Privacy Policy

Last updated: October 4, 2025

Introduction

Welcome to tray-verify.com (“TrayVerify”, “we”, “us” or “our”). We are a U.S.-based business-to-business (B2B) service providing AI-driven tray photo verification and analytics for commercial and institutional kitchens. This Privacy Policy describes how we collect, use, share, and protect personal information when you use our website and services (collectively, the “Service”). Our Service is intended for use by business entities and organizations, not for individual consumer or household use. However, we are committed to complying with all applicable U.S. privacy laws – including the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) – and relevant regulations such as Google’s advertising policies. By using our Service, you acknowledge that you have read and agree to this Privacy Policy. If you do not agree, please discontinue use of the Service. We may update this Policy from time to time and will post any changes with an updated effective date. Continued use of the Service constitutes your consent to the terms of the then-current Privacy Policy.

Information We Collect

We collect a variety of information to operate our Service and improve your experience. This includes information you actively provide to us, as well as data collected automatically about your use of our Service:

• Information You Provide: When you interact with TrayVerify, for example by requesting a demo, creating an account, or contacting us, you may give us personal and business information. This can include identifiers and contact details (such as your name, work email address, phone number, job title, and company name), account login credentials, and any content you choose to upload or submit. For instance, if you upload photos or data for tray verification, or send us inquiries, we will collect the information contained in those submissions. We assume that any personal information you provide to us about others (e.g. your employees or customers) is done with proper authority or consent.
• Usage and Interaction Data: We automatically collect data about how you and your users interact with our website and platform. This online user activity data may include logs of actions taken in the system, the pages or features you access, the date and time of your visits, the duration of use, error reports, and other analytic information about your usage patterns. For example, our systems may record when a tray image is uploaded, how long the verification process takes, and which features in the dashboard are used. This helps us understand engagement and improve functionality.
• Device and Browser Information: Like most online services, we gather technical information sent by your browser or device when you access TrayVerify. This includes your Internet Protocol (IP) address, device identifiers, browser type, operating system, referral URLs, and general location information inferred from your IP (e.g. city or region)[1]. We also collect information about the device you use, such as whether you are on a PC or mobile device, device model, and network information. This data helps us ensure the Service works properly across different devices and troubleshoot technical issues.
• Cookies and Tracking Technologies: We use cookies and similar technologies (such as web beacons and pixels) to collect information about your browsing actions and preferences over time. Cookies are small data files placed on your device. They help our site remember your settings, facilitate account login, and gather analytics about how visitors use our site. For instance, cookies allow us to recognize when you return to our site and can store your preferences. We also partner with third-party analytics and marketing services that use their own cookies or tracking tags on our site. These technologies collect information about your online activities, such as pages viewed and links clicked, which we use for analytics, personalization, and advertising as described below.

How We Use Your Information

We use the collected information for the following business purposes, in accordance with applicable law:

• Providing and Improving the Service: We process data to operate our Service’s core functionality – for example, to verify meal tray contents via our AI algorithms, display results to you, and maintain your user account. We use your information to personalize and improve the Service’s performance and features. This includes using feedback and usage data to refine our AI models, fix bugs, and optimize the user experience.
• Analytics and Product Development: Information about how users interact with TrayVerify (e.g. feature usage, frequency of certain actions, error rates) is analyzed to understand trends and enhance our offerings. We utilize analytics tools (like Google Analytics and HubSpot) to track user activity and measure website traffic, helping us identify popular features and areas for improvement[2]. This data may also be used in an aggregated or de-identified form for research and development of new products or features.
• Communication and Support: We use contact information (such as email or phone) to communicate with you for account management and customer support purposes. For example, we may send you Service-related announcements, respond to your inquiries, provide training or onboarding materials, and notify you about important updates or changes (like software updates or changes to this Policy). We may also send surveys or solicit feedback to improve our Service (participation is optional).
• Marketing and Outreach: If you request information or if your organization might benefit from our product, we may use your contact details to send you promotional communications about TrayVerify’s offerings, such as newsletters, product updates, event invitations, or other marketing emails. We will do so in accordance with applicable spam laws (see Marketing Communications below for your choices). You can opt out of marketing messages at any time. We do not send unsolicited marketing to individual consumers, and our marketing efforts are generally targeted to organizations that have shown interest in our solutions.
• Security and Compliance: We may use data (including automatically collected technical and usage data) to protect the security of our Service, our company, and our users. This includes monitoring for fraudulent or suspicious activity, enforcing our terms of service, and detecting/preventing malicious behavior. Additionally, we will use and retain personal information as needed to comply with our legal obligations (for example, complying with lawful requests from law enforcement) and to exercise or defend our legal rights.
• Other Business Purposes: We may use personal information for other legitimate business purposes consistent with the context of collection. For instance, we may anonymize or aggregate personal data and use it for internal reports or external marketing (e.g. showing industry trends or average results across clients, without identifying individuals). If we intend to use your information for a purpose materially different from those listed, we will notify you or obtain your consent as required by law.

