Cafeteria Miami

Cafeteria Miami LLC

Privacy Policy

Effective Date: November 1, 2025 · Last Reviewed: June 8, 2026

1. Introduction

Cafeteria Miami LLC ("Cafeteria Miami," "we," "us," or "our") is a restaurant operator with two locations in Miami, Florida. This Privacy Policy explains how we collect, use, share, and protect personal information in connection with our internal business operations, including our use of the inventory.cafeteriamiami.com administrative application and our marketing website at cafeteriamiami.com.

This policy applies to: business owners, employees, contractors, vendors, and customers who interact with our business operations, either directly or through services we use to run our business.

2. What Information We Collect

We collect the following categories of personal information:

a) Information you provide directly:

  • Name, email address, phone number, mailing address
  • Employee tax identification (W-9 or W-4 information)
  • Bank account details for payroll deposits (where applicable)
  • Order and reservation details for catering customers

b) Information collected from third-party services:

  • Bank transaction data via Plaid Inc. (when authorized bank-account holders connect their accounts to our system for accounting purposes)
  • Point-of-sale transaction data via Clover (orders, payments, refunds at our restaurant locations)
  • Delivery payout data via Otter and Uber Eats (when connected)
  • Email-based vendor invoices

c) Information collected automatically:

  • Login timestamps and audit logs for our internal applications
  • Device and browser information for security monitoring
  • IP addresses for security and fraud-prevention purposes

3. How We Use Information

We use personal information solely for legitimate business operations, including:

  • Operating our restaurants and processing customer orders
  • Maintaining accurate financial records and books of account
  • Reconciling bank deposits against point-of-sale activity
  • Issuing employee wages and tax forms
  • Communicating with vendors and customers
  • Preventing fraud, securing systems, and complying with law
  • Generating tax filings (federal income tax, Florida sales tax, 1099/W-2 forms)

We do not sell personal information to third parties. We do not use personal information for advertising or marketing to third parties. We do not build profiles for resale.

4. Third-Party Services

Our internal application relies on the following service providers, all of which are bound by their own privacy and security obligations:

  • Plaid Inc. (bank-account aggregation)
  • Clover Network (point-of-sale)
  • Supabase Inc. (database hosting, SOC 2 Type 2)
  • Anthropic / Claude API (AI-assisted insights, no personal data sent for training purposes)
  • GoDaddy Inc. (website hosting)
  • Stripe Inc. (planned: customer invoice payments)

Bank credentials are never seen, stored, or transmitted by Cafeteria Miami. Plaid Link handles bank authentication directly with the user's financial institution; we receive only the data the user authorizes us to receive (account balances, transaction history, account metadata).

5. How We Protect Information

We protect personal information using:

  • Encryption in transit (TLS 1.2 or better)
  • Encryption at rest (AES-256, via our database provider)
  • Multi-factor authentication for administrative accounts
  • Role-based access control with least-privilege grants
  • Row-level security policies on all sensitive database tables
  • Audit logging of administrative actions
  • Regular security review by the business owner

6. Data Retention

We retain personal information only as long as necessary for the purpose for which it was collected, or as required by applicable law. Tax records are retained for seven (7) years to comply with IRS recordkeeping requirements. Employee payroll records are retained for four (4) years from the date of the relevant tax filing, in accordance with federal requirements. Our complete Data Retention and Disposal Policy is available on request.

7. Your Rights

Depending on your relationship with Cafeteria Miami, you may have the right to:

  • Know what personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your personal information, subject to legal retention requirements
  • Withdraw consent for any optional data processing
  • Lodge a complaint with the Florida Attorney General or other applicable authority

To exercise these rights, contact us at hello@cafeteriamiami.com.

8. Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect personal information from children. If you believe we have collected information from a child, contact us and we will delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The most recent version will always be posted at this page with the "Last Reviewed" date updated. Material changes will be communicated by email to affected parties.

10. Contact

For questions about this Privacy Policy, your data, or our practices, contact:

Cafeteria Miami LLC
Attn: Privacy Officer
Email: hello@cafeteriamiami.com

← Back to Cafeteria Miami