Last updated: January 3, 2026
This Privacy Policy explains how Individual Entrepreneur Aleksandr Verbitskii (Identification Number 345820891) ("we", "us", "our") collects and uses personal data when you use the Meni Admin panel available at https://admin.meni.ge (the "Admin Panel").
The Admin Panel is part of the meni.ge platform used by restaurant owners, managers, and staff to manage their establishments' digital presence, menus, orders, and customer interactions. This Privacy Policy applies to the Admin Panel. In this Policy, we refer to the Admin Panel and closely related features collectively as the "Service".
We are committed to protecting your privacy and processing your personal data in accordance with the EU General Data Protection Regulation (GDPR).
Language and translations: This Privacy Policy is drafted in English and the English version is the original and legally binding version. Any versions of this Privacy Policy that you may see in other languages are generated by machine translation and are provided solely for your convenience. In the event of any inconsistency or conflict between a translated version and the English version, the English version shall always prevail.
Data Controller
Individual Entrepreneur Aleksandr Verbitskii
Registered in the Republic of Georgia
Identification Number: 345820891
Registered address (Georgia):
6010, Georgia, city of Batumi, Grigol Eliava street, N 32e, floor 2, apartment N201a
Contact email for privacy matters: info@meni.ge
We do not have representative offices or branches in other countries.
At the moment we have not appointed an EU/EEA representative or a Data Protection Officer (DPO). If this changes, we will update this Policy.
This Policy applies to the Meni Admin Panel – the administrative interface of the meni.ge platform that restaurant owners, managers, and staff use to:
The meni.ge platform also includes a separate customer-facing application used by guests to view menus and place orders. This Privacy Policy does not cover that customer application; the processing of personal data in the customer application is described in a separate privacy policy available at https://meni.ge/privacy.
Depending on how you use the Service, we may collect the following categories of data.
When you upload content (menu items, photos, descriptions) to the Admin Panel, we collect:
This metadata is necessary for system operation, content management, and to comply with legal obligations, including responding to intellectual property infringement claims.
When customers place orders (especially delivery orders) through the customer-facing application, we transmit the following customer information to you:
Your responsibilities as data controller:
When you receive customer contact information, you become an independent data controller for that data. This means:
Platform responsibility:
We (meni.ge platform) act only as a data processor for transmitting customer information to you. We do not control how you use customer contact information after you receive it. You are solely responsible for compliance with privacy laws regarding your use of customer data.
We do not share customer contact information with any other third parties beyond the specific Establishment that receives the order.
As a rule, payment card data is processed by external payment providers in accordance with their own privacy policies. We do not store full card numbers or CVV/CVC codes.
When you make a table reservation through the Service, we collect:
To enforce our Terms of Service and respond to intellectual property infringement claims, we may collect and process:
This data is processed to:
Legal bases:**
Retention: Copyright infringement records are retained for up to 5 years from the date of the incident or longer if required for ongoing legal proceedings or to comply with legal obligations.
If you choose to provide this information, we may collect:
This information is provided voluntarily and is used only to help venues better serve you and ensure your safety.
To ensure correct display and convenient repeat orders, we collect basic technical information, such as:
If you enable push notifications, we collect and use:
To improve the stability and reliability of the Service, we collect error and diagnostic information when technical issues occur:
This data is collected through Sentry, our error monitoring service, and is used solely to identify and fix technical problems.
Under the GDPR we must have a legal basis for each processing purpose. Depending on the situation, we rely on:
We process your data to:
Legal bases:
Important: When we provide you with customer contact information (phone, email, delivery address), we act as a data processor. You become an independent data controller for that customer data and are responsible for compliance with privacy laws regarding your use of it. See Section 3.2 for your responsibilities.
We process content upload metadata to:
Legal bases:
We process personal data related to copyright infringement claims to:
Legal bases:
Important: When we receive a valid copyright infringement notice, we may:
Your rights: If your content was removed due to a copyright claim you believe was made in error, you may submit a counter-notification as described in our Terms of Service. We will process your counter-notification and may restore the content if the original complainant does not initiate legal proceedings.
We use geolocation to:
Legal bases:
You can disable geolocation in your device or browser settings at any time. This does not affect processing carried out before such change but may limit some features.
We process photos and caricatures to:
Legal basis:
You can remove your photos and caricatures via your account or via the data deletion page, or by contacting us.
If you enable push notifications, we use them to:
Legal bases:
You can disable push notifications at any time in your device settings. This will not affect other features of the Service.
We keep history of your orders and interactions with venues to:
Legal bases:
We use device and technical data to:
Legal basis:
We use error monitoring (Sentry) to:
When an error occurs, we collect diagnostic data as described in Section 3.8. This helps us quickly identify and resolve issues.
Legal basis:
The Admin Panel is a B2B tool and uses only essential technologies. We do NOT use:
What we DO use:
Important notes:
We do not:
The Admin Panel is a B2B tool focused solely on providing restaurant management functionality. No behavioral analytics are collected.
As a general rule, personal data is processed within our platform and infrastructure. We do not share your personal data with third parties for their own independent purposes, except in the following limited cases:
Our Service and web application are hosted by Amazon Web Services (AWS).
Provider: Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855 Luxembourg
The (personal) data collected on this Service is stored on the servers of AWS, located in the eu-central-1 (Frankfurt, Germany) region. This may include:
The use of AWS is for the purpose of contract performance with our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of secure, fast, and efficient provision of our online offering by a professional provider (Art. 6(1)(f) GDPR).
AWS acts as our data processor and will only process your data to the extent necessary to fulfill service obligations and will follow our instructions regarding this data. We have concluded a Data Processing Agreement with AWS.
Privacy Policy: https://aws.amazon.com/privacy/
We use AWS CloudFront as our Content Delivery Network (CDN) to ensure fast and reliable delivery of content (images, graphics, JavaScript, CSS, PDF files, and similar) globally and to ensure full functionality of our Service.
In this connection, your browser may transmit personal data (such as your IP address) to CloudFront to provide the service. Data processing may also take place in the USA.
CloudFront is certified under the EU-US Data Privacy Framework, ensuring GDPR-compliant processing of personal data of EU citizens within the USA.
We have concluded a Data Processing Agreement with AWS. This contract obligates CloudFront to protect the data of our users, process it in accordance with data protection provisions on our behalf, and in particular not to pass it on to third parties.
The use of this service is based on our legitimate interest in enabling simple and appealing use of our online offering (Art. 6(1)(f) GDPR).
Privacy Policy: https://aws.amazon.com/privacy/
We use the Cloudflare R2 Storage service (operated by Cloudflare Inc., 101 Townsend St, 94107 San Francisco, USA) to load and deliver our content (such as images, graphics, JS, CSS, PDF files, and similar) and to ensure the full functionality of our Service.
In this context, your browser may transmit personal data (such as your IP address) to Cloudflare to provide the service. Data processing may also take place in the USA.
Cloudflare Inc. is certified under the EU-US Data Privacy Framework, ensuring GDPR-compliant processing of personal data of EU citizens within the USA.
We have concluded a Data Processing Agreement with Cloudflare. This contract obligates Cloudflare to protect the data of our users, process it in accordance with data protection provisions on our behalf, and in particular not to pass it on to third parties.
Cloudflare may also use a CDN (Content Delivery Network). A CDN is a network of high-performance servers that cache content at various locations around the world. A CDN has two tasks: to provide content in the shortest possible time and to relieve the web host by distributing data traffic.
The use of this service is based on our legitimate interest in enabling simple and appealing use of our online offering (Art. 6(1)(f) GDPR).
Privacy Policy: https://www.cloudflare.com/privacypolicy/
We use MongoDB Atlas (operated by MongoDB Inc., 1633 Broadway, 38th Floor, New York, NY 10019, USA) as our central database.
Through MongoDB, the following personal data is processed:
The legal basis for using MongoDB is our legitimate interest pursuant to Art. 6(1)(f) GDPR. Our legitimate interest lies in the technically error-free and optimized provision of our services.
MongoDB is certified under the EU-US Data Privacy Framework, ensuring GDPR-compliant processing of personal data of EU citizens within the USA.
We have concluded a Data Processing Agreement with MongoDB.
Privacy Policy: https://www.mongodb.com/legal/privacy-policy
For caching HTML content and use as a session store, we may use Redis Enterprise Cloud from Redis, Inc., 303 2nd St., Suite 525, San Francisco, CA 94107, USA ("Redis").
Your personal data (e.g., your IP address) may be processed on Redis servers in the USA.
Data processing and/or data transfer therefore also takes place outside the European Union. Only certain countries have an adequacy decision from the European Commission. For the USA, the EU-US Data Privacy Framework (DPF) exists, but not every data transfer to the USA is considered safe—only transfers to US companies with valid DPF certification.
As Redis does not have such certification, we have ensured adequate protection through:
The use of Redis Enterprise Cloud allows us to improve the loading times of our Service and ensure efficient and user-friendly session management.
The legal basis for using this service is Art. 6(1)(f) GDPR. Our legitimate interest lies in optimizing our web services and ensuring high user-friendliness.
