Legal
Privacy Policy
Last updated: April 5, 2026
KitchenEye is a dish quality monitoring platform for commercial kitchens. This privacy policy explains what data is collected, how it is used, and how it is protected. This policy applies to the KitchenEye mobile application and the KitchenEye cloud processing service.
1. What We Collect
Camera Imagery
KitchenEye captures images from kitchen cameras installed at your organization's premises. These cameras photograph the pass/plating area at approximately 1 frame per second. Images are captured automatically and continuously during operating hours.
What is in the images: Plated dishes, the pass/counter surface, and potentially kitchen staff hands or partial views of the kitchen environment.
What is NOT in the images: The cameras are positioned to monitor dish output, not personnel. However, incidental capture of hands, uniforms, or background elements may occur.
Dish Quality Data
Our AI pipeline analyzes camera images to produce:
- Dish identification (what menu item is on the plate)
- Presentation quality scores (0–100 scale)
- Detected deviations from your menu's plating standards
- Dwell time (how long a dish sits at the pass)
Menu Reference Materials
Your organization provides menu images and dish descriptions that serve as the quality benchmark. These are used by our AI models to compare plated dishes against expected presentation.
App Preferences (Mobile App Only)
The KitchenEye mobile app stores the following on your device locally:
- Service period settings (breakfast, lunch, dinner time boundaries)
- Display preferences (dark/light mode, filter toggles)
This data never leaves your device.
2. What We Do NOT Collect
- No location data or GPS coordinates
- No biometric data
- No cookies or tracking pixels
- No advertising IDs or hardware fingerprints
3. How Data Is Used
Camera imagery and menu reference materials are used exclusively for:
- Detecting dishes: identifying plates of food in camera frames
- Classifying dishes: matching detected dishes to your menu
- Scoring quality: evaluating presentation against your standards
- Delivering scorecards: making results available in the mobile app
We do not use your data for advertising, user profiling, or any purpose unrelated to the quality monitoring service.
Model Improvement
As part of the Service, cropped images of dishes (not full camera frames) may be used to improve our detection and classification models. Only de-identified data is used. All camera identifiers, timestamps, and location metadata are stripped so that the data cannot reasonably be linked back to your organization. Your organization may revoke these training rights at any time by written notice.
4. Third-Party Services
To provide the Service, we use the following third-party providers:
| Provider | What They Do | What Data They See |
|---|---|---|
| Amazon Web Services (AWS) | Stores images and scorecards, runs serverless functions | All pipeline data (encrypted) |
| Google Cloud (Gemini API) | AI-powered dish classification and quality assessment | Cropped dish images, menu reference images |
Google's data commitment (paid API tier): Google does not use our API inputs or outputs to train their models. Google does not perform human review of our data. Processing is governed by the Google Cloud Data Processing Addendum.
We do not share your data with advertisers, data brokers, or any other third parties.
5. Data Retention
| Data Type | Retention Period | Deletion Method |
|---|---|---|
| Processing database (detections, classifications) | 7 days | Automatic |
| Quality scorecards | 1 year | Automatic |
| Raw camera frames (cloud) | 1 year | Automatic |
| Camera frames (edge device) | 1–7 days (configurable) | Automatic |
| App preferences (on device) | Until app is deleted | User-controlled |
Your organization may request deletion of all data at any time. We will complete deletion within 30 days and provide written confirmation.
6. Data Security
- All data is transmitted over encrypted connections (HTTPS/TLS)
- Cloud storage is encrypted at rest (AWS S3 server-side encryption)
- No cloud credentials are stored on edge capture devices
- Upload URLs are temporary and expire after 5 minutes
- Edge devices communicate outbound only (no inbound ports opened)
- Access to data is restricted to authorized personnel
7. Data Ownership
Your organization owns all camera imagery and menu materials. Quality scorecards and scores generated by the Service are owned by your organization. Our algorithms, models, and grading methodology are our intellectual property. For full details on data ownership, processing rights, and sub-processor obligations, refer to the Data Processing Agreement between your organization and KitchenEye.
8. Your Rights
Your organization may at any time:
- Request access to all data we hold about your operations
- Request deletion of all data associated with your cameras
- Request export of your data in machine-readable format (JSON, JPEG)
- Revoke model training consent to stop use of your data for model improvement
- Request information about which sub-processors handle your data
To exercise any of these rights, contact us at the address below.
9. Children's Privacy
KitchenEye is a business-to-business product for commercial kitchen operations. It is not directed at individuals under the age of 18 and does not knowingly collect personal information from children.
10. Changes to This Policy
We may update this privacy policy from time to time. We will notify your organization of material changes at least 30 days before they take effect.
11. Contact Us
For questions about this privacy policy or to exercise your data rights:
KitchenEye
Email: marwan@kitcheneye.ai