Cookies and Tracking Technologies

Cookies and Analytics: TrayVerify uses both first-party and third-party cookies to make our website function effectively and to help us understand how users engage with our Service. When you visit tray-verify.com, we (and service providers acting on our behalf) may place cookies or read cookies already on your device. These cookies enable features like staying logged in, remembering your preferences (such as language or region), and gathering analytics data. For example, we currently use Google Analytics to collect information about how visitors use our site. Google Analytics cookies allow us to see aggregated metrics such as which pages are most visited, how long users stay, and how they arrived at our site[2]. This insight helps us improve site content and design. We also use HubSpot cookies and similar tools for customer relationship management and analyzing user interactions with our marketing materials (e.g. tracking visits after you click on an email or fill out a form). These third-party analytics providers use their own cookies to track and report website trends.

Advertising and Tracking: We may use cookies and pixels for advertising purposes as well. TrayVerify engages in online advertising to reach potential business customers. For example, we may use Google Ads or other ad networks to show ads for TrayVerify on other websites. Third-party vendors, including Google, use cookies to serve ads based on your prior visits to our website[3]. Google’s advertising cookies (such as the Google “IDE” cookie) enable it and its partners to display ads to you based on your visit to tray-verify.com and other sites on the Internet. These cookies and similar identifiers may track your browsing across different websites and over time, in order to build a profile of your interests and provide more relevant ads. We may also use tracking technologies in our email campaigns (e.g. an invisible pixel in a newsletter email) to know if you open an email or click a link, helping us gauge the effectiveness of our outreach.

Your Choices for Cookies: You have choices to control or limit how cookies and similar technologies are used. Most web browsers are set to accept cookies by default, but you can usually modify your browser settings to block or delete cookies if you prefer. You can also use browser extensions or device settings to control certain tracking (for example, you can disable third-party cookies or use private browsing modes). Please note that if you disable cookies, some features of our Service may not function properly (for instance, you may need to re-enter information or your preferences might not be saved).

Additionally, we support certain industry privacy signals: if you have enabled the Global Privacy Control (GPC) in your browser, our site will recognize and honor it as a request to opt out of cookies that constitute a “sale” or “sharing” of personal information under applicable law (see Your Rights and Choices below)[4][5]. We do not currently respond to the older “Do Not Track” (DNT) header, but GPC is honored. For more information on how to adjust your ad preferences with third parties, you can visit resources like the Google Ads Settings page or the opt-out pages of the Network Advertising Initiative (NAI) for other ad networks.

Data Sharing and Disclosure

We understand that your information is important, and we only share personal data in ways that are compliant with law and respectful of your privacy. TrayVerify may share or disclose your information in the following circumstances:

• Service Providers (Processors): We share personal information with trusted third-party companies that perform services on our behalf, for our business purposes. These providers assist us with various operations such as cloud hosting and storage (for example, our servers or databases may be hosted on cloud platforms), data analytics, payment processing (if applicable for billing), customer support tools, email delivery, marketing, and IT support. We only provide these service providers the information necessary for them to carry out their functions for us, and we contractually require them to protect your data and use it only for our specified purposes.
• Technology and Analytics Partners: We also share data with third parties that provide us with tools or platforms – for example, we may send some of your usage data or contact information to analytics providers (like Google Analytics, HubSpot) to analyze website traffic or to AI tool providers if they assist in processing the tray images or enhancing our AI algorithms. We may similarly allow advertising partners to collect certain information via cookies as described above. Any personal information shared with these third parties will be used in accordance with this Policy and for legitimate business needs (such as improving our Service or reaching interested customers). In cases where such sharing might be considered a “sale” or “share” of personal data under CCPA/CPRA, you have the right to opt out (see Your Rights and Choices).
• Business Transfers: If TrayVerify is involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or other business transaction, your information may be disclosed or transferred as part of that process. We would ensure that any successor entity continues to handle personal information in line with this Privacy Policy or provides notice and obtains consent if required by law.
• Legal Compliance and Protection: We may disclose personal information if we believe in good faith that such disclosure is required to comply with a legal obligation or request (for example, in response to a subpoena, court order, or government demand), or to meet national security or law enforcement requirements. We may also share information if needed to enforce our agreements or policies, to collect outstanding fees, to protect the rights and safety of TrayVerify, our customers, or others, or to investigate and defend against legal claims or allegations.
• Affiliates and Organizational Use: TrayVerify is part of a corporate group of companies under common ownership. We may share personal information with our parent company, subsidiaries, affiliates, or joint venture partners to support our business operations (for example, for centralized data management or analytics across the group). Any such entities will honor the commitments made in this Privacy Policy. We do not sell or rent your personal information to unrelated third parties for their own marketing purposes without your consent.
• With Your Consent: In situations where you have given us consent to share your information in a specific way not covered above, we will share it consistent with that consent. For instance, if you request that we introduce you to a partner organization or you intentionally share content on a public forum or via a social media plug-in, we will handle the data as instructed by you.