Privacy Policy: https://redis.io/legal/privacy-policy/
EU Standard Contractual Clauses: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj
We use Sentry (Functional Software, Inc.) to monitor application errors and crashes as described in Section 4.6. Sentry acts as our data processor for error monitoring purposes. You can learn more about Sentry's privacy practices at https://sentry.io/privacy/
We have engaged the payment service provider Stripe (Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) to process our payment transactions through a Connected Custom Stripe Account.
For this purpose, Stripe receives the information provided to us during the booking and onboarding process, along with information about your booking/order:
This data is transmitted pursuant to Art. 6(1)(b) GDPR exclusively for the purpose of payment processing with Stripe Payments Europe Ltd. and only to the extent necessary.
Stripe may use subprocessors for payment processing. We have concluded a Data Processing Agreement with Stripe.
Privacy Policy: https://stripe.com/privacy
We use the CRM (Customer Relationship Management) system from HubSpot (operated by HubSpot, Inc., 25 1st St Ste 200, Cambridge, MA 02141 USA) to manage various aspects of our online marketing.
This includes:
The following personal data may be processed through HubSpot:
Data is stored on HubSpot servers, which may be located in the USA and other countries.
The use of this service is based on your consent (Art. 6(1)(a) GDPR) where obtained, or on our legitimate interest in optimizing our business and website (Art. 6(1)(f) GDPR).
HubSpot is certified under the EU-US Data Privacy Framework.
Privacy Policy: https://legal.hubspot.com/privacy-policy
Our email communication is conducted using the email sending platform "Mailgun" (operated by Mailgun Technologies, Inc., 112 E Pecan St #1135, San Antonio, TX 78205, USA).
Your email address and other entered data are processed on Mailgun servers in the USA.
Data processing and/or data transfer therefore also takes place outside the European Union. While the USA has an adequacy decision (EU-US Data Privacy Framework), not every data transfer to the USA is considered safe—only transfers to US companies or organizations that have a valid DPF certification.
As Mailgun does not currently have such certification, we have entered into a Data Processing Addendum using EU Standard Contractual Clauses (Art. 46 GDPR) to ensure that personal data is adequately protected at the recipient.
Mailgun uses the information mentioned above to send and evaluate emails on our behalf. Additionally, Mailgun may use this data to optimize or improve its own services, such as technical optimization of sending and displaying emails. Mailgun does not use the data of our email recipients to contact them directly.
The use of Mailgun is based on your consent (Art. 6(1)(a) GDPR) where obtained for email communications.
Privacy Policy: https://www.mailgun.com/legal/privacy-policy/
EU Standard Contractual Clauses: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj
This Service uses the reCAPTCHA service from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google").
The function serves to distinguish whether an entry is made by a human or abusively by automated, machine processing. The query includes sending the IP address and possibly other data required by Google for the reCAPTCHA service to Google.
For this purpose, your input is transmitted to Google and used there. However, your IP address will be shortened by Google beforehand within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.
Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser as part of reCAPTCHA will not be merged with other data from Google.
The processing thus serves to prevent abuse of this Service and ultimately takes place anonymously.
The use of reCAPTCHA is based on our legitimate interests (Art. 6(1)(f) GDPR) to prevent abuse and maintain service security.
Privacy Policy: https://policies.google.com/privacy
When we receive a valid copyright infringement notice or other intellectual property complaint, we may share relevant information with:
Information shared may include:
Legal bases:
We limit disclosure to what is necessary and maintain confidentiality where appropriate.
We may share data with IT service providers, security providers, auditors, accountants and legal advisers where this is necessary and subject to confidentiality obligations.
We may disclose personal data if required to do so by law, court order or a competent authority, or to protect our rights or the rights of other persons (for example, in case of fraud, abuse or disputes).
In all such cases, we limit access to what is necessary and, where required, conclude data processing agreements or other appropriate safeguards.
We primarily store and process your data on servers located in:
Frankfurt, Germany (AWS region eu-central-1)
This means your data is stored within the European Economic Area (EEA).
Some of our service providers may process data in other countries, including outside the EEA (for example, AWS services in US East Virginia for authentication). Where such transfers occur, we rely on appropriate safeguards under the GDPR, such as:
More information about these safeguards is available on request.
As a rule, we do not keep your personal data longer than necessary for the purposes described in this Policy or as required by law.
We follow the general principle that:
Files, documents, activities and related personal data are stored for up to 5 (five) years.
In practice, this means:
We store your account data (including restaurant information and staff accounts) while your account is active and for up to 5 years after your last significant interaction with the Service, unless you request earlier deletion and we are not legally required to keep certain data.
We store content upload metadata (who uploaded what and when) for as long as the content remains in the system, plus up to 5 years after content deletion, to maintain audit trails and comply with legal obligations.
Copyright infringement records (notices, counter-notifications, correspondence, and records of violations) are retained for:
We may retain copyright infringement records longer if:
After the retention period expires, we will delete or anonymize the records, unless continued retention is legally required.
We store order data and transaction history processed through your restaurant's Admin Panel for up to 5 years, taking into account accounting, tax, consumer protection and limitation periods. After this period, data will be deleted or anonymized.
We store your photos and caricatures while your account is active or until you delete them via your account or the data deletion page. In any case, we do not store them longer than 5 years from the time of your last relevant interaction, unless longer retention is required by law or necessary for the establishment, exercise or defence of legal claims.
Technical logs, device data and push notification tokens used for security and diagnostics are stored only as long as reasonably necessary, but not longer than 5 years, unless a specific log is needed longer for security or legal reasons.
Push notification tokens are deleted when you disable notifications or delete your account.
In detail, the following retention periods apply:
After the relevant retention period expires, we will either delete the data or irreversibly anonymise it so that it can no longer be linked to you.
Under the GDPR, you have the following rights regarding your personal data:
You have the right to obtain confirmation as to whether we process your personal data and, if so, to receive a copy of that data.
You have the right to have inaccurate personal data corrected and incomplete data completed.
You have the right to request deletion of your personal data, subject to our legal obligations (for example, to keep certain transaction data for accounting or tax purposes).
Important limitations for Admin Panel users:
We may retain certain data even after you request deletion if:
When we retain data after deletion requests, we will:
You can request that we restrict processing in certain circumstances (for example, when the accuracy of data is contested).
You have the right to receive certain personal data in a structured, commonly used and machine-readable format and to transmit it to another controller, where processing is based on consent or contract and carried out by automated means.
You can object to processing based on our legitimate interests. We will stop such processing unless we demonstrate compelling legitimate grounds or the processing is necessary for legal claims.
Where processing is based on your consent (for example, analytics, geolocation, photos), you may withdraw your consent at any time. This does not affect the lawfulness of processing before withdrawal.
You have the right to lodge a complaint with your local data protection authority if you believe that your rights have been violated.
To exercise your rights, please contact us at info@meni.ge or use the self-service tools described below. We may need to verify your identity before responding.
We provide a dedicated "Delete my data" function:
You can request deletion of your personal data on the following page:
https://meni.ge/privacy/delete
Through this page and/or your account settings, you can:
We will process your request without undue delay and within the time limits required by GDPR. Please note that we may need to retain some data if required by law (for example, for tax and accounting purposes) or where necessary for the establishment, exercise or defence of legal claims.
We do not use your personal data for automated decision-making (including profiling) that produces legal effects concerning you or similarly significantly affects you within the meaning of GDPR Article 22.
We may use analytics and aggregated data to understand usage patterns and improve the Service, but these activities do not constitute automated decision-making under Article 22. You are not subject to decisions based solely on automated processing.
We take appropriate technical and organisational measures to protect your personal data, including:
However, no system can be completely secure. If we become aware of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant supervisory authority where required by law.
To operate the Service, we use cookies and server-side sessions in which data can be stored.
We ensure that without your express consent, no personal data is taken from sessions or through cookies, and cookies are only used where technically required for the website to function (for example, spam protection in contact forms, shopping cart functionality).
The use of these technically necessary cookies is based on our legitimate interests (Art. 6(1)(f) GDPR) in providing a functioning, secure Service. Our legitimate interests do not override your interests or fundamental rights.
With your express consent, we use cookies to:
Where we use analytics cookies or similar technologies, we obtain your consent (Art. 6(1)(a) GDPR) through our cookie consent banner. You can withdraw your consent at any time through your browser settings or our cookie management interface.
The Admin Application uses only essential cookies for authentication and security. We use AWS Cognito for authentication (tokens stored in browser localStorage), Sentry for error monitoring, and AWS CloudFront CDN for content delivery. No advertising or analytics cookies are used.
With your consent, the information about your use of our Service may be shared with our partners for social media, advertising, and analytics. Our partners may combine this information with other data they have collected from you.
The Customer Application is not intended for children under 16 years of age.
We do not knowingly collect personal data from children under 16 without verifiable parental or guardian consent, where required by law. If you believe that a child has provided us with personal data in violation of this Policy, please contact us and we will take appropriate steps to delete such data.
If you subscribe to our newsletter, we use the data you provide (email address and any other information you voluntarily provide) to send you regular email newsletters based on your consent pursuant to Art. 6(1)(a) GDPR.
You can unsubscribe from the newsletter at any time by:
After unsubscription, we will delete your email address unless you have expressly consented to further use of your data or we reserve the right to use data beyond this scope, which is permitted by law and about which we inform you in this Policy.
