Home
Shop
Checkout
0Wishlist
Account

Privacy Policy

Intro

At Foodélez, we believe that respecting your privacy is a key part of respecting you as a partner in our everyday journey with food and work.
Whether you are ordering your favourite Product through Foodélez Mart or using Foodélez People to follow up on your employment matters within Foodélez, we are committed to protecting your personal data and handling it with transparency, responsibility, and in accordance with the law.

1) Who We Are

1.1. Foodélez (“Foodélez”, “we”, “us”, “our”, the “Service”) is a trademark owned by  ( Foodelez Egypt For Food And Beverages LLC ) , a company established under the laws of the Arab Republic of Egypt, headquartered in Alexandria, and duly registered with the competent authorities under the following details:

  • Commercial registration number: …
  • Tax registration number: …

1.2. Under the Foodélez brand, ( Foodelez Egypt For Food And Beverages LLC ) operates two main digital services (together, the “Services”):

  • Foodélez Mart: an online platform (website and mobile application) for ordering and purchasing food, beverages and related products (“Mart Service”).
  • Foodélez People: an internal Human Resources (HR) application used within Foodélez to manage HR‑related processes such as payroll, personnel administration, performance management and internal chat (“People Service”).

1.3. In relation to personal and electronic data processed through the Services,( Foodelez Egypt For Food And Beverages LLC ) acts as the data controller and as a “service provider” within the meaning of Egyptian Cybercrime Law No. 175 of 2018, to the extent that law applies.

2) Your Consent and Scope of this Privacy Policy

2.1. This Privacy Policy explains how we collect, use, store, disclose and protect personal information and other electronic data when you:

  • Visit or use Foodélez Mart (website or app) as a customer, visitor, supplier, restaurant, Delivery rider or other partner; and/or
  • Use Foodélez People as an employee, HR user, manager or authorised user within Foodélez.

2.2. This Policy applies to:

  • All websites and applications operated under the Foodélez brand; and
  • Any related services, support channels and communication methods (such as email, in‑app chat or customer support phone/email).

2.3. By using the Services or providing your personal data to us via our websites, applications or communication channels, you authorise us to collect, process and use your personal data in accordance with this Privacy Policy and applicable Egyptian law. If you do not agree, you should not use the Services or provide personal data to us.

3) Categories of Data We Collect

We collect different types of data depending on whether you use Foodélez Mart or Foodélez People.

3.1. Data Collected through Foodélez Mart

(a) Identity and contact data:

  • Full name.
  • Mobile phone number.
  • Email address.
  • Delivery and billing addresses.
  • Optional demographic data (such as date of birth and gender), if you choose to provide it.

(b) Account and profile data:

  • Username and password (stored in encrypted form).
  • Language preferences and communication preferences.
  • Saved addresses and favourite restaurants or stores.

(c) Order and transaction data:

  • Order history (items ordered, stores, dates and times).
  • Order value, delivery fees, discounts, loyalty points or wallet balance (if any).
  • Payment method (cash, card, wallet) and partial payment details (such as the last four digits of the card), as well as references/tokens generated by the payment service provider.
  • We do not store full card numbers or CVV codes on our systems if transactions are processed via third‑party payment providers, except in very limited and clearly communicated cases and in accordance with applicable standards and regulations.

(d) Technical and usage data:

  • IP address, device identifiers, operating system, browser type and version.
  • Device settings (language, time zone).
  • Usage log data: pages visited, buttons clicked, session duration, errors and performance data.
  • Traffic data: origin and destination of the connection, date and time, duration, data volume and type of service, to the extent required to comply with Law 175/2018.

(e) Customer support and communication data:

  • Content of your communications with us (such as emails, support tickets, in‑app chat messages).
  • Call recordings with customer support where legally permitted and for quality, training and dispute resolution purposes, with appropriate notice where required.

(f) Marketing and preferences data:

  • Your choices regarding marketing communications (opt‑in / opt‑out).
  • Information about your interaction with our marketing messages and campaigns.

3.2. Data Collected through Foodélez People

Foodélez People processes HR data, which can be highly sensitive. The scope of this data may vary depending on internal departments and policies.

(a) Identity and employment data:

  • Full name, national ID/passport number (where provided by the employer), date of birth, gender, nationality.
  • Employee ID, job title, department, line manager.
  • Work contact details (work email, work phone number, work location).

(b) Payroll and financial data:

  • Salary and wage information, allowances, deductions, bonuses, commissions.
  • Bank account details used for payroll transfers (account holder name, bank name, branch, account number or IBAN), as provided by the employer and/or by you.
  • Social insurance numbers or tax identifiers where applicable.

(c) Personnel and HR records:

  • Employment contract details, start and end dates, work schedule and attendance data, including working hours, leave and absence.
  • Documents uploaded as part of the personnel file (such as ID copies, certificates, performance review reports), in line with internal HR policies.
  • Records of disciplinary actions and internal investigations, where applicable.

(d) Performance and appraisal data:

  • Objectives and key performance indicators (KPIs).
  • Performance appraisal forms, ratings, feedback and 360‑degree evaluations (where used).
  • Training records, skills data and competency assessments.

