QR MENU


API Usage Policy

1. Introduction

This policy governs the use of the QR Menu API. By accessing our API to integrate with POS, ERP, or other third-party systems, you agree to comply with these terms. Our goal is to provide a stable, secure, and high-performance environment for all users.


2. Access and Authentication

  • API Keys: Access is granted via unique API keys. These keys are sensitive and must be stored securely.
  • Credentials: Do not share your API credentials with unauthorized third parties. You are responsible for all activity occurring under your keys.
  • Revocation: We reserve the right to rotate or revoke keys if a security breach is suspected.

3. Usage Limits (Rate Limiting)

To ensure system stability, the following limits apply:

  • Standard Tier: Up to 1,000 calls per hour.
  • Burst Limit: No more than 20 calls per second.
  • Exceeding Limits: If you exceed these limits, the API will return a 429 Too Many Requests error. Please implement exponential backoff logic in your integration.

4. Acceptable Use

  • Data Integrity: You may only use the API to import / pull menu items, pricing, and order data related to your authorized restaurant account.
  • Prohibited Actions:
    • Scraping or "crawling" data that does not belong to your account.
    • Attempting to reverse-engineer the QR Menu infrastructure.
    • Using the API for any illegal activity or to distribute malware.

5. Data Privacy & Security

  • Encryption: All API calls must be made over HTTPS (TLS 1.2 or higher).
  • Personal Data: If your integration handles customer data (e.g., names or phone numbers from orders), you must comply with local data protection laws (e.g., GDPR, CCPA).
  • Storage: Do not store [Application Name] user passwords or sensitive payment data on your local servers.

6. Maintenance and Versioning

  • Uptime: While we strive for 99.9% uptime, we may occasionally perform scheduled maintenance. We will provide 48 hours' notice for planned outages.
  • Deprecation: We may update API versions. When a version is deprecated, we will provide a 6-month transition period before the old endpoint is retired.

7. Support and Liability

  • Technical Support: API-related inquiries can be directed to support@qrmenus.net.
  • Indemnification: You agree to indemnify QR Menu against any claims resulting from your third-party integration's failure or security breach.