← Back to restoful

Acceptable Use Policy

Last updated: 17 June 2026

Effective date: 17 June 2026

1. About this policy

This Acceptable Use Policy (“AUP”) sets out the rules for using the restoful platform and all of its features (“the Service”), operated by Sycamore Management Consulting L.L.C. dba restoful(“restoful”, “we”, “us”, “our”). It applies to every account holder, workspace member, and end user, and to all content, menus, websites, orders, messages, AI requests, and other activity you create, upload, generate, transmit, or facilitate through the Service.

This AUP supplements, and is incorporated by reference into, our Terms of Service and Privacy Policy. Capitalised terms not defined here have the meaning given in the Terms of Service. If this AUP conflicts with the Terms of Service, the Terms of Service prevail except where this AUP is more specific or more restrictive.

By accessing or using the Service, you agree to comply with this AUP and to ensure that everyone you permit to use your account or workspace also complies. Violating this AUP is a violation of the Terms of Service.

2. Your core responsibilities

  • Use the Service only for lawful purposes and in connection with a genuine restaurant, café, bar, or food-and-beverage business that you own, operate, or are expressly authorised to represent.
  • Comply with all applicable laws and regulations — including food-safety, food-labelling, allergen-disclosure, consumer-protection, advertising, tax, alcohol-licensing, anti-spam, privacy, data-protection, and payment laws — in every jurisdiction where you operate.
  • Keep your account credentials secure and remain responsible for all activity under your account and workspace.
  • Ensure that the content you publish (prices, descriptions, ingredients, allergen and dietary information, hours, addresses, and policies) is accurate, current, and not misleading.
  • Promptly review, correct, or remove any content — including AI-generated content — that is inaccurate, outdated, unlawful, or otherwise non-compliant.

3. Prohibited content

You must not upload, generate, publish, store, link to, or transmit through the Service any content that:

  • Is illegal, or promotes, facilitates, or instructs others in illegal activity.
  • Infringes any third party's intellectual property rights — including copying menus, photographs, logos, descriptions, branding, or website designs you do not have the right to use.
  • Is false, fraudulent, deceptive, or designed to mislead customers (for example, fake reviews, fictitious businesses, bait pricing, or impersonating another restaurant, brand, or person).
  • Is defamatory, harassing, threatening, hateful, or that incites violence or discrimination against any person or group.
  • Is sexually explicit, pornographic, or otherwise inappropriate for a public food-and-beverage listing, or that sexualises or endangers minors in any way.
  • Contains malware, viruses, malicious scripts, or code intended to harm, disrupt, or gain unauthorised access to any system or data.
  • Discloses another person's private, personal, or confidential information without authorisation.
  • Advertises or facilitates the sale of goods or services you are not legally permitted to sell, or that are prohibited by our payment, hosting, or AI providers.

4. Prohibited conduct and platform integrity

You must not, and must not attempt to, or permit or assist anyone else to:

  • Reverse-engineer, decompile, disassemble, copy, frame, mirror, or create derivative works of any part of the Service, except to the limited extent applicable law expressly permits despite this restriction.
  • Access, scrape, crawl, harvest, or index the Service or its data using bots, spiders, scripts, or other automated means without our prior written consent.
  • Probe, scan, or test the vulnerability of the Service, or breach, defeat, or circumvent any security, authentication, rate-limiting, access-control, plan-gating, billing, usage-metering, or credit-limiting mechanism.
  • Interfere with or disrupt the integrity or performance of the Service, or impose an unreasonable or disproportionately large load on our infrastructure or that of our providers (including through denial-of-service techniques, request flooding, or automated bulk generation).
  • Introduce automation that submits requests at a rate, scale, or pattern not consistent with normal interactive use by a single restaurant.
  • Resell, sublicense, rent, lease, time-share, or operate the Service as a service bureau for third parties, or build a competing product or service using the Service or its outputs.
  • Misrepresent your affiliation with restoful, or remove, obscure, or alter any proprietary notices, branding, or attributions.

5. Fair use of unlimited, metered, and plan-limited features

Some plans describe certain features as “unlimited” (for example, unlimited menu items on the Growth and Pro plans, and a custom/unlimited QR code allowance on the Pro plan). Other features carry explicit allowances. All of these are provided on a good-faith, fair-use basis for the ordinary operation of a single, genuine restaurant brand or location tied to your account. “Unlimited” means we do not impose a fixed numeric cap during normal use — it does not mean unrestricted, and it does not entitle you to abuse, automate, stockpile, or commercially exploit that capacity.