We maintain a presence on the following social media platforms for business representation and communication:
Operator: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland
Privacy Policy: https://www.facebook.com/about/privacy/
Opt-Out: https://www.youronlinechoices.com
These social media platforms may process personal data outside the EU. We refer to the privacy policies of the respective social media platforms linked above.
The respective social media platforms may create usage profiles from your usage behavior and the resulting interests and actions on your part, and may store cookies on your computer in which your usage behavior is stored.
If you have an account on the respective social media platform and are logged in, your usage behavior can even be stored across devices. Your usage profile can be used to place advertisements that presumably correspond to your interests.
We process personal data exclusively for communication with you via the social media platform you have chosen and to optimize our online presence. We ensure that no interests on your part are affected that outweigh this legitimate interest on our part (Art. 6(1)(f) GDPR).
If you have already given the respective social media platform operator effective consent for the corresponding data processing, the processing of your personal data is also based on this consent (Art. 6(1)(a) GDPR).
You can exercise your data protection rights (access, rectification, deletion, restriction, data portability, objection) with respect to data processed by social media platforms by contacting the respective platform operator directly.
If you have concerns about how social media platforms process your data, you can also contact the relevant data protection supervisory authority.
As part of our Service, we store certain preferences and choices of guests to enable a personalized user experience and to optimize food selection.
The stored information includes, among other things:
The processing of this data is based on our legitimate interest in improving our offering and providing a service tailored to individual needs (Art. 6(1)(f) GDPR).
You can view, modify, or delete your preferences at any time through your account settings or by contacting us at info@meni.ge.
We have social media pages accessible through links on this Service. By using these links, you will reach the respective third-party websites (e.g., Facebook).
To avoid unnecessary data sharing, we recommend logging out of the respective third-party service before using such a link. This prevents the third-party service from potentially creating usage profiles just by using the link.
When you click on social media links:
We are not responsible for the privacy practices of third-party social media platforms. Their data collection and use is governed by their own privacy policies, not this Privacy Policy.
We may update this Privacy Policy from time to time. When we make material changes, we will:
We encourage you to review this Policy periodically to stay informed about how we process your personal data.
If you are a resident of the United States, the following additional provisions apply to you:
Several US states have enacted comprehensive privacy laws that grant residents additional rights regarding their personal information. If you are a resident of California, Virginia, Colorado, Connecticut, Utah, or another state with similar privacy legislation, you may have the following rights in addition to those described in this Policy:
Right to know / access: You may request details about the categories and specific pieces of personal information we collect, use, disclose, and sell (if applicable).
Right to delete: You may request deletion of your personal information, subject to certain exceptions (e.g., legal obligations, fraud prevention, security purposes).
Right to correct: You may request correction of inaccurate personal information we maintain about you.
Right to opt-out of sale or sharing: We do not sell or share your personal information for cross-context behavioral advertising or targeted advertising purposes. Therefore, we do not offer an "opt-out of sale" link, as there is no sale or sharing to opt out of.
Right to limit use of sensitive personal information: To the extent we collect sensitive personal information (such as precise geolocation or photos, which may include biometric data if used to identify you), we only use it for purposes disclosed in this Policy and as permitted by applicable law. You can manage geolocation and photo permissions in your device settings or via the Service.
Right to non-discrimination: We will not discriminate against you for exercising any of your privacy rights.
Authorized agent: You may designate an authorized agent to make requests on your behalf. We may require verification of both your and the agent's identity and written authorization.
Appeal rights: If we deny your privacy request, you may appeal our decision by contacting us at info@meni.ge.
In the preceding 12 months, we have collected and disclosed the following categories of personal information as described in section 3 of this Policy:
We disclose these categories to the third parties described in section 6 for the business purposes described in section 4. We do not sell your personal information.
We may share copyright infringement records with rights holders, legal advisers, and authorities as necessary to comply with intellectual property laws and enforce our Terms of Service.
Important: When we provide you with customer contact information, you become an independent data controller for that data. You are responsible for compliance with privacy laws regarding your use and storage of customer information.
The Customer Application is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us at info@meni.ge and we will promptly delete such information.
The Admin Panel does not use tracking or analytics cookies. We use only essential cookies for authentication and security, which are strictly necessary for the Service to function. DNT signals do not apply to essential cookies required for service provision.
We apply the same retention periods described in section 8 to all users, including US residents. Personal information is retained for up to 5 years or as required by applicable law.
To exercise any of the rights described above, please:
We will respond to your request within the time period required by applicable state law (typically 45 days, with a possible extension).
We may need to verify your identity before processing your request. We may ask for additional information to match against our records. We will not use information provided for verification for any other purpose.
If you are a resident of the Russian Federation, the following additional provisions apply to you in accordance with Federal Law No. 152-FZ "On Personal Data" dated July 27, 2006:
We process your personal data based on:
Your personal data is primarily stored on servers located in Frankfurt, Germany (AWS region eu-central-1), which constitutes a cross-border transfer of personal data from the Russian Federation.
By using the Service, you consent to the cross-border transfer of your personal data to Germany and other countries where our service providers operate.
We ensure that recipients of your personal data provide adequate protection in accordance with Russian law and international standards. You may withdraw your consent to cross-border transfer at any time by ceasing to use the Service and requesting deletion of your data.
Under Federal Law No. 152-FZ, you have the following rights:
Right to information: You have the right to obtain confirmation of whether we process your personal data, and to receive information about the processing.
Right to access: You may obtain a copy of your personal data that we process.
Right to rectification: You may request correction of inaccurate or incomplete personal data.
Right to withdraw consent: You may withdraw your consent to processing at any time. This does not affect the lawfulness of processing based on consent before its withdrawal, and does not affect processing based on other legal grounds.
Right to deletion (blocking): You may request deletion or blocking of your personal data if:
We may refuse deletion if we have a legal obligation to retain the data or if retention is necessary for the establishment, exercise or defence of legal claims.
Right to object: You may object to processing if you believe it violates your rights or is carried out for unlawful purposes.
Right to lodge a complaint: You have the right to lodge a complaint with Roskomnadzor (Federal Service for Supervision of Communications, Information Technology and Mass Media) if you believe your rights have been violated.
To the extent that photos and caricatures may constitute biometric personal data under Russian law, we process them only with your explicit consent and for the purposes specified in this Policy. You can delete your photos and caricatures at any time via your account settings or the data deletion page at https://meni.ge/privacy/delete.
If you are under 18 years of age, you may use the Service only with the consent of your parent or legal guardian. We do not knowingly collect personal data from persons under 18 without such consent. If you are a parent or guardian and believe your child has provided us with personal data without your consent, please contact us at info@meni.ge.
Please note that Russian law may require certain categories of personal data to be stored on servers located within the territory of the Russian Federation. As an Individual Entrepreneur registered in Georgia, we currently store data on servers in Germany. If you have concerns about this or if you believe specific data localization requirements apply to you, please contact us at info@meni.ge.
To exercise any of the rights described above, please:
We will respond to your request within the time period required by Russian law (typically within 30 days from the date of receipt of your request, with a possible extension of 30 days in complex cases).
If you believe your rights under Russian personal data law have been violated, you may lodge a complaint with:
Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor)
Address: 7 Kitaygorodsky Proezd, Moscow, 109074, Russian Federation
Website: https://rkn.gov.ru
Hotline: 8-800-707-77-66
If you are a resident of the European Union (EU) or European Economic Area (EEA), this Privacy Policy is primarily designed to comply with the EU General Data Protection Regulation (GDPR). The following additional clarifications apply:
This entire Privacy Policy is drafted in accordance with the GDPR. Sections 1-13 of this Policy describe:
Your personal data is stored on servers located in Frankfurt, Germany (AWS region eu-central-1), which is within the European Economic Area. This means your data benefits from the protections of the GDPR and remains within the EEA.
Some of our service providers may process data outside the EEA (for example, AWS Cognito in US East Virginia for authentication). Where such transfers occur, we rely on:
You can request more information about these safeguards by contacting us at info@meni.ge.
As an EU/EEA resident, you have the following rights (detailed in Section 9):
You have the right to lodge a complaint with a data protection supervisory authority in:
List of EU/EEA supervisory authorities:
You can find your local supervisory authority at: https://edpb.europa.eu/about-edpb/about-edpb/members_en
Examples of supervisory authorities:
Germany (where our servers are located):
Various Bundesländer authorities; for federal matters: Der Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (BfDI)
Website: https://www.bfdi.bund.de
France: Commission Nationale de l'Informatique et des Libertés (CNIL)
Website: https://www.cnil.fr
Ireland (where many tech companies have EU headquarters): Data Protection Commission (DPC)
Website: https://www.dataprotection.ie
Spain: Agencia Española de Protección de Datos (AEPD)
Website: https://www.aepd.es
Italy: Garante per la protezione dei dati personali
Website: https://www.garanteprivacy.it
As a non-EU controller (registered in Georgia), we are not currently required under GDPR Article 27 to appoint an EU representative because we do not offer goods or services to EU data subjects on a large scale or monitor their behaviour on a large scale. However, we process data of EU residents in accordance with the GDPR and store data within the EEA.
If you are an EU/EEA resident and have questions about our data practices, you can contact us directly at info@meni.ge.
We process your personal data based on the following legal bases under GDPR Article 6(1):
You can find detailed information about purposes and legal bases in Section 4.
