OrderBridge is built for restaurant owners and operators who want to share field notes without putting their names on the internet. This page explains what we collect for membership verification, what stays private, and what never appears publicly.
This is a policy page, not a contact page. We intentionally do not publish author profiles or a public contact form.
What we collect at signup
- Email address (for verification only)
- Role (owner, operator, chef, manager, or other restaurant role)
- Restaurant stage (active, soft opening, opening, build-out, planning, or idea)
- Selected Google Place details when provided (place ID, display name, address, website domain, business status)
- Consent confirmation and security challenge tokens
- Technical signals needed to prevent abuse (rate limits, bot checks) — we do not store IP addresses in the membership database
We do not ask for your personal name, phone number, or a public biography.
How verification works
- Verified: active Google-listed restaurant, confirmed email, and matching non-free email/website domain.
- Provisional: idea, planning, build-out, soft-opening, or opening-stage applicants after email confirmation. A Google listing is optional.
- Pending review: active restaurant with a valid listing but no safe domain match (including free email providers). Review is private.
Verification confirms a connection to a restaurant context. It is not an endorsement of the restaurant, menu, ownership claim, or business quality.
Anonymization promise
- We do not publish signup records.
- We do not publish names, emails, or restaurant-to-person associations.
- We do not create public author profiles.
- Field notes and community contributions are presented without personal identity.
Private vs public boundary
Membership verification data is private. Public pages may show anonymous stories, product notes, and educational content. Analytics events are designed to avoid email addresses, place IDs, restaurant names, and street addresses.
Retention
- Unverified signups and expired verification tokens are deleted on a scheduled cleanup (typically within 14 days).
- Verified, provisional, and pending-review memberships retain the minimum verification metadata needed for membership integrity.
- One-time verification tokens are stored only as irreversible hashes and expire quickly.
Subprocessors
- Cloudflare — hosting, Workers, D1 storage, Turnstile bot protection, rate limiting, and transactional email delivery.
- Google Places — restaurant location lookup and listing details used only for verification autofill and domain matching.
- Metrone — privacy-conscious site analytics on OrderBridge pages.
Security
Signup is protected with Cloudflare Turnstile and request rate limits. Google Places API keys stay on the server. Verification links are single-use and time-limited.
Affiliate disclosure
If you sign up for Toast or ChowNow through links on this site, OrderBridge may earn a referral commission at no extra cost to you. Membership verification is separate from affiliate relationships.
Changes
If this policy changes in a material way, we will update the date at the top of this page.