OpenPlate
← Back

Privacy

Privacy policy for OpenPlate.

Last updated: 15 February 2025

OpenPlate ("we", "our", "us") is a community-driven platform that helps people make informed dining decisions based on shared experiences. We respect your privacy and are committed to handling your personal information responsibly and transparently.

This policy explains what we collect, how we use it, and your rights.

1. What OpenPlate Is

OpenPlate allows users to:

  • Create an account
  • Submit dining experience reports
  • View venue practice signals derived from community submissions
  • Claim and manage venue listings (where applicable)

OpenPlate does not provide medical advice. Community reports reflect user experiences.

2. Information We Collect

A. Account Information

When you create an account, we may collect:

  • Your name (if provided by login provider)
  • Email address (encrypted at rest using industry-standard encryption)
  • Profile image (if provided by login provider)
  • Account creation date
  • Login provider identifier (e.g., Google)

We do not collect passwords if you authenticate via OAuth providers.

B. User Submissions

When you submit a report, we store:

  • Venue visited
  • Visit date
  • Practice-related responses (e.g., fryer status, cross-contamination controls, staff knowledge, menu accuracy)
  • Evidence source selections (e.g., observed, staff confirmed)
  • Optional notes
  • Submission timestamp

Reports are linked to your account internally but are not publicly displayed with your email address.

C. Usage & Technical Data

We may collect:

  • IP address (for security and abuse prevention)
  • Device/browser metadata
  • Timestamps of activity
  • Moderation actions (if you are an admin or moderator)

This data is used to maintain platform integrity and prevent abuse.

3. How We Use Information

We use collected data to:

  • Generate venue signals (structural tier, confidence, transparency, safety concern indicators)
  • Prevent spam and coordinated manipulation
  • Improve scoring integrity
  • Provide moderation tools
  • Maintain audit logs for platform safety

We do not sell personal data.

We do not use your dining reports for advertising profiling.

4. How Venue Signals Work

Venue signals are generated from community reports using structured scoring rules. These signals:

  • Do not display personal user information
  • Use "most recent per user" logic to prevent vote-stacking
  • May be temporarily frozen during moderation review

If a venue is under review, new reports may not immediately adjust public signals.

5. Account Deletion

You may delete your account at any time using the "Delete account" button in your profile.

When you delete your account:

  • Your account record is permanently deleted.
  • Your email and login credentials are removed.
  • Your reports are either:
    • Permanently deleted, or
    • Anonymized and retained for scoring integrity (your user ID is removed).

We do not retain identifiable account data after deletion unless legally required.

Deletion is irreversible.

If you believe data persists after deletion, contact us at privacy@open-plate.com.

6. Data Retention

We retain data:

  • While your account is active
  • For moderation audit purposes
  • To preserve platform integrity and prevent manipulation

Report data may remain in anonymized form after account deletion if required to prevent abuse of scoring mechanisms.

We do not retain personal data longer than reasonably necessary.

7. Moderation & Audit Trails

For safety and fairness:

  • Admin and moderator actions are logged
  • Venue lock events are logged
  • Abuse prevention systems may temporarily suppress signal changes

This helps ensure the platform cannot be easily manipulated.

8. Security

We take reasonable steps to protect your data, including:

  • Secure database storage
  • Access controls for moderation tools
  • Protection against automated abuse

However, no system is completely secure.

9. Third-Party Services

OpenPlate may use:

  • Authentication providers (e.g., Google)
  • Hosting providers
  • Database providers
  • Map APIs (e.g., Google Maps)

These providers may process limited technical data necessary for functionality.

We are not affiliated with Google, Coeliac Australia, or any external authority unless explicitly stated.

10. Children

OpenPlate is not directed at children under 16.

If you believe a minor has created an account, please contact us.

11. Your Rights (Australia)

Under Australian Privacy Principles (APPs), you may:

  • Request access to personal data
  • Request correction of inaccurate information
  • Request deletion of your account

To exercise these rights, contact: privacy@open-plate.com

12. Changes to This Policy

We may update this policy as the platform evolves.

If changes are material, we will update the "Last updated" date.

13. Contact

For privacy questions or concerns:

Email: privacy@open-plate.com

Platform: OpenPlate