1. Who We Are

RestoIQ ("we," "our," or "us") is an AI-powered restaurant management platform operated by RestoIQ. Our platform is accessible at myrestoiq.com and app.myrestoiq.com. If you have any questions about this Privacy Policy, you can contact us at hello@myrestoiq.com or via WhatsApp at +880 1881 708337.

2. Information We Collect

We collect information you provide directly to us and information generated through your use of our platform:

• Account Information: Your name, email address, restaurant name, and password when you create an account.
• Restaurant Data: Inventory items, supplier details, menu recipes, waste logs, purchase orders, and staff information you enter into the platform.
• Financial Data: Food costs, pricing information, and revenue figures you enter for analytics purposes. We do not store credit card or banking information directly — payments are processed by Paddle.
• Usage Data: Information about how you use our platform, including features accessed, time spent, and actions taken.
• Device Information: Browser type, IP address, device type, and operating system for security and performance purposes.
• Communications: Messages you send us via email or WhatsApp for support purposes.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the RestoIQ platform and all its features
• Generate AI-powered insights, forecasts, and recommendations based on your restaurant data
• Send you service-related notifications, alerts, and email summaries you have configured
• Respond to your support requests and communicate with you about your account
• Process payments and manage your subscription through our payment processor (Paddle)
• Monitor and analyze usage patterns to improve our product
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

4. Data Storage and Security

Your data is stored securely using Supabase, a professional database platform with enterprise-grade security. We implement industry-standard security measures including:

• Encryption of data in transit using TLS/SSL
• Encrypted storage for sensitive information
• Row-Level Security (RLS) ensuring each restaurant account can only access its own data
• Regular security monitoring and updates
• Access controls limiting who within our team can access your data

While we implement strong security measures, no system is completely immune to security risks. We encourage you to use a strong, unique password for your RestoIQ account.

5. Data Sharing

We do not sell, rent, or trade your personal information or restaurant data to third parties. We share data only in these limited circumstances:

• Service Providers: We use trusted third-party services including Supabase (database), Paddle (payments), and Google Analytics (website analytics). These providers are contractually bound to protect your data.
• AI Services: Your restaurant data may be processed by AI services (including Google Gemini) to generate forecasts and recommendations. This data is used solely for generating your insights and is not retained by these services for training purposes.
• Legal Requirements: We may disclose information if required by law, court order, or governmental authority.
• Business Transfers: If RestoIQ is acquired or merges with another company, your data may be transferred as part of that transaction, with equivalent privacy protections maintained.

6. Your Rights

You have the following rights regarding your personal data:

• Access: Request a copy of all personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your account and all associated data
• Export: Export your restaurant data at any time using our CSV export feature
• Opt-out: Unsubscribe from marketing communications at any time
• Portability: Receive your data in a structured, machine-readable format

To exercise any of these rights, contact us at hello@myrestoiq.com. We will respond within 30 days.

7. Data Retention

We retain your account data for as long as your account is active. If you cancel your subscription, we retain your data for 90 days to allow for account recovery. After 90 days, all personal data and restaurant data is permanently deleted. Anonymized, aggregated data may be retained for analytical purposes.

8. Cookies

We use cookies and similar tracking technologies to operate our platform and improve your experience. Please see our Cookie Policy for detailed information about the cookies we use and how to manage them.

9. Children's Privacy

RestoIQ is a business tool intended for adults managing restaurant and hospitality businesses. We do not knowingly collect personal information from children under 16 years of age. If you believe a child has provided us with personal information, please contact us immediately.

10. International Data Transfers

RestoIQ serves customers globally including in Africa, the Middle East, and South Asia. Your data may be processed in countries outside your own. We ensure appropriate safeguards are in place for any international data transfers in compliance with applicable data protection laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and/or by displaying a prominent notice on our platform at least 14 days before the changes take effect. Continued use of RestoIQ after changes take effect constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

• Email: hello@myrestoiq.com
• WhatsApp: +880 1881 708337
• Response time: Within 1 business day