TrayVerify does not knowingly disclose personal information of end users for monetary consideration. Any sharing of personal data with third parties is done to provide or improve our Service, in our capacity as a service provider or under “business purpose” exceptions. If that ever changes, we will update this Policy and provide required notices.

Data Security and Retention

We take the security of your personal information seriously. TrayVerify implements reasonable and appropriate security measures designed to protect your data from unauthorized access, loss, misuse, or alteration. These measures include technical, administrative, and physical safeguards appropriate to the sensitivity of the information. For example, we employ network safeguards like firewalls and encryption, restrict access to personal data to authorized personnel and contractors on a need-to-know basis, and train our staff on data protection practices. However, no method of transmission over the internet or electronic storage is 100% secure, so we cannot guarantee absolute security. You should also take steps to secure your own credentials and devices when using our Service.

We will retain personal information for as long as it is needed to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted by law. In general, this means we keep your data for as long as you have an account or ongoing business relationship with us, and for a reasonable period thereafter to comply with record-keeping obligations, resolve disputes, or enforce agreements. When we dispose of personal data, we will do so in a secure manner. For anonymized or aggregated data that no longer identifies an individual, we may retain it indefinitely. If you request deletion of your personal information, we will delete or de-identify the information in accordance with applicable law (see Your Rights and Choices below).

Your Rights and Choices

We respect your privacy rights and provide you with ways to exercise control over your personal information. Depending on your location and applicable law, your rights may include:

• Right to Know/Access: You have the right to request that we disclose what personal information we have collected, used, or disclosed about you. This includes the categories of personal information, the sources of that information, the business or commercial purpose for collecting it, and the categories of third parties with whom we share it[6]. You may also request a copy of the specific pieces of personal data we have about you.
• Right to Deletion: You have the right to request that we delete personal information we have collected from you, subject to certain exceptions (for example, we may retain data as required by law or for legitimate business purposes like completing a transaction you requested or debugging our services)[7]. Once we receive and confirm a verifiable deletion request, we will delete (and instruct our service providers to delete) your personal information from our records, unless an exception applies.
• Right to Correction: If you believe that any personal information we maintain about you is inaccurate or incomplete, you have the right to request that we correct it[8]. Upon verification of your identity and the veracity of the request, we will correct the information as required.
• Right to Opt Out of Sale/Sharing: We do not sell personal data for money; however, the broad definitions under laws like CPRA consider some data-sharing (especially for targeted advertising or analytics) as a “sale” or “sharing” of personal information. If you are a California resident (or a resident of a state with similar laws), you have the right to opt out of the sale or sharing of your personal information[9]. TrayVerify provides a “Do Not Sell or Share My Personal Information” option to allow you to exercise this right. You may do so by clicking the Do Not Sell or Share My Personal Information link on our website (or by contacting us as described below). Once you opt out, we will not sell or share your personal data unless you later provide consent allowing us to do so. We also recognize and honor Global Privacy Control (GPC) signals as a valid opt-out of sale/sharing request sent by your browser, in accordance with applicable regulations[4]. In other words, if we detect a GPC signal from your device, we will treat it as if you had submitted a “Do Not Sell or Share” request, and we will refrain from selling or sharing your personal information with third parties for cross-context behavioral advertising.
• Right to Limit Use of Sensitive Information: If we collect any sensitive personal information (as defined by law, e.g. precise geolocation, race or health data, etc.), you have the right to direct us to limit the use or disclosure of that sensitive information to only those purposes that are necessary to provide the Service (such as servicing your account)[8]. TrayVerify does not currently collect sensitive personal data from website visitors except possibly business contact details and any information contained in tray images or dietary notes (which could infer health or dietary preferences). We do not use any sensitive information for purposes beyond delivering our Service or as otherwise permitted by law. If in the future we handle sensitive data, we will honor requests to limit its use and will only use such data for essential purposes or as legally allowed.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights. This means, for example, we will not deny you our Service, provide a different level or quality of Service, or charge you a different price simply because you exercised your rights under CCPA/CPRA or other privacy laws[9]. The Service we offer is standardized for all business customers, and any differences in service or pricing are based on legitimate business factors (like volume of use or custom features) and not on whether you have exercised a privacy right.