We do not use your personal data for automated decision-making (including profiling) that produces legal effects concerning you or similarly significantly affects you within the meaning of GDPR Article 22.
We may use analytics and aggregated data to understand usage patterns and improve the Service, but these activities do not constitute automated decision-making under Article 22.
To exercise any of your GDPR rights, please:
We will respond to your request without undue delay and in any event within one month of receipt. We may extend this period by two further months where necessary, taking into account the complexity and number of requests.
If you are a resident of the United Kingdom, the following provisions apply to you under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018:
Following Brexit, the United Kingdom has its own data protection regime based on the UK GDPR. This Privacy Policy complies with both EU GDPR and UK GDPR requirements.
The rights, legal bases, and processing principles described in Sections 1-13 apply equally under UK GDPR.
Your personal data is stored on servers located in Frankfurt, Germany (AWS region eu-central-1). As the UK is no longer part of the EEA, this constitutes an international transfer from the UK perspective.
The European Commission has adopted an adequacy decision recognizing the UK as providing adequate data protection, and the UK has adopted a similar adequacy regulation for the EEA. These mutual adequacy decisions facilitate data flows between the UK and EEA.
For transfers to countries outside the UK and EEA (such as the United States for analytics services), we use appropriate safeguards such as:
As a UK resident, you have the same rights as described in Section 9, including:
You have the right to lodge a complaint with the UK supervisory authority:
Information Commissioner's Office (ICO)
Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom
Website: https://ico.org.uk
Helpline: 0303 123 1113
To exercise your rights under UK GDPR, please contact us at info@meni.ge or use our self-service data deletion page at https://meni.ge/privacy/delete.
We will respond within one month of receipt of your request, with possible extension by two further months in complex cases.
If you are a resident of Canada, the following provisions apply to you under the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy laws:
We process your personal information in accordance with PIPEDA's Fair Information Principles and applicable provincial legislation (such as Alberta's PIPA, British Columbia's PIPA, or Quebec's Law 25).
We collect, use and disclose your personal information only for the purposes identified in this Policy and only with your knowledge and consent, except where otherwise required or permitted by law.
Your consent may be express (for example, when you register or upload photos) or implied (for example, when you use the Service to place orders).
You may withdraw your consent at any time by contacting us, subject to legal or contractual restrictions and reasonable notice.
We handle the following sensitive personal information with additional safeguards:
We obtain meaningful consent before collecting sensitive information and use it only for the purposes disclosed.
Your personal information is stored on servers in Germany and may be processed by service providers in the United States and other countries. By using the Service, you consent to the transfer of your personal information outside Canada.
We ensure that foreign service providers provide a comparable level of protection through contractual and technical safeguards.
For Quebec residents: We ensure that international transfers comply with Law 25's requirements, including providing information about the country of transfer and implementing appropriate safeguards.
You have the right to:
Additional rights for Quebec residents under Law 25:
We take special care when processing personal information of minors (persons under 18 in most provinces, under 19 in some provinces).
For Quebec residents: In accordance with Law 25, we obtain parental consent before collecting personal information from children aged 14 and under, except in limited circumstances.
In the event of a privacy breach that poses a real risk of significant harm, we will:
For Quebec residents: We will also comply with Law 25's breach notification requirements, including notifying the Commission d'accès à l'information du Québec (CAI).
We retain personal information only as long as necessary for the purposes identified (up to 5 years as described in Section 8) or as required by law.
We protect personal information with security safeguards appropriate to the sensitivity of the information, as described in Section 11.
If you believe your privacy rights have been violated, you may file a complaint with:
Office of the Privacy Commissioner of Canada (OPC)
Address: 30 Victoria Street, Gatineau, Quebec, K1A 1H3, Canada
Website: https://www.priv.gc.ca
Toll-free: 1-800-282-1376
Email: info@priv.gc.ca
Depending on your province, you may also contact:
Quebec - Commission d'accès à l'information (CAI)
Website: https://www.cai.gouv.qc.ca
Toll-free: 1-888-528-7741
Alberta - Office of the Information and Privacy Commissioner
Website: https://www.oipc.ab.ca
Phone: 1-888-878-4044
British Columbia - Office of the Information and Privacy Commissioner
Website: https://www.oipc.bc.ca
Phone: 1-250-387-5629
To exercise your rights, please contact us at:
Email: info@meni.ge
Subject line: "Privacy Rights Request" or "Demande d'accès aux renseignements personnels"
Or use our data deletion page at https://meni.ge/privacy/delete
We will respond within 30 days of receiving your request, as required by PIPEDA. For complex requests, we will notify you if we need additional time.
If you are a resident of Brazil, the following provisions apply to you under Lei Geral de Proteção de Dados (LGPD) – the Brazilian General Data Protection Law:
We process your personal data in accordance with LGPD (Law No. 13,709/2018). The principles and practices described in this Policy align with LGPD requirements.
We process your personal data based on the following legal bases under LGPD Article 7:
Your personal data is transferred and stored on servers located in Germany (Frankfurt). This constitutes an international transfer from Brazil.
We ensure adequate protection for international transfers through:
By using the Service, you consent to this international transfer.
As a Brazilian data subject, you have the following rights under LGPD Article 18:
We do not knowingly process personal data of children and adolescents under 18 without parental or guardian consent, as required by LGPD and the Brazilian Child and Adolescent Statute (ECA).
We have not appointed a Data Protection Officer (Encarregado de Proteção de Dados) at this time. For privacy matters, please contact us at info@meni.ge.
You have the right to lodge a complaint with the Brazilian supervisory authority:
Autoridade Nacional de Proteção de Dados (ANPD)
Website: https://www.gov.br/anpd
Email: comunicacao@anpd.gov.br
To exercise your rights under LGPD, please contact us at info@meni.ge or use our data deletion page at https://meni.ge/privacy/delete.
We will respond to your request within 15 days from receipt, in accordance with LGPD requirements.
If you are a resident of Australia, the following provisions apply to you under the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs):
We handle your personal information in accordance with the Australian Privacy Principles set out in the Privacy Act 1988.
We collect personal information that is reasonably necessary for our functions and activities (providing the Service). We only collect personal information by lawful and fair means, and with your knowledge and consent where required.
The types of personal information we collect and the purposes for which we use it are described in Sections 3 and 4 of this Policy.
Photos and caricatures may constitute sensitive information under the Privacy Act. We only collect sensitive information with your consent and where reasonably necessary for our functions.
We disclose personal information to third parties as described in Section 6. We do not sell or rent personal information.
When we disclose personal information to venue operators (who may be overseas entities), we take reasonable steps to ensure they comply with the APPs or are subject to similar privacy protections.
Your personal information is stored on servers in Germany and may be processed by service providers in the United States and other countries.
By using the Service, you consent to the disclosure of your personal information to overseas recipients. We take reasonable steps to ensure overseas recipients handle personal information in accordance with the APPs.
You have the right to:
If you are not satisfied with our response to your privacy complaint, you may lodge a complaint with:
Office of the Australian Information Commissioner (OAIC)
Website: https://www.oaic.gov.au
Phone: 1300 363 992
Email: enquiries@oaic.gov.au
To access or correct your personal information, or to make a complaint, please contact us at info@meni.ge.
We will respond to access requests within 30 days and to complaints within a reasonable period (typically 30 days).
If you are a resident of Japan, the following provisions apply to you under the Act on the Protection of Personal Information (APPI):
We handle your personal information (個人情報) in accordance with Japan's Act on the Protection of Personal Information (個人情報の保護に関する法律).
We use your personal information only for the purposes specified in Section 4 of this Policy. We will not use personal information beyond the scope of these purposes without your consent, except as permitted by law.
Your personal information is transferred to and stored on servers located in Germany. We may also transfer personal information to service providers in the United States and other countries.
We obtain your consent for cross-border transfers by providing this notice and obtaining your agreement when you use the Service. We take necessary measures to ensure that foreign service providers handle personal information appropriately.
Photos and caricatures may include sensitive personal data under APPI. We obtain your explicit consent before collecting such information and use it only for the purposes disclosed.
Under APPI, you have the right to:
We may charge a reasonable fee for disclosure requests as permitted by law.
You have the right to file a complaint with the Japanese supervisory authority:
Personal Information Protection Commission (個人情報保護委員会)
Website: https://www.ppc.go.jp
Phone: 03-6457-9680
Consultation line: 03-6457-9849
We retain personal information for the periods described in Section 8 (up to 5 years), unless longer retention is required by Japanese law.
To exercise your rights under APPI, please contact us at info@meni.ge with sufficient details to identify you and your request.
We will respond to your request within a reasonable period in accordance with APPI requirements.
If you are a resident of Switzerland, the following provisions apply to you under the Swiss Federal Act on Data Protection (FADP / nFADP):
We process your personal data in accordance with the revised Swiss Federal Act on Data Protection (nFADP), which entered into force on September 1, 2023.
Switzerland is not part of the EU/EEA but has data protection standards recognized as adequate by the European Commission.
Your personal data is stored on servers in Germany (Frankfurt), which is within the EEA. Switzerland and the EEA have mutual adequacy recognition.
For transfers to countries outside Switzerland and the EEA, we use appropriate safeguards such as Standard Contractual Clauses and additional security measures.
As a Swiss resident, you have the following rights:
We do not make decisions based solely on automated processing that produce legal effects or similarly significantly affect you.