Unlimited features. When a feature is offered as unlimited, you must not:

  • Use menu items, categories, modifiers, photos, QR codes, or other records to store, host, or distribute data unrelated to your restaurant's actual menu and operations — for example, using them as a general file store, database, link directory, archive, or to host arbitrary text, code, or HTML.
  • Create items, menus, QR codes, websites, images, or other records through automated, scripted, or bulk means, or in order to inflate usage, benchmark, stress-test, or game the Service.
  • Generate large volumes of duplicate, placeholder, spam, junk, or filler records, or content that has no genuine connection to a real menu.
  • Share, pool, resell, or provide your account's unlimited capacity to third parties, or run multiple unrelated restaurants, brands, or tenants from a single restaurant account. A separate account or plan is required for each restaurant unless we agree otherwise in writing (for example, under a Pro or enterprise arrangement).
  • Use unlimited capacity in any way that materially degrades, or is reasonably likely to degrade, the Service for other customers.

Metered features. Features with stated allowances — including monthly AI credits (for example, 3,000 credits/month on Starter and 10,000 credits/month on Growth; Pro allowances may be custom), image and file upload size and batch limits, and request/rate limits — are subject to those allowances. You must not circumvent, reset, pool, or transfer allowances across accounts; create or use multiple accounts to obtain additional free credits, trials, or capacity; or automate requests to exhaust, harvest, or resell an allowance. AI credits are usage units with no cash value and are governed by the Terms of Service.

Plan-limited features. Some features are capped by plan — for example, the 50-item digital menu limit on Starter and the 10 (Starter) and 30 (Growth) QR code limits. You must not attempt to exceed, bypass, or unlock plan limits or access features not included in your plan without upgrading.

We may apply reasonable rate limits, fair-use thresholds, queuing, and anti-abuse controls; may measure usage based on estimated third-party model, infrastructure, and processing costs; and may throttle, queue, suspend, or limit activity that is abusive, automated, fraudulent, or that places a disproportionate burden on shared infrastructure. Where practical and not an emergency, we will give reasonable notice before applying limits to an otherwise good-faith account.

6. AI features (menu extraction, Design Studio, photography, editing, translation)

The Service includes AI-powered features such as menu extraction from photos or PDFs, Design Studio marketing graphics, AI menu photography, AI editing of print menus, digital menus, and websites, and multilingual menu translation. When using any AI feature, you must not:

  • Upload source material — photos, menus, logos, artwork, or other content — that you do not own or have the rights to use, including using a third party's copyrighted images as references for AI photography or design.
  • Prompt, instruct, or manipulate the AI to produce content that is unlawful, infringing, deceptive, hateful, sexually explicit, or otherwise prohibited by Section 3, or to misrepresent ingredients, allergens, pricing, or the nature of a dish.
  • Attempt to jailbreak, prompt-inject, extract system prompts, exfiltrate training data or other customers' data, or otherwise misuse or subvert the AI systems or their safeguards.
  • Use AI features to generate content at scale for purposes unrelated to your own restaurant, to build a dataset or competing model, or to resell AI output as a standalone service.
  • Publish AI-generated menu descriptions, translations, images, or designs without first reviewing and verifying them. AI output is probabilistic and may contain errors, omissions, or hallucinations — including in allergen, dietary, and ingredient information. You are solely responsible for the accuracy, legality, and suitability of anything you publish.

7. Restaurant authenticity, menus, and food safety

  • You may only create menus, listings, websites, and QR codes for a real business that you are authorised to represent. Listing businesses that do not exist, that you do not operate, or that you are not authorised to represent is prohibited.
  • You are responsible for the accuracy of all menu content, including prices, taxes, fees, item availability, descriptions, ingredients, and allergen and dietary labelling, and for keeping it current.
  • restoful is a technology platform, not a food business. We do not prepare, handle, inspect, or deliver food, and we do not verify menu or allergen content. You must comply with all applicable food-safety and labelling laws and must not rely on the Service (or its AI features) as a substitute for that compliance.
  • Do not present the Service, or content generated through it, as having been reviewed, endorsed, or certified by restoful.

8. Online ordering, payments, and delivery

Where you enable online ordering, card payments (via Stripe Connect), pay-at-counter, or delivery, you must:

  • Use these features only for bona fide sales by your restaurant to your own customers, and accurately describe the goods, prices, fees, taxes, and fulfilment terms.
  • Not sell, or use the Service to facilitate the sale of, goods or services that are unlawful in the relevant jurisdiction or restricted by Stripe or our other providers — including (without limitation) alcohol, tobacco, vaping products, cannabis or CBD, prescription or controlled substances, weapons, or counterfeit goods — except where you hold all required licences and the relevant provider permits the sale.
  • Not engage in or facilitate fraud, money laundering, card testing, unauthorised transactions, deceptive refunds, fee evasion, or any activity that breaches card-network rules or the terms of our payment provider.
  • Honour the orders, prices, and policies you publish, and resolve order, refund, delivery, and reservation disputes directly with your customers. restoful is a technology intermediary and is not a party to any transaction between you and your customers, and does not employ delivery drivers or guarantee fulfilment.
  • Comply with the terms of any integrated provider you enable (for example, Stripe, mapping providers, delivery partners such as Uber Direct, social platforms, and point-of-sale providers).

