Privacy Policy

Your privacy and data security are fundamental to our business. Learn how Inputly.AI protects your restaurant and customer information in compliance with Canadian privacy laws.

Last Updated: December 8, 2024

Introduction

Inputly.AI Inc. ("we," "our," or "us") is committed to protecting the privacy and security of personal information collected through our restaurant automation platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

As a Canadian company, we comply with the Personal Information Protection and Electronic Documents Act (PIPEDA), applicable provincial privacy legislation, and international privacy standards where we operate.

Key Privacy Commitments

  • Minimal Data Collection: We only collect information necessary for our services

  • Transparent Use: Clear explanation of how your data is used

  • Strong Security: Enterprise-grade encryption and security measures

  • Canadian Storage: Data stored in Canadian facilities when possible

  • User Control: You control your data and can request deletion

Information We Collect

Restaurant Account Information

When you create an account or use our services, we collect:

  • Business name, address, and contact information

  • Owner/manager name and email address

  • Phone numbers for voice ordering setup

  • Menu information and pricing

  • Payment and billing information

  • Integration credentials for POS and other systems

Customer Order Information

Through our platform, we process customer information necessary for order fulfillment:

  • Customer name and contact information

  • Delivery or pickup addresses

  • Order details and preferences

  • Payment information (processed through secure payment processors)

  • Order history and frequency

Voice Data

Our voice ordering system processes:

  • Voice recordings during order calls (temporarily stored for processing)

  • Transcribed text from voice interactions

  • Voice pattern data for accuracy improvement (anonymized)

Technical and Usage Data

We automatically collect technical information to improve our services:

  • IP addresses and device information

  • Browser type and version

  • Usage patterns and feature utilization

  • Performance metrics and error logs

  • Website analytics and cookies

How We Use Your Information

Service Delivery

  • Processing and fulfilling customer orders

  • Managing your restaurant account and settings

  • Providing voice ordering and AI automation services

  • Integrating with your POS and other systems

  • Generating analytics and business insights

Communication

  • Sending order confirmations and updates

  • Providing customer support and technical assistance

  • Sharing important service updates and announcements

  • Marketing communications (with your consent)

Improvement and Development

  • Improving AI accuracy and system performance

  • Developing new features and services

  • Conducting research and analytics (aggregated and anonymized)

  • Monitoring system security and preventing fraud

Legal and Compliance

  • Complying with applicable laws and regulations

  • Responding to legal requests and court orders

  • Protecting our rights and the rights of others

  • Ensuring food safety and health compliance

Information Sharing and Disclosure

We do not sell, trade, or rent your personal information. We only share information in the following circumstances:

Service Providers

We work with trusted third-party service providers who assist in delivering our services:

  • Cloud hosting and infrastructure providers (Canadian when possible)

  • Payment processors for secure transaction handling

  • Analytics and monitoring services

  • Customer support and communication platforms

Integration Partners

With your explicit consent, we share necessary information with:

  • POS system providers for order synchronization

  • Delivery platforms for order fulfillment

  • Accounting software for financial integration

  • Other restaurant technology partners

Legal Requirements

We may disclose information when required by law or to:

  • Comply with legal processes and government requests

  • Protect against fraud and security threats

  • Enforce our terms of service

  • Protect public health and safety

Business Transfers

In the event of a merger, acquisition, or sale of assets, customer information may be transferred as part of the business assets. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

Data Security

We implement comprehensive security measures to protect your information:

Technical Safeguards

  • 256-bit SSL/TLS encryption for data transmission

  • AES-256 encryption for data at rest

  • Multi-factor authentication for account access

  • Regular security audits and penetration testing

  • Automated monitoring for security threats

Operational Safeguards

  • Limited employee access on a need-to-know basis

  • Background checks for employees with data access

  • Regular security training for all staff

  • Incident response plan for security breaches

  • Secure data centers with physical access controls

Voice Data Protection

  • Voice recordings automatically deleted after 90 days

  • Encrypted transmission and storage of voice data

  • Anonymization of voice pattern data

  • Opt-out options for voice data retention

Data Retention

We retain personal information only as long as necessary for the purposes outlined in this policy:

Retention Periods

Data Type Retention Period Purpose
Account Information Duration of service + 7 years Service delivery, tax, and legal requirements
Order Data 3 years Customer service, analytics, legal compliance
Voice Recordings 90 days Quality assurance and dispute resolution
Analytics Data 2 years (anonymized) Service improvement and business insights
Security Logs 1 year Security monitoring and incident response

Data Deletion

When retention periods expire or upon your request, we securely delete personal information using industry-standard data destruction methods.

Your Privacy Rights

Under Canadian privacy law, you have the following rights regarding your personal information:

Access and Correction

  • Request access to personal information we hold about you

  • Correct inaccurate or incomplete information

  • Update your account information at any time

Deletion and Portability

  • Request deletion of your personal information

  • Export your data in a portable format

  • Close your account and delete associated data

Consent Management

  • Withdraw consent for marketing communications

  • Opt-out of voice data retention

  • Control integration data sharing

Exercise Your Rights

To exercise any of these rights, contact our Privacy Officer:

  • 📧 Email: privacy@inputly.ai

  • 📞 Phone: 1-800-INPUTLY (468-8859)

  • 📍 Mail: Inputly.AI Inc., Privacy Officer, 123 Main St, Vancouver, BC V6B 1A1

We will respond to your request within 30 days.

Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience and analyze usage:

Types of Cookies

  • Essential Cookies: Required for basic website functionality

  • Performance Cookies: Help us understand how visitors use our site

  • Functional Cookies: Remember your preferences and settings

  • Marketing Cookies: Used to deliver relevant advertisements (with consent)

Cookie Management

You can control cookies through your browser settings or our cookie preference center. Note that disabling certain cookies may affect website functionality.

Children's Privacy

Our services are designed for businesses and are not intended for children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected information from a child under 13, we will promptly delete that information.

International Data Transfers

We primarily store and process data within Canada. When data must be transferred outside Canada for service delivery:

  • We ensure adequate protection through contractual safeguards

  • Transfers only occur to countries with adequate privacy protection

  • We maintain the same security standards regardless of location

  • You can request data to remain in Canada for an additional fee

Privacy Compliance

Inputly.AI is committed to compliance with all applicable privacy laws:

Canadian Compliance

  • Personal Information Protection and Electronic Documents Act (PIPEDA)

  • Provincial privacy legislation (Alberta PIPA, BC PIPA, Quebec Act 25)

  • Canadian Anti-Spam Legislation (CASL)

International Standards

  • General Data Protection Regulation (GDPR) for EU customers

  • California Consumer Privacy Act (CCPA) for US customers

  • ISO 27001 information security standards

Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make material changes:

  • We will notify you by email and through our platform

  • We will post the updated policy on our website

  • The effective date will be clearly indicated

  • Your continued use constitutes acceptance of the changes

Contact Our Privacy Officer

If you have questions about this Privacy Policy or our privacy practices, please contact our Privacy Officer:

Privacy Officer

Inputly.AI Inc.

123 Main Street, Suite 500
Vancouver, BC V6B 1A1
Canada

Contact Methods

📧 Email: privacy@inputly.ai

📞 Phone: 1-800-INPUTLY (468-8859)

🕐 Hours: Monday-Friday, 9 AM - 5 PM PST

Privacy Complaint Process

If you believe your privacy rights have been violated, you can:

  1. Contact our Privacy Officer using the information above

  2. File a complaint with the Office of the Privacy Commissioner of Canada

  3. Contact your provincial privacy commissioner

We are committed to resolving privacy concerns promptly and fairly.