Privacy Policy

For account, billing, and platform operations data, we act as a data controller.

For guest orders, bookings, and similar data submitted through a restaurant's storefront, the restaurant is generally the controller and we process that data as a processor on their instructions.

Restaurant account data: name, email, restaurant name, subdomain, login/session identifiers, plan and subscription status.

Billing data: subscription and payment metadata. Card payments are handled by Paddle; we do not store full payment card numbers.

Content and operations: menus, images, QR settings, orders, bookings, table configuration, and dashboard activity needed to run the Service.

Technical data: IP address, browser type, device information, logs, and cookies or similar technologies required for security, sessions, and basic analytics.

AI menu import:menu photos you upload for OCR/structuring may be sent to Google's Gemini API for processing.

• Provide, secure, and maintain the Service;
• Process subscriptions and communicate about your account;
• Operate storefronts, ordering, bookings, and translations you enable;
• Improve reliability, prevent abuse, and comply with law;
• Respond to support requests and enforce our Terms.

Where GDPR applies, we rely on legal bases such as contract performance, legitimate interests (security, product improvement, B2B marketing to existing customers), and consent where required (for example non-essential cookies, if used).

We share data only as needed to operate the Service, including with:

• Paddle — subscription checkout, billing, and tax where applicable;
• Cloud hosting and database providers — infrastructure in the EU or comparable regions;
• Google (Gemini) — menu image OCR when you use AI import;
• Email or support tools — if you contact us.

We require processors to protect data under appropriate agreements. We do not sell personal data.

We aim to process data in the European Economic Area where possible. If data is transferred outside the EEA, we use appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms where required.

We retain account and billing records for as long as your subscription is active and for a reasonable period afterward for legal, tax, and dispute purposes. Restaurant operational data is retained while the account is active and deleted or anonymized within a reasonable period after termination unless law requires longer storage.

If GDPR or similar laws apply, you may have rights to access, rectify, erase, restrict or object to processing, data portability, and to lodge a complaint with a supervisory authority. Restaurant guests should contact the restaurant first for storefront-related requests; we will assist restaurants as processor where applicable.

Contact us at legal@plateon.app to exercise your rights. We may need to verify your identity.

We use technical and organizational measures appropriate to a B2B SaaS platform, including encryption in transit, access controls, and tenant isolation. No method of transmission or storage is completely secure.

The Service is not directed at children under 16. Restaurant storefronts may collect guest data under the restaurant's own policies.

We may update this policy from time to time. We will post the revised version on this page with an updated date. Material changes will be communicated where required by law.

Data protection enquiries: legal@plateon.app.

Update your legal entity name and contact email via NEXT_PUBLIC_LEGAL_COMPANY_NAME and NEXT_PUBLIC_LEGAL_CONTACT_EMAIL before submitting to payment providers. Have this policy reviewed by qualified counsel for your jurisdiction.