MenuList
FeaturesHow it worksMulti-locationPricing
Resources
Menu EngineeringQR Menu GuideDigital Menu vs PDFGoogle Menu GuideRestaurant Menu SEOAI Search & Menu DiscoveryOfficial Menu SourceAll Resources
Upload your menu →

Trust & Security

Your business data is safe here.

MenuList is built so your menu, business information, owner account, and public customer-facing source stay protected.

No stored plain-text passwords
Business data stays isolated
Privacy-conscious analytics

Security at a glance

For owners and teams who want the important facts without unnecessary technical noise.

Plain-text passwords or passcodes stored by MenuListNo
Business data sold to third partiesNever
Cross-account data accessBlocked by tenant isolation
Customer identities in analyticsNot collected
Infrastructure providerGoogle Cloud / Firebase
Transit encryptionTLS/HTTPS
Webhook verificationSigned requests
Owner-managed staff accessRoles, reset, and sign-out

How we protect your business

Security and data integrity are built into the platform, from sign-in to public output.

Your data, your ownership

Your menu, business information, and customer-facing content belong to you. MenuList does not sell or monetise your business data.

  • You can export your data
  • Account deletion removes your data from our systems
  • We do not sell data to third parties

Business data stays isolated

Each business operates in its own tenant context so one business cannot read another business's data.

  • Tenant and store context are checked on protected data access
  • No shared menu data between businesses
  • Database rules help block cross-account access

Authentication without plain-text passwords

Owner sign-in and staff credentials are handled through Firebase and Google Auth patterns so MenuList does not store plain-text passwords or passcodes.

  • Google OAuth and Firebase Auth handle sign-in
  • MenuList stores reset metadata, not staff passcodes
  • Sessions expire and can be signed out

Staff access control

Owners can give staff only the access needed for their work, then reset or end that access when roles change.

  • Role permissions limit visible dashboard areas
  • Store assignments keep team access scoped to the right business location
  • Owner reset, deactivation, removal, and force sign-out support access review

Encrypted connections

Your dashboard, public menu, and official page are served over encrypted HTTPS connections.

  • TLS/SSL on website and app endpoints
  • Customer-facing pages served over HTTPS
  • No plain-text public menu transport

Built on trusted infrastructure

MenuList runs on Google Cloud and Firebase infrastructure with production-grade hosting and storage patterns.

  • Google Cloud and Firebase infrastructure
  • Secure data storage and hosting foundations
  • Operational reliability handled through managed infrastructure

Integration request safety

Where integrations are enabled, outbound requests can be verified so receiving systems know they came from MenuList.

  • Signed outbound webhook requests
  • Integration secrets are not shown in the public UI
  • Request verification supports safer external integrations

Privacy-conscious analytics

MenuList shows business signals from menus and official pages without turning customers into personal profiles.

  • No customer names, emails, payment details, scroll heatmaps, hover tracking, or per-keystroke tracking
  • Menu sessions, searches, category interest, where actions came from, and final actions remain visible
  • Approximate location is optional and not stored as exact GPS in this analytics flow

Menu data integrity

The public menu should come from validated, owner-approved data rather than loose files or old screenshots.

  • Validation checks run before saving and publishing
  • Menu correctness systems help surface missing or broken data
  • Published surfaces read from the approved source

Found a security issue?

We take security reports seriously. If you discover a vulnerability, contact us directly before public disclosure so we can address it.

Reach us at security@menulist.ai

Built to be trusted.

The same care that protects your account also protects the public source your customers see.

Upload your menu →

Ready when the menu is

Put your menu online from the version you trust.

Start from the menu you already have. MenuList prepares the customer-facing version and keeps public outputs aligned around it.

Upload your menu →See plans

Owner approval before publishing

The public menu should come from the business, not from old PDFs or scattered screenshots.

One approved source

Customers keep reaching the current version instead of old PDFs, screenshots, or scattered links.

Simple for one location. Ready for many.

Start with one business. Keep the structure ready for locations, governance, and public consistency.

MenuList

One official source for your menu and business details.

MenuList is not a QR menu maker. It keeps one approved menu as the source behind customer-facing links and materials.

hello@menulist.ai
XInstagramLinkedIn

Product

  • How it works
  • Features
  • Multi-location
  • Pricing

Source

  • Public proof
  • Official Business Page
  • Get started

Resources

  • Menu Engineering
  • QR Menu for Restaurants
  • Digital Menu vs PDF
  • Google Business Profile Menu
  • Restaurant Menu SEO
  • AI Search & Menu Discovery
  • Official Menu Source
  • Trust & Security

Legal

  • Privacy Policy
  • Terms of Service
  • Refund Policy

© 2026 MenuList. Built in India.

One public source. Built to be found.