9. Customer data, CRM, reservations, and communications

The Service lets you collect and use guest information and send communications — including order updates, reservation messages, marketing emails, loyalty messages, and CRM outreach. When you do, you must:

  • Collect, store, and use personal data lawfully, fairly, and only for legitimate restaurant purposes, and provide your customers with any legally required notices and choices.
  • Obtain and maintain any consent required by law before sending marketing or electronic communications, and honour unsubscribe and opt-out requests promptly.
  • Comply with all applicable anti-spam, marketing, telemarketing, e-privacy, and data-protection laws (such as the GDPR, UK GDPR, CAN-SPAM, and comparable laws).
  • Not buy, sell, rent, scrape, or upload third-party contact lists, or send unsolicited, misleading, or unlawful messages through the Service.
  • Act as the controller of the customer data you collect; restoful processes that data on your behalf as described in the Privacy Policy. You are responsible for the lawfulness of your collection and use of it.

10. Websites, domains, and hosted pages

  • Custom restaurant websites and hosted pages may be used only for your own restaurant and must comply with this AUP and the Terms of Service.
  • You must not use a hosted website, custom domain, QR destination, or any link to host or distribute malware, phishing pages, deceptive content, redirect chains, gateways to prohibited goods, or content unrelated to your restaurant.
  • You must hold the rights to any custom domain you connect and must not infringe another party's trademarks or impersonate another business.
  • You must not inject scripts or code into hosted pages intended to compromise visitors, track them unlawfully, or circumvent platform controls.

11. Workspace and team access

If your plan includes team access, you are responsible for everyone you invite to your workspace and for their compliance with this AUP. You must only invite people authorised to act for your restaurant, must manage their access appropriately, and must remove access promptly when it is no longer needed. Sharing a single login among many people, or using team access to provide the Service to unrelated businesses, is not permitted.

12. Security and responsible disclosure

You must not attempt to access accounts, data, or systems that do not belong to you, or test or exploit the security of the Service without our prior written authorisation. Genuine, good-faith security research conducted responsibly is welcome.

If you discover a security vulnerability or a suspected data exposure, please report it promptly and privately to security@restoful.com and give us a reasonable opportunity to remediate before any public disclosure. Do not access, modify, delete, or retain more data than is necessary to demonstrate the issue.

13. Third-party services

The Service relies on third-party providers, including payment processors, hosting and database providers, AI providers, email providers, mapping providers, social platforms, delivery providers, and point-of-sale providers. Your use of features that depend on these providers must also comply with their applicable terms and acceptable use or usage policies. A violation of a provider's rules through the Service may also be a violation of this AUP.

14. Reporting violations

If you believe content or activity on the Service violates this AUP, please report it to abuse@restoful.com. For copyright complaints, please use our DMCA Policy. For privacy or data concerns, contact privacy@restoful.com.

15. Enforcement

We may investigate suspected violations of this AUP and may take any action we consider appropriate, with or without prior notice depending on the severity and circumstances, including:

  • Issuing a warning or requesting that you correct the issue.
  • Removing, disabling, hiding, or restricting access to offending content, menus, websites, QR codes, or features.
  • Applying or tightening rate limits, fair-use thresholds, or usage controls, or throttling or queuing activity.
  • Suspending or limiting some or all features, or your account or workspace.
  • Terminating your account in accordance with the Terms of Service.
  • Reporting activity to, and cooperating with, payment providers, other affected providers, regulators, or law enforcement where appropriate.

Where a violation poses a risk to people, to other customers, to our providers, or to the security or integrity of the Service, we may act immediately and without prior notice. Termination for an AUP violation does not entitle you to a refund. Nothing in this section limits any other rights or remedies available to us under the Terms of Service or applicable law.

16. Changes to this policy

We may update this AUP from time to time. For material changes, we will provide reasonable notice — for example, by email to your registered address or by posting a prominent notice on the platform — and, where required, at least 30 days' notice. Minor changes (such as clarifications or corrections that do not materially reduce your rights) take effect upon posting. Your continued use of the Service after a change takes effect constitutes acceptance of the revised AUP.

17. Contact

Questions about this policy, or reports of misuse, can be sent to us. For copyright claims, see our DMCA Policy; for our data practices, see our Privacy Policy.

restoful Legal & Trust

Office G06-308, The Exchange Tower

Business Bay, Dubai, United Arab Emirates

Abuse: abuse@restoful.com · Security: security@restoful.com · Legal: legal@restoful.com