Privacy Policy

Last Updated: January 2025

1. Introduction

Stars on Tap ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our restaurant management platform and services.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, phone number, business name, business address
• Payment Information: Credit card details (processed securely through Square and Stripe)
• Business Data: Employee information, schedules, time clock records, reservations, menu items, inventory data
• Customer Data: Names, phone numbers, email addresses, reservation details, waiting list information
• Communications: Messages, feedback, and support requests you send to us

2.2 Information Collected Automatically

• Usage Data: Pages visited, features used, time spent on platform, click patterns
• Device Information: IP address, browser type, operating system, device identifiers
• Location Data: Approximate location based on IP address
• Cookies and Tracking: Session cookies, authentication tokens, analytics data

3. How We Use Your Information

We use the collected information for the following purposes:

• Service Delivery: Provide and maintain our restaurant management platform
• Account Management: Create and manage your account, authenticate users
• Communications: Send transactional emails and SMS notifications (with your consent)
• Payment Processing: Process payments and manage subscriptions
• Customer Support: Respond to inquiries and provide technical assistance
• Platform Improvement: Analyze usage patterns to improve features and user experience
• Security: Detect and prevent fraud, abuse, and security incidents
• Legal Compliance: Comply with legal obligations and enforce our terms

4. How We Share Your Information

4.1 We Share Information With:

• Service Providers: Third-party vendors who help us operate our platform (hosting, payment processing, SMS delivery, email services)
• Payment Processors: Square and Stripe for payment processing
• Analytics Providers: Tools that help us understand platform usage
• Business Partners: Integration partners (e.g., reservation systems, POS systems) with your consent

4.2 We Do NOT:

• Sell your personal information to third parties
• Share your data for marketing purposes without your explicit consent
• Provide your customer data to competitors

4.3 Legal Disclosures

We may disclose your information if required by law, court order, or government request, or to protect our rights, property, or safety.

5. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: SSL/TLS encryption for data in transit
• Secure Storage: Encrypted databases and secure servers
• Access Controls: Limited employee access to personal data
• Authentication: Password hashing and secure session management
• Regular Audits: Security assessments and vulnerability testing

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Active Accounts: Data retained while your account is active
• Closed Accounts: Data retained for 90 days after account closure, then deleted
• Legal Requirements: Some data may be retained longer for tax, accounting, or legal purposes
• Backup Data: May persist in backups for up to 30 days after deletion

7. Your Privacy Rights

7.1 Access and Control

You have the right to:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your personal data
• Export: Download your data in a portable format
• Opt-Out: Unsubscribe from marketing communications
• Restrict Processing: Limit how we use your data

7.2 How to Exercise Your Rights

To exercise these rights, contact us at:

• Email: privacy@starsontap.app
• Dashboard: Account Settings → Privacy & Data

7.3 California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to opt-out of the sale of personal information (we do not sell data)
• Right to deletion of personal information
• Right to non-discrimination for exercising CCPA rights

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Essential Cookies: Required for platform functionality and authentication
• Analytics Cookies: Understand how users interact with our platform
• Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Disabling cookies may limit platform functionality.

9. Third-Party Services

Our platform integrates with third-party services that have their own privacy policies:

• Square: Payment processing and POS integration
• Stripe: Payment processing
• Twilio: SMS messaging services
• Google: Maps, analytics, and business integrations

We encourage you to review the privacy policies of these third-party services.

10. Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected information from a child under 13, we will delete it immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the updated policy on our website
• Sending an email notification to your registered email address
• Displaying a notice in your dashboard

Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, contact us:

• Email: privacy@starsontap.app
• Support Email: support@starsontap.app
• Website: https://www.starsontap.app

14. Compliance

This Privacy Policy complies with:

• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA)
• CAN-SPAM Act
• Telephone Consumer Protection Act (TCPA)
• Payment Card Industry Data Security Standard (PCI DSS)

This Privacy Policy is effective as of January 2025 and governs our collection, use, and disclosure of your information.