MergeTenderSign In

Privacy Policy

Last updated: May 15, 2026

1. Introduction

MergeTender ("we," "our," or "us") operates mergetender.com and provides payment aggregation services for restaurant businesses. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our platform.

2. Information We Collect

We collect the following types of information:

  • Account Information: Email address and password when you create an account.
  • Payment Platform Data: Transaction records, revenue data, and merchant information from connected platforms such as Clover and Square.
  • Customer Data: Customer profiles imported from your point-of-sale systems or uploaded via CSV files.
  • Usage Data: Information about how you interact with our platform, including pages visited and features used.

3. How We Use Your Information

  • To provide and operate the MergeTender platform
  • To aggregate and display your payment data across platforms
  • To generate customer intelligence and segmentation reports
  • To send account-related emails such as verification and notifications
  • To improve our services and develop new features
  • To comply with legal obligations

4. Data Security

We take data security seriously. MergeTender implements the following security measures:

  • AES-256-GCM Encryption: All OAuth access tokens and refresh tokens are encrypted at rest using AES-256-GCM encryption before being stored in our database.
  • Row Level Security: Our database enforces row-level security policies ensuring each organization can only access their own data.
  • Secure Authentication: User authentication is handled through Supabase Auth with industry-standard security practices.
  • HTTPS: All data transmission is encrypted via HTTPS/TLS.

5. Data Sharing

We do not sell your personal information or your customers' data to third parties. We may share data with:

  • Service Providers: Third-party services that help us operate our platform, including Supabase (database), Vercel (hosting), and payment platform APIs (Clover, Square).
  • Legal Requirements: When required by law or to protect our rights and the safety of our users.

6. Third-Party Integrations

MergeTender connects to third-party payment platforms including Clover and Square. When you authorize these connections, you grant MergeTender read access to your transaction and merchant data. We only request the minimum permissions necessary to provide our service. You can revoke these permissions at any time through the respective platform's settings.

7. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete your personal information and business data within 30 days, except where retention is required by law.

8. Your Rights

You have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Export your data in a portable format
  • Revoke third-party platform access at any time

9. Cookies

MergeTender uses essential cookies to maintain your session and authenticate your account. We do not use advertising or tracking cookies.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by email or by posting a notice on our platform. Your continued use of MergeTender after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us at:

MergeTender

mergetender.com

Email: privacy@mergetender.com

© 2026 MergeTender. All rights reserved.

Terms of Service