This policy explains what we collect when you use Tastify, how we use it, who we share it with, and the rights you have over your data.
Account data
Name, email, role, tenant slug, and hashed credentials for operators and staff.
Usage data
Device, browser, IP, and product-analytics events — used to debug and improve the platform.
Business data
Menus, modifiers, tables, orders, reservations, sessions, and reports you create inside your tenant.
Customer data
Guest phone, loyalty points, and reservation details your restaurants capture on your behalf.
- —To operate and secure your tenant console.
- —To send transactional messages (receipts, password resets, reservation confirmations).
- —To provide support when you ask.
- —To investigate abuse and enforce our terms.
- —To improve Tastify in aggregated, non-identifying ways.
Queries run under a per-request tenant context enforced by middleware. Cross-tenant access is only possible for your own backoffice administrators.
- —Encrypted in transit (TLS 1.2+).
- —Credentials hashed with Argon2id.
- —Refresh-token rotation on every sign-in.
- —Daily encrypted backups; 30-day retention.
- —Infrastructure in region of your choice (HK · SG · EU).
Business data is retained while your subscription is active plus 90 days. You can export a full tenant snapshot at any time from the backoffice. After termination, we purge data within 90 days unless legally required to retain.
Depending on your jurisdiction, you may have the right to:
- —Access the personal data we hold about you.
- —Request correction or deletion.
- —Request portability (machine-readable export).
- —Object to or restrict certain processing.
- —Lodge a complaint with your local data-protection authority.
Tastify is not directed at children under 16. We do not knowingly collect personal data from children.
We'll post updates here and notify tenant owners by email for material changes. Continued use after the effective date constitutes acceptance.
Data-protection enquiries · legal@tastify.co · Tastify Ltd, Hong Kong.