Privacy Policy

Last Updated: January 21, 2025

At Heard ("we," "us," or "our"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our restaurant management platform.

1. Information We Collect

1.1 Information You Provide

When you register for an account, we collect:

  • Name and email address
  • Restaurant/organization name
  • Phone number (optional)
  • Billing information (processed securely through our payment provider)
  • Team member information you add to your organization

1.2 Information We Collect Automatically

When you use Heard, we automatically collect:

  • Device information (browser type, operating system)
  • Usage data (features used, time spent, actions taken)
  • IP address and general location information
  • Cookies and similar tracking technologies

1.3 Operational Data

As you use Heard to manage your restaurant, we store:

  • Checklist completions and task records
  • Issue reports and status updates
  • Temperature logs and compliance records
  • Photos and attachments you upload
  • Activity logs and timestamps

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process your transactions and send related information
  • Send administrative notifications and updates
  • Respond to your comments and questions
  • Send marketing communications (with your consent)
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and fraud
  • Comply with legal obligations

3. Information Sharing and Disclosure

3.1 We Do Not Sell Your Data

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

3.2 Service Providers

We may share your information with trusted third-party service providers who assist us in:

  • Hosting and data storage (Supabase)
  • Email delivery (Resend)
  • Payment processing (Stripe)
  • Analytics and monitoring

These providers are contractually obligated to protect your data and use it only for the services they provide to us.

3.3 Legal Requirements

We may disclose your information if required by law or in response to:

  • Valid legal processes (subpoenas, court orders)
  • Protection of our rights, property, or safety
  • Investigation of fraud or security issues
  • Compliance with regulatory requirements

4. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption in transit (SSL/TLS)
  • Encryption at rest for sensitive data
  • Secure authentication and access controls
  • Regular security audits and updates
  • Employee access restrictions and training

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

5. Data Retention

We retain your information for as long as your account is active or as needed to provide services. Even after account closure, we may retain certain information:

  • To comply with legal obligations (e.g., tax records)
  • To resolve disputes or enforce agreements
  • For backup and disaster recovery (up to 90 days)
  • In anonymized form for analytics

6. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your data (subject to legal requirements)
  • Portability: Export your data in a common format
  • Opt-out: Unsubscribe from marketing communications
  • Objection: Object to certain data processing activities

To exercise these rights, contact us at privacy@heard.cafe or through your account settings.

7. Cookies and Tracking

We use cookies and similar technologies to:

  • Remember your preferences and settings
  • Authenticate your account
  • Analyze how you use our platform
  • Improve user experience

You can control cookies through your browser settings, but this may affect platform functionality.

8. Children's Privacy

Heard is not intended for users under 18 years of age. We do not knowingly collect information from children. If you believe we have collected information from a child, please contact us immediately.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable laws.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Email notification to your registered address
  • Prominent notice in the application
  • Updating the "Last Updated" date

Continued use of Heard after changes indicates acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us:

  • Email: privacy@heard.cafe
  • Website: heard.cafe
  • Address: [Your Business Address]

This Privacy Policy is effective as of January 21, 2025 and applies to all users of the Heard platform.