(e) Internal communication and collaboration data:

  • Messages and content exchanged through chat and collaboration tools in Foodélez People, in accordance with internal monitoring policies and applicable law.
  • Your participation in surveys, polls and feedback forms.

(f) Technical and usage log data:

  • Login logs, IP addresses, device and browser information.
  • Usage logs (modules accessed, actions performed, timestamps) for security, compliance and audit purposes.
  • Traffic data (logs) retained for at least 180 days in compliance with Law No. 175 of 2018, to the extent Foodélez acts as a service provider.

4) How and Why We Use Your Data

We process personal data for specific and legitimate purposes, and only to the extent necessary for those purposes.

4.1. Purposes Related to Foodélez Mart

  • Providing and operating the Service:
    • Creating and managing your account.
    • Processing and fulfilling orders, including communication with restaurants, stores, delivery partners and payment service providers.
    • Managing delivery, returns, cancellations and refunds.
  • Customer support and issue resolution:
    • Responding to your questions, complaints and requests.
    • Investigating and resolving incidents or disputes related to orders, payments or service quality.
  • Service improvement and analytics:
    • Monitoring performance, analysing usage patterns, fixing bugs and improving the user experience.
    • Developing new features and services.
  • Security, fraud prevention and legal compliance:
    • Detecting and preventing fraud, unauthorised access, account abuse, misuse of promotions or payment methods.
    • Creating and maintaining system logs and traffic data for at least 180 days in accordance with the Cybercrime Law.
    • Cooperating with law‑enforcement and competent authorities based on valid court orders or lawful requests.
  • Marketing and communication:
    • Sending administrative messages, security alerts and service updates.
    • Sending personalised offers and marketing communications where permitted by law and in line with your preferences, with the ability to unsubscribe at any time.

4.2. Purposes Related to Foodélez People

  • Managing the employment relationship within Foodélez:
    • Managing personnel records, contracts, attendance, leave and other HR processes.
    • Processing payroll and related financial and regulatory obligations (social insurance, taxation, etc.).
  • Performance and development management:
    • Setting and tracking objectives and KPIs.
    • Conducting performance reviews, feedback cycles and development plans.
  • Enabling internal communication and collaboration:
    • Providing chat and communication tools between employees, managers and HR staff.
  • Security, compliance and audit:
    • Logging and monitoring system access and actions to protect HR data from unauthorised use or disclosure.
    • Demonstrating compliance with labour, tax and data‑related regulations, as well as with the Cybercrime Law requirements (logging, cooperation with authorities, securing systems and data).

5) Cookies and Similar Technologies

5.1. We use cookies and similar technologies (such as SDKs and pixels) in Foodélez Mart and Foodélez People in order to:

  • Keep you logged in and secure your session.
  • Remember your preferences (language, location, saved addresses).
  • Analyse traffic and usage to improve performance.
  • Deliver and measure marketing campaigns (mainly on the Mart Service, where applicable).

5.2. Types of cookies we may use:

  • Strictly necessary cookies: required for core functionality (login, cart, security).
  • Analytics cookies: used to collect statistics about how our Services are used.
  • Marketing cookies (mainly for Mart): used to provide personalised offers and measure campaign effectiveness, subject to your consent where required.

5.3. You can control cookies via your browser or device settings. Disabling certain cookies may affect some features of the Services. Where we maintain a separate Cookie Policy, it forms part of this Privacy Policy and is incorporated by reference.

6) Legal Basis and Compliance with Egyptian Law

6.1. We process personal data on one or more of the following legal bases, as recognised under applicable law:

  • Performance of a contract: to provide and manage the Services you request (such as processing orders or operating payroll systems).
  • Compliance with a legal obligation: to comply with Egyptian laws, including Cybercrime Law No. 175 of 2018 (for example, logging and retention obligations and cooperation with authorities), and other relevant laws (tax, labour, consumer protection).
  • Legitimate interests: to secure our systems, prevent fraud and abuse, improve our Services and protect our rights, provided that such interests are not overridden by your fundamental rights and freedoms.
  • Consent: for certain marketing activities or other situations where the law requires your consent. You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

6.2. Compliance with Cybercrime Law No. 175 of 2018

As a service provider, we specifically undertake to:

  • Retain system logs and traffic data for at least 180 consecutive days, including user identifiers, data relating to the content and nature of systems under our control, traffic data and terminal equipment data, and any other data as may be determined by the National Telecom Regulatory Authority.
  • Preserve the confidentiality of stored data and not disclose it except pursuant to a reasoned order from a competent judicial or investigative authority.
  • Implement appropriate technical and organisational measures to secure data and systems against unauthorised access, alteration, destruction or misuse.
  • Provide the technical capabilities required by competent national security authorities to enable them to exercise their lawful powers, while respecting the constitutional right to privacy.

7) Sharing and Disclosure of Data

7.1. We do not sell your personal data to third parties for their own direct marketing purposes.

7.2. We may share your personal data with the following categories of recipients:

(a) Service providers and data processors:

  • Hosting and cloud infrastructure providers.
  • Payment service providers and banks.
  • Communication and marketing providers (SMS, email, push notifications).
  • Analytics and security service providers.