You have the right to lodge a complaint with the Swiss supervisory authority:
Federal Data Protection and Information Commissioner (FDPIC / EDÖB)
Address: Feldeggweg 1, 3003 Bern, Switzerland
Website: https://www.edoeb.admin.ch
Phone: +41 58 462 43 95
Email: info@edoeb.admin.ch
To exercise your rights, please contact us at info@meni.ge or use our data deletion page at https://meni.ge/privacy/delete.
We will respond within 30 days of receiving your request.
If you are a resident of the People's Republic of China (excluding Hong Kong, Macau and Taiwan), the following provisions apply to you under the Personal Information Protection Law (PIPL):
We process your personal information in accordance with the Personal Information Protection Law of the People's Republic of China (中华人民共和国个人信息保护法), which entered into force on November 1, 2021.
We process your personal information based on the following legal bases under PIPL Article 13:
Your personal information is transferred outside of mainland China to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under PIPL, cross-border transfers require:
By using the Service, you explicitly consent to the cross-border transfer of your personal information.
Photos and facial images constitute sensitive personal information (敏感个人信息) under PIPL. We:
As a Chinese data subject, you have the following rights under PIPL:
We do not use automated decision-making to conduct price discrimination or other behaviors that materially impact your rights. If we use automated decision-making, we will inform you and provide options to refuse.
In accordance with PIPL, we obtain consent from parents or guardians before processing personal information of minors under 14 years old. The Service is not intended for children under 14 without parental consent.
For minors aged 14-18, we take special protection measures and limit the scope of processing to what is necessary for the Service.
For privacy matters related to PIPL, please contact us at info@meni.ge. We will designate a person responsible for personal information protection when required by law.
While PIPL does not establish a specific complaint mechanism, you may report violations to:
Cyberspace Administration of China (国家互联网信息办公室)
Website: http://www.cac.gov.cn
Or contact local cyberspace administration authorities.
To exercise your rights under PIPL, please contact us at info@meni.ge or use our data deletion page at https://meni.ge/privacy/delete.
We will respond within 15 days of receiving your request. In cases where we cannot fulfill your request, we will explain the reasons.
If you are a resident of the Republic of Turkey, the following provisions apply to you under the Personal Data Protection Law No. 6698 (KVKK):
We process your personal data in accordance with the Turkish Personal Data Protection Law (Kişisel Verilerin Korunması Kanunu - KVKK), which entered into force on April 7, 2016.
We process your personal data based on the following legal bases under KVKK Article 5:
Your personal data is transferred outside of Turkey to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under KVKK, cross-border transfers require either:
By using the Service, you explicitly consent to the cross-border transfer of your personal data. We implement appropriate safeguards including Standard Contractual Clauses and technical/organizational security measures.
Under KVKK, the following categories of data we may collect are considered sensitive and require explicit consent:
We process sensitive personal data only with your explicit consent and for the specific purposes disclosed in this Policy.
Under KVKK Article 11, you have the right to:
As a data controller, we are registered with the Turkish Data Controllers Registry (Veri Sorumluları Sicil Bilgi Sistemi - VERBİS) as required by KVKK, or will complete registration if required based on the scope of our operations in Turkey.
You have the right to lodge a complaint with the Turkish supervisory authority:
Personal Data Protection Authority (Kişisel Verilerin Korunması Kurumu - KVKK)
Address: Nasuh Akar Mah. Ziyabey Cad. 1407. Sok. No: 4 06520 Balgat-Çankaya/Ankara, Turkey
Website: https://www.kvkk.gov.tr
Email: kvkk@kvkk.gov.tr
We apply the same retention periods described in Section 8 to all users. Personal data is retained for up to 5 years or as required by Turkish law and regulations.
To exercise your rights under KVKK, you can submit a written application:
We will respond to your request within 30 days at the latest, free of charge. If your request requires additional costs, we may charge a fee in accordance with the tariff determined by the Personal Data Protection Board.
If you are a resident of the United Mexican States (Mexico), the following provisions apply to you under the Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP):
We process your personal data in accordance with the Mexican Federal Law on Protection of Personal Data Held by Private Parties (Ley Federal de Protección de Datos Personales en Posesión de los Particulares - LFPDPPP), which entered into force on July 6, 2010, and its Regulations.
We process your personal data based on the following legal bases under LFPDPPP:
This Privacy Policy serves as our Privacy Notice (Aviso de Privacidad) under LFPDPPP and contains:
Under LFPDPPP, the following categories of data we may collect are considered sensitive and require express and written consent:
We process sensitive personal data only with your express consent and for the specific purposes disclosed in this Policy. You have the right to refuse to provide sensitive data, though this may limit certain features of the Service.
Your personal data is transferred outside of Mexico to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under LFPDPPP, international transfers of personal data require your consent. By using the Service and accepting this Privacy Policy, you consent to the international transfer of your personal data.
We ensure adequate protection for international transfers through:
Under LFPDPPP, you have the following rights (known as "ARCO rights"):
You also have the right to:
To exercise your ARCO rights, please submit a request to info@meni.ge with the following information:
We will respond to your ARCO request within 20 business days from the date we receive your request. Our response will indicate whether your request was accepted and, if accepted, we will make it effective within 15 business days.
We may deny your ARCO request in the following cases:
You may limit the use and disclosure of your personal data by:
We do not use or disclose your personal data for secondary purposes (such as advertising or marketing) without your consent.
In accordance with LFPDPPP, we obtain consent from parents or legal guardians (tutores) before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent. For minors aged 16-17, we may require verification of parental consent for certain features.
If you are a parent or guardian and believe your child has provided us with personal data without your consent, please contact us at info@meni.ge.
The Admin Application uses only essential cookies and browser local storage for authentication and core functionality. These are strictly necessary for the Service to work:
We do not use advertising, marketing, or analytics cookies. No cookie consent banner is required as all cookies are strictly necessary for the B2B service.
You have the right to file a complaint with the Mexican supervisory authority:
Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales (INAI)
Address: Insurgentes Sur 3211, Col. Insurgentes Cuicuilco, Alcaldía Coyoacán, C.P. 04530, Ciudad de México
Website: https://home.inai.org.mx
Phone: +52 (55) 5004-2400
Email: atencion@inai.org.mx
INAI handles complaints regarding violations of LFPDPPP and can impose sanctions on data controllers who fail to comply with the law.
We implement physical, technical, and administrative security measures to protect your personal data against damage, loss, alteration, destruction, unauthorized access, or use, as required by LFPDPPP and its Regulations.
These measures include:
We apply the same retention periods described in Section 8 to all users. Personal data is retained for up to 5 years or as required by Mexican law.
Once the retention period expires and there is no legal requirement to keep the data, we will delete or anonymize your personal data.
We will notify you of material changes to this Privacy Notice through:
You will have 5 business days from the notification to express any objection to the changes. If you do not object, we will consider that you accept the changes.
If you object to the changes, we may terminate your access to the Service, or you may delete your account.
To exercise any of your rights under LFPDPPP, please contact us at:
Email: info@meni.ge
Subject line: "ARCO Rights Request" or "Solicitud de Derechos ARCO"
Or use our data deletion page at https://meni.ge/privacy/delete for cancellation requests.
We will respond within the timeframes required by LFPDPPP (20 business days for the response, 15 business days for implementation).
If you are a resident of the Argentine Republic (Argentina), the following provisions apply to you under the Personal Data Protection Act, Law No. 25.326 (PDPA):
We process your personal data in accordance with the Argentine Personal Data Protection Act (Ley de Protección de Datos Personales, Law No. 25.326), enacted on October 4, 2000, and its implementing regulations (Decree 1558/2001).
We process your personal data based on the following legal bases under PDPA:
Under PDPA, we inform you of:
Under PDPA, the following categories of data we may collect are considered sensitive and require express consent:
We process sensitive personal data only with your express and informed consent. You have the right to refuse to provide sensitive data, though this may limit certain features of the Service.
Your personal data is transferred outside of Argentina to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under PDPA, international transfers of personal data to countries that do not provide adequate protection levels require your consent. By using the Service and accepting this Privacy Policy, you consent to the international transfer of your personal data.
Argentina recognizes EU/EEA countries as providing adequate data protection. For transfers to other countries (such as the United States), we implement:
Under PDPA, you have the following rights:
You also have the right to:
To exercise your rights, please submit a request to info@meni.ge with:
We will respond to your request within 10 business days from the date we receive it. If we need additional time, we will notify you of the delay.
We may deny your request in cases provided by law, such as when:
In accordance with PDPA, we obtain consent from parents or legal guardians (tutores or representantes legales) before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent. For minors aged 16-17, we may require verification of parental consent for certain features.
If you are a parent or guardian and believe your child has provided us with personal data without your consent, please contact us at info@meni.ge.
Personal data databases must be registered with the Argentine Data Protection Authority (Agencia de Acceso a la Información Pública - AAIP) in the National Database Registry (Registro Nacional de Bases de Datos).
We comply with database registration requirements as applicable to our operations in Argentina.