These rights are subject to certain restrictions and exceptions under applicable law. Only you, or someone legally authorized to act on your behalf (an “authorized agent”), may make a verifiable consumer request related to your personal information. For security, when you submit a request we will need to verify your identity (for example, by confirming information we have on file, and/or using your account credentials if applicable). If an authorized agent makes a request on your behalf, we may require proof of the agent’s registration or written permission from you.

Exercising Your Rights: To exercise the rights described above, please contact us by email at team@tray-verify.com or by phone at (410) 963-4686. Please include your name, contact information, and specify which right you seek to exercise. We will respond to verifiable requests as soon as reasonably practicable and within the timeframe required by law. If we need more information to process your request, we will contact you. Note that these rights primarily apply to personal information about individuals. Since TrayVerify is a B2B service, much of the data we handle is business-related. However, to the extent such data is linked to an individual (for example, a business contact person or an employee user of our system), we will honor the applicable privacy rights for that individual.

Do Not Sell or Share My Info: For convenience, users who wish to opt out of the sale or sharing of personal information can click the “Do Not Sell or Share My Personal Information” link in the footer of our website (or send us a GPC signal, or contact us as described above). We will then refrain from sharing your data with third parties for advertising or other purposes that are considered a sale/share under the law. Once you opt out, if you have an account with us, we will also attempt to persist that choice for future visits. (Note: Because our Service is intended for businesses, we generally do not have “consumer” data to sell; this opt-out is provided in compliance with privacy laws and out of an abundance of caution.)

Marketing Communications (CAN-SPAM Compliance)

TrayVerify may send marketing and promotional emails to individuals at our client organizations or to those who have expressed interest in our product (for example, by signing up for a demo or newsletter). In accordance with the CAN-SPAM Act of 2003, we are committed to lawful and responsible email practices. If you receive marketing emails from us, it is because you have an existing business relationship with TrayVerify or you have consented to receive such communications. We will always provide a clear unsubscribe link in our marketing emails, allowing you to opt out of future emails easily. You can also unsubscribe or adjust your communication preferences by contacting us at team@tray-verify.com.

We honor all opt-out requests promptly – if you unsubscribe, we will remove you from our marketing lists within a reasonable time (no later than the 10 business days required by law). We will not charge you or ask for unnecessary information in order to honor your request. Our emails will always accurately reflect our identity as the sender, include a valid physical mailing address or contact address for TrayVerify, and not use deceptive subject lines or content. We may still send you essential transactional or relationship emails (such as responses to support inquiries, security alerts, or administrative notices about your account), as these are not promotional. We do not share your email address with third parties for their own marketing purposes without your consent, and we monitor our third-party email service providers for compliance as well. By providing us with your email or other contact info for marketing, you agree that we may send you such communications, but you have the right to opt out at any time as described above.

Changes to this Policy

We may modify this Privacy Policy from time to time to reflect changes in our business, technology, legal requirements, or for other operational reasons. If we make material changes to how we handle personal information, we will provide notice by posting the updated Privacy Policy on our website and updating the “Last updated” date at the top. In some cases, we may provide additional notice (such as by sending an email notification or posting a banner on our site) for significant changes. We encourage you to review this Policy periodically to stay informed about our data practices. Your continued use of the Service after any changes to this Policy have been posted will signify your acceptance of those changes.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how TrayVerify handles your information, please contact us at:

Email: team@tray-verify.com
Phone: 410-963-4686

Our mailing address and principal place of business is: 9700 2nd Street N St. Petersburg FL 33702. Please feel free to reach out – we will do our best to address your inquiry promptly.