These parties act on our instructions and are bound by appropriate confidentiality and data‑protection obligations.

(b) Business partners:

  • For the Mart Service: restaurants, stores and delivery partners who need certain customer data (such as name, phone number, delivery address and order details) to fulfil your order.
  • For the People Service: authorised departments and personnel within Foodélez who need to access HR data to perform their job duties in line with internal policies and the law.

(c) Authorities and regulators:

  • Competent courts, prosecutors, law‑enforcement and regulatory bodies where we are legally required to do so (for example, pursuant to a court order or formal request under Law No. 175/2018 or any other applicable law).

(d) Group companies and corporate transactions:

  • Other ( Foodelez Egypt For Food And Beverages LLC ) group companies (if any) for internal administrative purposes in line with this Policy.
  • In connection with a merger, acquisition or sale of part of our business, to the extent permitted by law and subject to appropriate safeguards.

8) Card Data and Electronic Payments

8.1. Foodélez does not store credit or debit card numbers or CVV codes on its servers, except in very limited and strictly necessary cases that are clearly communicated to you and implemented in accordance with applicable security standards.

8.2. Online card payments are processed via authorised and secure payment service providers that use up‑to‑date security systems and encryption technologies (such as SSL or equivalent). Card data is transmitted directly to the acquiring bank or payment gateway and is not stored in a readable form on Foodélez systems.

9) Data Retention

9.1. We retain personal data only for as long as necessary to fulfil the purposes described in this Policy, including to meet legal, accounting or regulatory requirements.

9.2. In particular:

  • Customer and order data in Foodélez Mart are generally retained for the lifetime of your account and for an additional period as required by tax, accounting and consumer‑protection laws.
  • HR records in Foodélez People are retained in line with labour, tax and social‑insurance obligations and with internal retention policies.

9.3. In accordance with Law No. 175 of 2018, we retain system logs and traffic data for at least 180 consecutive days. After the relevant retention periods expire, we delete or anonymise data where feasible, unless a longer retention period is required or permitted by law or necessary to establish, exercise or defend legal claims.

10) Security Measures

10.1. We take the security and confidentiality of your data seriously and implement appropriate technical and organisational measures to protect personal data against unauthorised access, use, alteration, disclosure or destruction.

10.2. Such measures may include, without limitation:

  • Encryption in transit and/or at rest for certain types of data.
  • Role‑based access controls and the “least privilege” principle.
  • Network and application firewalls, intrusion detection and monitoring.
  • Secure development practices and change‑management procedures.
  • Regular backups and recovery processes.
  • Staff training and confidentiality obligations.

10.3. However, no system can be guaranteed to be 100% secure. You also play a role in protecting your data by keeping your login credentials confidential, choosing strong passwords, not sharing them with others, and notifying us promptly of any suspected unauthorised access or misuse.

11) Your Rights

Subject to applicable law, you may have certain rights in relation to your personal data, including:

  • Right of access: to obtain confirmation as to whether we process your data and to receive certain information about such processing, as well as a copy of some data where appropriate.
  • Right to rectification: to request correction of inaccurate data or completion of incomplete data.
  • Right to erasure (where applicable): to request deletion of certain data when there is no longer a legitimate reason to retain it, subject to legal retention obligations or the need to defend legal claims.
  • Right to restriction or objection: to request restriction of certain processing activities or to object to processing based on legitimate interests or for direct marketing purposes.
  • Right to withdraw consent: where we rely on your consent (for example, for some marketing activities), you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, please contact us using the details in section 14. We may need to verify your identity before responding. We may also decline certain requests where permitted by law (for example, to protect the rights of others or to comply with legal obligations).

12) International Data Transfers

12.1. Some of our service providers or group companies may be located outside Egypt. Where this results in cross‑border transfers of personal data, we will take appropriate measures to ensure that the data remains protected in line with this Policy and applicable law (for example, by using contractual safeguards or technical protection measures).

13) Changes to this Privacy Policy

13.1. We may update this Privacy Policy from time to time, for example to reflect changes in our Services, in applicable law or in our data‑handling practices.

13.2. When we make material changes, we will notify you by posting the updated Policy on our website and/or by sending you a notice through the Services (such as an in‑app notification or email). The “Last updated” date will be amended accordingly.

13.3. Your continued use of the Services after the effective date of the updated Policy constitutes your acceptance of the changes. If you do not agree, you should stop using the Services.

14) Contact Us

If you have any questions about this Privacy Policy or how we process your personal data, or if you wish to exercise any of your rights, please contact us at:

We will do our best to respond to your request or enquiry within a reasonable time and in accordance with applicable legal requirements.
 
We are constantly improving our Services, and as we grow, we may occasionally need to update this Privacy Policy to reflect changes in how we handle data or in the legal framework that applies to us.
 
We encourage you to review this Privacy Policy from time to time, and we are always happy to hear your questions or feedback about any part of it, because your trust is the foundation on which we are building Foodélez.