You have the right to file a complaint with the Argentine data protection supervisory authority:
Agencia de Acceso a la Información Pública (AAIP)
Address: Av. Pte. Gral. Julio A. Roca 710, Piso 3°, C1067ABC, Ciudad Autónoma de Buenos Aires, Argentina
Website: https://www.argentina.gob.ar/aaip
Phone: 0800-222-DATO (3286) / (+54 11) 2821-0047
Email: datospersonales@aaip.gob.ar
AAIP is responsible for supervising compliance with PDPA and has the authority to impose sanctions on data controllers who violate the law.
We implement technical and organizational security measures to protect your personal data against unauthorized access, alteration, destruction, or disclosure, as required by PDPA and Decree 1558/2001.
These measures include:
The Admin Application uses only essential cookies and browser local storage for authentication and core functionality. These are strictly necessary for the Service to work:
We do not use advertising, marketing, or analytics cookies. These essential cookies cannot be disabled without preventing access to the Admin Application.
We apply the same retention periods described in Section 8 to all users. Personal data is retained for up to 5 years or as required by Argentine law.
Once the retention period expires and there is no legal requirement to keep the data, we will delete or anonymize your personal data in a manner that prevents its reconstruction.
We do not use your personal data for direct marketing purposes without your prior consent. If we send marketing communications, you can opt out at any time.
We do not make decisions based solely on automated processing that produce legal effects or similarly significantly affect you.
In the event of a personal data breach that may significantly affect your rights, we will:
To exercise any of your rights under Argentine law, please contact us at:
Email: info@meni.ge
Subject line: "PDPA Rights Request" or "Solicitud de Derechos - Ley 25.326"
Or use our data deletion page at https://meni.ge/privacy/delete for deletion requests.
We will respond within 10 business days as required by PDPA. If additional time is needed, we will notify you of the extension.
If you are a resident of Georgia, the following provisions apply to you under the Law of Georgia on Personal Data Protection:
We process your personal data in accordance with the Law of Georgia on Personal Data Protection (პერსონალურ მონაცემთა დაცვის შესახებ საქართველოს კანონი), adopted on December 28, 2011, and aligned with EU GDPR principles.
As a Georgian entity (Individual Entrepreneur registered in Georgia), we are subject to Georgian data protection law and supervised by the Personal Data Protection Service of Georgia.
We process your personal data based on the following legal bases:
Under Georgian data protection law, you have the following rights:
These rights are similar to GDPR rights described in Section 9.
You have the right to lodge a complaint with the Georgian supervisory authority:
Personal Data Protection Service (პერსონალურ მონაცემთა დაცვის სამსახური)
Address: 32 Kheivani St., 0179 Tbilisi, Georgia
Website: https://personaldata.ge
Phone: (+995 32) 2 12 35 01
Email: info@pdp.ge
While our servers are located in Germany (Frankfurt), we are a Georgian entity and subject to Georgian jurisdiction. This provides you with the protection of Georgian data protection law.
To exercise your rights under Georgian law, please contact us at info@meni.ge or use our data deletion page at https://meni.ge/privacy/delete.
We will respond within 30 days as required by Georgian law.
If you are a resident of the Republic of Armenia, the following provisions apply to you under the Law on Protection of Personal Data:
We process your personal data in accordance with the Law of the Republic of Armenia on Protection of Personal Data (Անձնական տվյալների պահպանության մասին, Law No. HO-59-N), adopted on March 26, 2015.
We process your personal data based on the following legal bases:
Under Armenian law, the following data we collect is considered sensitive and requires express consent:
Under Armenian data protection law, you have the following rights:
Your personal data is transferred to Germany (Frankfurt) for storage. By using the Service, you consent to this international transfer.
You have the right to contact the Armenian data protection authority:
Authorized Body for Protection of Personal Data
Address: 15 M. Mkrtchyan St., 0010 Yerevan, Republic of Armenia
Website: https://www.e-gov.am/gov-decrees/item/28321/
Phone: (+374 10) 51 14 42
To exercise your rights, contact us at info@meni.ge. We will respond within the timeframe required by Armenian law.
If you are a resident of the Republic of Azerbaijan, the following provisions apply to you under the Law on Personal Data:
We process your personal data in accordance with the Law of the Republic of Azerbaijan on Personal Data (Fərdi məlumatlar haqqında, Law No. 998-IIIQD), adopted on May 11, 2010.
We process your personal data based on the following legal bases:
Under Azerbaijani law, the following data we collect may be considered special categories and require express consent:
We process such data only with your express consent.
Under Azerbaijani data protection law, you have the following rights:
Your personal data is transferred to Germany (Frankfurt) for storage. By using the Service and accepting this Privacy Policy, you consent to the international transfer of your personal data.
For data protection matters in Azerbaijan, you may contact:
Commissioner for Human Rights (Ombudsman) of the Republic of Azerbaijan
Address: 16 U. Hajibeyov St., AZ1000 Baku, Azerbaijan
Website: http://www.ombudsman.az
Phone: (+994 12) 498 63 28
Email: office@ombudsman.az
To exercise your rights, contact us at info@meni.ge. We will respond within a reasonable timeframe.
If you are a resident of the Republic of Kazakhstan, the following provisions apply to you under the Law on Personal Data and their Protection:
We process your personal data in accordance with the Law of the Republic of Kazakhstan on Personal Data and their Protection (Дербес деректер және оларды қорғау туралы / О персональных данных и их защите, Law No. 94-V), adopted on May 21, 2013.
We process your personal data based on the following legal bases:
Under Kazakhstani law, biometric data is a special category of personal data. We collect:
We process biometric data only with your consent and for the purposes specified in this Policy.
Under Kazakhstani data protection law, you have the following rights:
Your personal data is transferred outside of Kazakhstan to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
By using the Service and accepting this Privacy Policy, you consent to the cross-border transfer of your personal data. We ensure adequate protection through contractual and technical measures.
In accordance with Kazakhstani law, we obtain consent from parents or legal representatives before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent.
For data protection matters in Kazakhstan, you may contact the authorized state body responsible for personal data protection.
Information is available at the official government portal: https://egov.kz
To exercise your rights under Kazakhstani law, please contact us at:
Email: info@meni.ge
Subject line: "Personal Data Rights Request" or "Запрос о правах на персональные данные"
Or use our data deletion page at https://meni.ge/privacy/delete for deletion requests.
We will respond within the timeframe required by Kazakhstani law (typically 30 days).
If you are a resident of Ukraine, the following provisions apply to you under the Law of Ukraine on Protection of Personal Data:
We process your personal data in accordance with the Law of Ukraine on Protection of Personal Data (Про захист персональних даних, Law No. 2297-VI), adopted on June 1, 2010.
Ukraine is in the process of aligning its data protection legislation with EU GDPR requirements.
We process your personal data based on the following legal bases:
Under Ukrainian law, the following data we collect is considered special categories and requires express consent:
We process special categories of personal data only with your express written consent.
Under Ukrainian data protection law, you have the following rights:
Your personal data is transferred outside of Ukraine to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
By using the Service and accepting this Privacy Policy, you consent to the cross-border transfer of your personal data. We ensure adequate protection through contractual and technical measures.
In accordance with Ukrainian law, we obtain consent from parents or legal representatives before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent.
You have the right to contact the Ukrainian data protection authority:
Ukrainian Parliament Commissioner for Human Rights (Уповноважений Верховної Ради України з прав людини)
Address: 21/8 Instytutska St., 01008 Kyiv, Ukraine
Website: https://www.ombudsman.gov.ua
Phone: (+380 44) 253-80-51
Email: hotline@ombudsman.gov.ua
To exercise your rights under Ukrainian law, please contact us at:
Email: info@meni.ge
Subject line: "Personal Data Rights Request" or "Запит про права на персональні дані"
Or use our data deletion page at https://meni.ge/privacy/delete for deletion requests.
We will respond within the timeframe required by Ukrainian law (typically 30 days).
If you are a resident of the Islamic Republic of Iran, the following provisions apply to you under Iranian data protection regulations:
We process your personal data in accordance with Iranian laws and regulations, including provisions of the Computer Crimes Law (قانون جرایم رایانهای) and regulations on protection of personal data and privacy.
We process your personal data based on the following legal bases:
Under Iranian law, we handle the following sensitive data with additional protection measures:
We process such data only with your consent and implement enhanced security measures.
Under Iranian data protection regulations, you have the following rights:
Your personal data is transferred to and stored on servers located in Germany (Frankfurt). By using the Service, you acknowledge and consent to this international transfer.
We implement appropriate security measures to protect data transferred internationally, including encryption and access controls.
In accordance with Iranian law and Islamic principles, we require consent from parents or legal guardians before processing personal data of minors (persons under 18 years old).
The Service is not intended for children without parental consent and supervision.
We implement technical, physical, and administrative security measures in accordance with Iranian regulations to protect your personal data against unauthorized access, disclosure, alteration, or destruction.
These measures include:
To exercise your rights or for data protection inquiries, please contact us at:
Email: info@meni.ge
Subject line: "Personal Data Rights Request" or "درخواست حقوق دادههای شخصی"
We will respond to your request within a reasonable timeframe in accordance with Iranian law.
If you are a resident of the United Arab Emirates (UAE), the following provisions apply to you under the UAE Federal Data Protection Law:
We process your personal data in accordance with the UAE Personal Data Protection Law (المرسوم بقانون اتحادي رقم 45 لسنة 2021 في شأن حماية البيانات الشخصية, Federal Decree-Law No. 45 of 2021), which came into effect on January 2, 2022.
