EMARI— Roast Café —
LegalPrivacy

Privacy policy.

Effective June 10, 2026

This policy describes how Emari Roast Café (“Emari,” “we,” “us”) collects, uses, and protects your personal information when you use our website at emariroastcafe.com, the Emari Café mobile app, or visit us at 987 Wilshire Dr, Ste C, Troy, MI 48084. It applies to both the website and the app unless noted otherwise.

Information we collect

Account information.When you create an account we collect your name, email address, and optionally a phone number. If you sign in with a password, we store only a one-way cryptographic hash — never the password itself. If you use Sign in with Apple or Google sign-in, we receive your name and email address (or Apple’s private relay address, if you choose to hide your email) from that provider.

Orders and payments. When you place a pickup order we collect your contact name, email, optional phone number, the items you ordered, and pickup details (including a vehicle description if you choose curbside pickup). Payments are processed by Square, including Apple Pay where available — your card number is sent directly to Square and never touches our servers. We store only Square’s payment references and the amounts charged.

Loyalty and gift cards.If you join our rewards program, we collect the phone number you enroll with and track your points balance through Square Loyalty. If you add a gift card to your wallet, we store only the last four digits of the card number. If you send a gift card to someone, we collect the recipient’s email address and your optional gift message.

Private room bookings. When you book our private room we collect your contact name, email, optional phone number, and the date and time of your booking. Payment is handled by Square as described above.

Forms and applications. If you contact us, request catering, inquire about franchising, apply for a job, or join our newsletter, we collect the information you submit on that form — such as your name, email, phone number, message, event details, or résumé. Form submissions also record your IP address, browser information, and the page you submitted from, which we use to prevent spam and abuse.

Automatically collected data. We use strictly necessary cookies to keep you signed in and to remember your cart. If you enable push notifications in the mobile app, we store a device push token so we can deliver them; it is removed when you sign out. We may also collect diagnostic information (such as error and crash reports, which can include your IP address and device or browser details) to keep the service reliable. We do not use advertising cookies, third-party ad trackers, or cross-app tracking.

How we use your information

  • To prepare and fulfill your orders, bookings, and gift cards
  • To process payments and prevent duplicate charges
  • To run your rewards account and apply points and rewards you’ve earned
  • To send transactional emails — order confirmations, receipts, booking confirmations, sign-in codes, and password resets
  • To deliver push notifications you have opted into
  • To send the newsletter, if you subscribed (you can unsubscribe at any time)
  • To respond to your inquiries and job applications
  • To secure, debug, and improve the website and app

We do not sell your personal information, share it with data brokers, or use it for third-party advertising.

Who we share it with

We share personal information only with the service providers that make the website and app work, and only to the extent needed:

  • Square — payment processing, order management, loyalty, and gift cards
  • Apple and Google — only if you sign in with those providers or pay with Apple Pay
  • Resend — delivery of transactional and newsletter emails
  • Expo — delivery of push notifications you opt into
  • Sentry — error and crash monitoring
  • Our hosting provider — the servers in the United States where the website, app backend, and database run

We may also disclose information when required by law, or to protect the rights, safety, or property of Emari, our customers, or others.

How long we keep it

Your account and profile are kept until you delete your account. Records of completed orders, bookings, and payments are retained for accounting, tax, and dispute purposes. Form submissions and job applications are kept as long as needed to follow up. Shopping carts, sign-in codes, and password-reset links expire automatically after a short period.

Deleting your account

You can permanently delete your account at any time from within the Emari Café mobile app — go to your account settings and choose Delete Account. You can also email us at the address below and we will delete it for you.

When you delete your account, immediately and permanently:

  • Your profile — name, email, phone number, password, and push token — is deleted
  • Your Apple or Google sign-in link is removed, and your Sign in with Apple authorization is revoked with Apple
  • Your saved gift-card wallet links and any open cart are deleted
  • All active sessions are signed out and can no longer be used
  • Records of past orders and bookings are kept for financial recordkeeping, but are anonymized — your name, email, and phone number are scrubbed from them and they are no longer linked to you

Account deletion cannot be undone.

Your choices

  • Update your name and phone number in your account settings at any time
  • Turn push notifications off in your device settings or by signing out
  • Unsubscribe from the newsletter using the link in any newsletter email
  • Order as a guest — an account is not required to place an order on the website
  • Email us to request a copy of the personal information we hold about you, or to ask us to correct or delete it

Security

All traffic to the website and app is encrypted in transit with TLS. Passwords are stored only as one-way hashes, and sensitive tokens (such as sign-in codes and gift claim links) are stored hashed so they cannot be reused if read. Card numbers are handled entirely by Square and are never stored on our systems. No method of transmission or storage is completely secure, but we work to protect your information with industry-standard measures.

Children

Our website and app are not directed at children under 13, and we do not knowingly collect personal information from them. If you believe a child has provided us personal information, contact us and we will delete it.

Changes to this policy

If we change this policy, we will post the updated version on this page and revise the effective date above. Material changes will be communicated through the website or app.

Contact us

Questions about privacy or your data? Email us at info@emariroastcafe.com, reach us through our contact page, or write to Emari Roast Café, 987 Wilshire Dr, Ste C, Troy, MI 48084.