).

• App account and point history: while the account remains active.

• APNs and FCM tokens: until invalidated by the device or after 1 year of inactivity.

• OTP / magic-link codes: 10 to 15 minutes after issuance.

• Crashlytics crash reports: 90 days (Firebase retention).

After account deletion, identifiable personal data is removed within at most 30 days, except where law requires us to keep part of the records.

14. Account Deletion

You can request deletion of your app account at any time through:

• In the app: Profile → Account → Delete account.

• If you no longer have the app (uninstalled, switched phone): [email protected] with the subject "Delete account" or via https://ramenjoe.pt/en/apagar-conta.

Upon confirmation we delete your identifiable personal data, APNs/FCM tokens, issued Wallet passes, and any Google/Apple identifiers linked to the account. Unredeemed points, pending rewards and coupons expire with the deletion. Past reservations are pseudonymized (we anonymize name/email/phone) but the aggregate record is kept for 5 years for tax purposes.

15. Your Rights

Under GDPR, you have the right to:

• Access your personal data

• Rectification of inaccurate data

• Erasure of your data

• Object to processing

• Data portability

• Restriction of processing

• Lodge a complaint with the supervisory authority (CNPD in Portugal)

To exercise any of these rights, contact [email protected]. We respond within at most 30 days.

16. Cookies and Analytics

The website uses essential cookies and anonymized Google Analytics to measure aggregate traffic. The app (iOS and Android) uses no third-party cookies, does not use the Advertising ID (IDFA/AAID) and does not do advertising tracking. The app's anonymized Firebase Analytics measures only aggregate usage events (e.g. weekly stamp count) without identifying users.

17. Changes to This Policy

This policy may be updated to reflect changes in our services or legal obligations. The date of the last update is shown at the top. We recommend regular review.