We process your personal data based on the following legal bases under UAE law:
Under UAE law, the following data we collect is considered sensitive and requires explicit consent:
We process sensitive personal data only with your explicit consent and implement additional security measures as required by UAE law.
Under UAE data protection law, you have the following rights:
Your personal data is transferred outside of the UAE to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under UAE law, we ensure that international transfers of your personal data are protected through:
By using the Service, you consent to the international transfer of your personal data as described above.
In accordance with UAE law, we obtain consent from parents or legal guardians before processing personal data of minors. In the UAE, minors are persons under 21 years old.
The Service is not intended for persons under 18 without parental consent. For persons aged 18-20, we may require verification of parental consent for certain features.
If you are a parent or guardian and believe your child has provided us with personal data without your consent, please contact us at info@meni.ge.
You have the right to lodge a complaint with the UAE supervisory authority:
UAE Data Office (مكتب البيانات)
Ministry of Justice
Website: https://www.uaedataoffice.gov.ae
Email: dataoffice@moj.gov.ae
Phone: (+971) 600 522 222
The UAE Data Office is responsible for supervising compliance with the Personal Data Protection Law and has the authority to investigate complaints and impose penalties for violations.
In the event of a personal data breach that may pose a risk to your rights and freedoms, we will:
We apply the same retention periods described in Section 8 to all users. Personal data is retained for up to 5 years or as required by UAE law.
Once the retention period expires and there is no legal requirement to keep the data, we will securely delete or anonymize your personal data.
To exercise any of your rights under UAE law, please contact us at:
Email: info@meni.ge
Subject line: "Personal Data Rights Request" or "طلب حقوق البيانات الشخصية"
Or use our data deletion page at https://meni.ge/privacy/delete for deletion requests.
We will respond to your request within 30 days as required by UAE law. If we need additional time due to the complexity of your request, we will notify you and may extend the response time by an additional 30 days.
If you are a resident of the Oriental Republic of Uruguay, the following provisions apply to you under the Personal Data Protection and Habeas Data Action Law:
We process your personal data in accordance with the Personal Data Protection and Habeas Data Action Law (Ley de Protección de Datos Personales y Acción de Habeas Data, Law No. 18.331), adopted on August 11, 2008, and its implementing Decree No. 414/009.
Uruguay has been recognized by the European Commission as providing adequate protection for personal data, making it the first Latin American country to receive this recognition.
We process your personal data based on the following legal bases under Uruguayan law:
Under Uruguayan law, the following data we collect is considered sensitive (datos sensibles) and requires express written consent:
We process sensitive data only with your express written consent and for the purposes explicitly disclosed.
Under Uruguayan data protection law, you have the following rights:
Your personal data is transferred to servers located in Germany (Frankfurt) and may be processed by service providers in other countries.
Uruguay and the European Union mutually recognize each other as providing adequate data protection. Transfers to other countries require appropriate safeguards.
By using the Service, you consent to the international transfer of your personal data with appropriate safeguards in place.
In accordance with Uruguayan law, we obtain consent from parents or legal representatives (padres o representantes legales) before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent.
You have the right to lodge a complaint with the Uruguayan data protection authority:
Unidad Reguladora y de Control de Datos Personales (URCDP)
Address: Andes 1365, Piso 10, 11100 Montevideo, Uruguay
Website: https://www.gub.uy/unidad-reguladora-control-datos-personales
Phone: (+598) 2901 2929
Email: urcdp@agesic.gub.uy
In addition to administrative remedies, Uruguayan law provides a constitutional action called Habeas Data (Acción de Habeas Data), which allows you to seek judicial protection of your personal data rights.
To exercise your rights under Uruguayan law, please contact us at:
Email: info@meni.ge
Subject line: "Solicitud de Derechos - Ley 18.331" or "Data Rights Request"
Or use our data deletion page at https://meni.ge/privacy/delete
We will respond to your request within the timeframes required by Uruguayan law (typically 5 working days for access requests, longer for complex requests).
If you are a resident of the Republic of Peru, the following provisions apply to you under the Personal Data Protection Law:
We process your personal data in accordance with the Personal Data Protection Law (Ley de Protección de Datos Personales, Law No. 29733), enacted on July 3, 2011, and its implementing regulations (Supreme Decree No. 003-2013-JUS).
We process your personal data based on the following legal bases under Peruvian law:
Under Peruvian law, the following data we collect is considered sensitive (datos sensibles) and requires express, written and prior consent:
We process sensitive data only with your express written consent, obtained prior to processing, and for the specific purposes disclosed.
Under Peruvian law, you have the following ARCO rights:
You also have the right to:
To exercise your ARCO rights, please submit a request to info@meni.ge with:
We will respond to your ARCO request within 10 business days. If we need additional time, we may extend the response period by 5 business days and will notify you of the extension.
Your personal data is transferred outside of Peru to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
By using the Service and accepting this Privacy Policy, you provide express consent to the international transfer of your personal data. We ensure adequate protection through contractual and technical safeguards.
In accordance with Peruvian law, we obtain consent from parents or legal guardians (padres o tutores legales) before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent.
You have the right to lodge a complaint with the Peruvian data protection authority:
Autoridad Nacional de Protección de Datos Personales
Dirección General de Transparencia, Acceso a la Información Pública y Protección de Datos Personales
Ministry of Justice and Human Rights
Address: Calle Scipión Llona 350, Miraflores, Lima, Peru
Website: https://www.minjus.gob.pe/proteccion-de-datos-personales/
Email: protecciondedatospersonales@minjus.gob.pe
Email: info@meni.ge
Subject line: "Solicitud de Derechos ARCO - Ley 29733" or "ARCO Rights Request"
Or use our data deletion page at https://meni.ge/privacy/delete
If you are a resident of the Republic of Chile, the following provisions apply to you under the Law on Protection of Private Life:
We process your personal data in accordance with the Law on Protection of Private Life (Ley sobre Protección de la Vida Privada, Law No. 19.628), enacted on August 28, 1999.
Chile is in the process of modernizing its data protection legislation to align with international standards including GDPR.
We process your personal data based on the following legal bases under Chilean law:
Under Chilean law, the following data we collect is considered sensitive (datos sensibles) and requires express written consent:
We process sensitive data only with your express written consent.
Under Chilean data protection law, you have the following rights:
Your personal data is transferred to servers located in Germany (Frankfurt) and may be processed by service providers in other countries.
By using the Service, you consent to the international transfer of your personal data. We implement appropriate safeguards to protect data transferred internationally.
In accordance with Chilean law and general principles of protection of minors, we obtain consent from parents or legal guardians (padres o representantes legales) before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent.
For data protection matters, you may contact:
Servicio Nacional del Consumidor (SERNAC)
Website: https://www.sernac.cl
Phone: 800 700 100
Address: Teatinos 120, Santiago, Chile
You may also file a habeas data action (acción de protección or recurso de amparo) in Chilean courts to protect your personal data rights.
To exercise your rights under Chilean law, please contact us at:
Email: info@meni.ge
Subject line: "Solicitud de Derechos - Ley 19.628" or "Data Rights Request"
Or use our data deletion page at https://meni.ge/privacy/delete
We will respond to your request within a reasonable timeframe.
If you are a resident of the Republic of Colombia, the following provisions apply to you under the Statutory Law on Personal Data Protection:
We process your personal data in accordance with the Statutory Law on Personal Data Protection (Ley Estatutaria de Protección de Datos Personales, Law No. 1581), enacted on October 17, 2012, and its implementing regulations (Decree 1377 of 2013).
We process your personal data based on the following legal bases under Colombian law:
Under Colombian law, the following data we collect is considered sensitive (datos sensibles) and requires prior, express and informed consent:
We process sensitive data only with your prior, express and informed consent. You have the right to refuse to provide sensitive data without negative consequences, though this may limit certain features of the Service.
Under Colombian data protection law, you have the following rights:
To exercise your rights, please submit a request to info@meni.ge with:
We will respond to your request within 10 business days informing you whether we accept or reject it. If accepted, we will implement your request within 15 business days.
Your personal data is transferred outside of Colombia to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under Colombian law, we ensure that international transfers comply with legal requirements through:
By using the Service, you provide consent to the international transfer of your personal data.
In accordance with Colombian law, we obtain authorization from parents or legal guardians (padres o representantes legales) before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent.
Colombian law provides special protection for personal data of children and adolescents, requiring that processing respect their prevalence and superiority of rights.
You have the right to lodge a complaint with the Colombian data protection authority:
Superintendencia de Industria y Comercio (SIC)
Dirección de Investigación de Protección de Datos Personales
Address: Carrera 13 No. 27-00, Pisos 1 y 3, Bogotá D.C., Colombia
Website: https://www.sic.gov.co
Phone: (+57 1) 587 0000
Email: contactenos@sic.gov.co
In compliance with Colombian law, personal data databases must be registered with the National Registry of Databases (Registro Nacional de Bases de Datos - RNBD) administered by the Superintendence of Industry and Commerce.
We comply with database registration requirements as applicable to our operations in Colombia.
To exercise your rights under Colombian law, please contact us at:
Email: info@meni.ge
Subject line: "Solicitud de Derechos - Ley 1581" or "Data Rights Request"
Or use our data deletion page at https://meni.ge/privacy/delete
If you are a resident of the Republic of Indonesia, the following provisions apply to you under the Personal Data Protection Law:
We process your personal data in accordance with the Personal Data Protection Law (Undang-Undang Perlindungan Data Pribadi, Law No. 27 of 2022), enacted on October 17, 2022.
The law has a 2-year transition period for full implementation, during which we are working to ensure full compliance.
We process your personal data based on the following legal bases under Indonesian law:
Under Indonesian law, the following data we collect is considered specific personal data (data pribadi yang bersifat spesifik) and requires explicit consent:
We process specific personal data only with your explicit consent and implement additional security measures.
Under Indonesian data protection law, you have the following rights:
Your personal data is transferred outside of Indonesia to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under Indonesian law, we ensure that cross-border transfers comply with legal requirements through:
By using the Service, you provide consent to the cross-border transfer of your personal data.
In accordance with Indonesian law, we obtain consent from parents or legal guardians (orang tua atau wali) before processing personal data of children under 18 years old.
The Service is not intended for children under 16 without parental consent.
In the event of a personal data breach, we will:
For data protection matters in Indonesia, the supervisory authority is:
Ministry of Communication and Informatics (Kementerian Komunikasi dan Informatika / Kominfo)
Website: https://www.kominfo.go.id
Email: humas@mail.kominfo.go.id
The government is establishing a dedicated Personal Data Protection Agency as required by the law.
To exercise your rights under Indonesian law, please contact us at:
Email: info@meni.ge
Subject line: "Personal Data Rights Request" or "Permintaan Hak Perlindungan Data Pribadi"
Or use our data deletion page at https://meni.ge/privacy/delete
We will respond to your request within a reasonable timeframe as required by Indonesian law.
If you are a resident of the Republic of the Philippines, the following provisions apply to you under the Data Privacy Act:
We process your personal data in accordance with the Data Privacy Act of 2012 (Republic Act No. 10173), enacted on August 15, 2012, and its Implementing Rules and Regulations.
The Philippines has one of the most comprehensive data privacy frameworks in Southeast Asia.
We process your personal data based on the following legal bases under Philippine law:
Under Philippine law, the following data we collect is considered sensitive personal information and requires additional consent:
We process sensitive personal information only with your consent, and we implement strict security measures to protect it.
Under the Data Privacy Act, you have the following rights:
Your personal data is transferred outside of the Philippines to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under Philippine law, we ensure that cross-border transfers comply with legal requirements through:
By using the Service, you consent to the cross-border transfer of your personal data.
In accordance with Philippine law, we obtain consent from parents or legal guardians before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent. We take special measures to protect children's privacy and comply with Philippine laws on child protection.
In the event of a personal data breach, we will:
You have the right to lodge a complaint with the Philippine data protection authority:
National Privacy Commission (NPC / Pambansang Komisyon sa Pagkapribado)
Address: 5th Floor, Delegation Building, PICC Complex, Pasay City, Metro Manila, Philippines
Website: https://www.privacy.gov.ph
Email: info@privacy.gov.ph
Hotline: (+632) 8234-2228
The NPC has the authority to investigate complaints, impose penalties, and issue compliance orders for violations of the Data Privacy Act.
We comply with registration requirements under the Data Privacy Act as applicable to our operations in the Philippines.
To exercise your rights under Philippine law, please contact us at:
Email: info@meni.ge
Subject line: "Data Rights Request" or "Kahilingan para sa Karapatan sa Datos"
Or use our data deletion page at https://meni.ge/privacy/delete
We will respond to your request within 15 days for access requests, or within a reasonable period for other requests, as required by Philippine law and NPC guidelines.
If you are a resident of the Socialist Republic of Vietnam, the following provisions apply to you under Vietnamese data protection regulations:
We process your personal data in accordance with Vietnamese laws and regulations, including the Law on Cybersecurity (Luật An ninh mạng, Law No. 24/2018/QH14) and the Decree on Personal Data Protection (Nghị định về Bảo vệ dữ liệu cá nhân, Decree No. 13/2023/NĐ-CP), which came into effect on July 1, 2023.
We process your personal data based on the following legal bases under Vietnamese law:
Under Vietnamese law, the following data we collect is considered sensitive personal data and requires explicit consent:
We process sensitive personal data only with your explicit consent and implement enhanced security measures.
Under Vietnamese data protection regulations, you have the following rights:
Your personal data is transferred outside of Vietnam to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under Vietnamese law, we ensure that cross-border transfers comply with legal requirements through:
By using the Service, you consent to the cross-border transfer of your personal data.
In accordance with Vietnamese law, we obtain consent from parents or legal guardians (cha mẹ hoặc người giám hộ hợp pháp) before processing personal data of children under 16 years old.
The Service is not intended for children under 16 without parental consent.
In the event of a personal data breach, we will:
For data protection matters in Vietnam, the supervisory authority is:
Ministry of Public Security - Department of Cybersecurity and Hi-Tech Crime Prevention
Bộ Công an - Cục An ninh mạng và Phòng chống tội phạm sử dụng công nghệ cao
Website: https://www.bocongan.gov.vn
To exercise your rights under Vietnamese law, please contact us at:
Email: info@meni.ge
Subject line: "Personal Data Rights Request" or "Yêu cầu quyền về dữ liệu cá nhân"
Or use our data deletion page at https://meni.ge/privacy/delete
We will respond to your request within a reasonable timeframe as required by Vietnamese law.
If you are a resident of the Kingdom of Thailand, the following provisions apply to you under the Personal Data Protection Act:
We process your personal data in accordance with the Personal Data Protection Act (พระราชบัญญัติคุ้มครองข้อมูลส่วนบุคคล พ.ศ. 2562, B.E. 2562 / 2019), which came into full effect on June 1, 2022.
Thailand's PDPA is based on EU GDPR principles and provides comprehensive data protection rights.
We process your personal data based on the following legal bases under Thai law:
Under Thai law, the following data we collect is considered sensitive personal data (ข้อมูลส่วนบุคคลที่มีความอ่อนไหว) and requires explicit consent:
We process sensitive personal data only with your explicit consent. You have the right to refuse consent for sensitive data processing without negative consequences, though this may limit certain features.
Under Thai PDPA, you have the following rights:
Your personal data is transferred outside of Thailand to servers located in Germany (Frankfurt) and may be processed by service providers in other countries including the United States.
Under Thai law, we ensure that cross-border transfers comply with legal requirements through:
By using the Service, you consent to the cross-border transfer of your personal data.
In accordance with Thai law, we obtain consent from parents or legal guardians (พ่อแม่หรือผู้ปกครอง) before processing personal data of minors.
Important: In Thailand, persons under 20 years old are considered minors. The Service is not intended for persons under 18 without parental consent.
As our operations in Thailand develop, we will appoint a Data Protection Officer (เจ้าหน้าที่คุ้มครองข้อมูลส่วนบุคคล) if required by law.
You have the right to lodge a complaint with the Thai data protection authority:
Personal Data Protection Committee (PDPC / คณะกรรมการคุ้มครองข้อมูลส่วนบุคคล)
Office of the Personal Data Protection Committee
Ministry of Digital Economy and Society
Website: https://www.mdes.go.th
Email: pdpc@mdes.go.th
To exercise your rights under Thai law, please contact us at:
Email: info@meni.ge
Subject line: "Personal Data Rights Request" or "คำขอใช้สิทธิข้อมูลส่วนบุคคล"
Or use our data deletion page at https://meni.ge/privacy/delete
We will respond to your request within 30 days as required by Thai law.
If you are a resident of the Republic of the Union of Myanmar, the following provisions apply to you under Myanmar law and regulations:
We process your personal data in accordance with Myanmar laws and regulations, including the Privacy and Security Law (2013), the Electronic Transactions Law (2004), and relevant regulations.
Myanmar is in the process of developing more comprehensive data protection legislation.
We process your personal data based on the following principles:
We handle the following sensitive information with additional care and security:
We process such data only with your consent and implement appropriate security measures.
Under Myanmar law and international best practices, you have the following rights:
Your personal data is transferred outside of Myanmar to servers located in Germany (Frankfurt) and may be processed by service providers in other countries.
We implement appropriate safeguards for international data transfers, including:
By using the Service, you consent to the cross-border transfer of your personal data.
In accordance with Myanmar law and international best practices, we obtain consent from parents or legal guardians before processing personal data of minors under 18 years old.
The Service is not intended for children under 16 without parental consent.
We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction, including:
For data protection matters in Myanmar, you may contact relevant authorities or industry bodies such as:
Ministry of Transport and Communications
Website: https://www.motc.gov.mm
As Myanmar develops its data protection framework, dedicated supervisory authorities may be established.
To exercise your rights or for data protection inquiries, please contact us at:
Email: info@meni.ge
Subject line: "Personal Data Rights Request"
Or use our data deletion page at https://meni.ge/privacy/delete
We will respond to your request within a reasonable timeframe.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, you can contact us at:
Individual Entrepreneur Aleksandr Verbitskii
Registered in the Republic of Georgia
Email: info@meni.ge
Postal address:
6010, საქართველო, ქალაქი ბათუმი, გრიგოლ ელიავას ქუჩა, N 32ე, სართული 2, ბინა N201ა