TASTY7
Legal

Privacy Policy - Tasty7

This Privacy Policy describes how Tasty7 ("we," "us," or "our") collects, uses, and protects your information when you use our nutrition calculator SaaS platform.

1. Information We Collect

1.1 Information You Provide

  • Account registration information (name, email, business name, contact details)
  • Payment and billing information
  • Restaurant and menu data you upload or input
  • Nutritional information, ingredients, allergen data
  • Customer support communications

1.2 Information We Collect Automatically

  • Usage data and analytics (features used, time spent, clicks)
  • Technical information (IP address, browser type, device information)
  • Log files and system performance data
  • Cookies and similar tracking technologies

1.3 Third-Party Information

  • Information from payment processors
  • Data from integration partners (POS systems, menu management tools)

2. How We Use Your Information

We use collected information to:

  • Provide and maintain our nutrition calculator service
  • Process payments and manage accounts
  • Generate nutritional calculations and reports
  • Provide customer support
  • Improve our services and develop new features
  • Send service-related communications
  • Comply with legal obligations
  • Prevent fraud and ensure security

3. Information Sharing and Disclosure

3.1 We Do Not Sell Personal Information

We do not sell, rent, or trade your personal information to third parties.

3.2 We May Share Information:

  • With Service Providers: Third-party vendors who assist in service delivery (hosting, payment processing, analytics)
  • For Legal Compliance: When required by law, court order, or government request
  • Business Transfers: In connection with mergers, acquisitions, or asset sales
  • With Consent: When you explicitly authorize sharing
  • Safety and Security: To protect rights, property, or safety of users and others

3.3 Restaurant Data

Your menu and nutritional data remains confidential and is not shared with competitors or unauthorized parties.

4. Data Security

We implement industry-standard security measures including:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication requirements
  • Secure data centers and infrastructure
  • Employee training on data protection

5. Data Retention

  • Account information: Retained while your account is active plus 3 years after termination
  • Usage data: Retained for up to 2 years for analytics purposes
  • Payment information: Retained as required for tax and accounting purposes
  • You may request deletion of your data subject to legal and business requirements

6. Your Rights and Choices

6.1 Access and Control

  • Access your personal information in your account dashboard
  • Update or correct your information
  • Request data portability
  • Request account deletion (subject to legal requirements)

6.2 Marketing Communications

  • Opt out of marketing emails via unsubscribe links
  • Manage communication preferences in your account settings

6.3 Cookies

  • Most browsers allow you to control cookie settings
  • Some features may not function properly if cookies are disabled

7. International Data Transfers and Global Service

7.1 Data Processing Location

Tasty7 operates from Canada and our primary data processing occurs in Canada. When you use our Service from anywhere in the world, your personal information may be transferred to, stored, and processed in Canada.

7.2 Cross-Border Data Protection

  • We implement adequate security measures for all data transfers
  • We comply with applicable international data transfer requirements
  • We maintain the same level of protection regardless of your location

7.3 Global Service Provision

While we are based in Canada, we provide our nutrition calculator service to restaurants worldwide. By using our Service, you consent to the transfer of your information to Canada for processing and storage.

8. Privacy Law Compliance

8.1 Canadian Privacy Laws (PIPEDA)

As a Canadian company, we comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy legislation.

8.2 International Privacy Law Compliance

We also strive to comply with applicable privacy laws in jurisdictions where we provide services, including:

European Union (GDPR)

  • Lawful basis for processing personal data
  • Enhanced rights for EU residents including data portability and the right to be forgotten
  • Data Protection Impact Assessments where required
  • Appointment of EU representative if required

United States

  • Compliance with applicable state privacy laws (California CCPA/CPRA, Virginia CDPA, etc.)
  • Adherence to industry-specific regulations where applicable

Other Jurisdictions

  • We monitor and comply with privacy laws in other countries where we provide services
  • We implement appropriate safeguards based on local requirements

8.3 Your Rights Based on Location

Canadian Residents:
Under Canadian privacy legislation, you have the right to:

  • Know what personal information we collect and why
  • Access your personal information
  • Request correction of inaccurate information
  • Request deletion of personal information (subject to legal requirements)
  • Withdraw consent where processing is based on consent
  • File a complaint with the Privacy Commissioner of Canada

EU Residents (GDPR Rights):
If you are located in the European Union, you have additional rights including:

  • Right to data portability
  • Right to be forgotten (erasure)
  • Right to restrict processing
  • Right to object to processing
  • Right to lodge a complaint with your local supervisory authority

US Residents:
Depending on your state, you may have rights under local privacy laws such as the California Consumer Privacy Act (CCPA) or Virginia Consumer Data Protection Act (VCDPA).

All Other Jurisdictions:
We will honor data subject requests consistent with applicable local privacy laws and our ability to authenticate your identity.

9. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on our website and updating the effective date. Your continued use of the Service after any changes constitutes acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions about this Privacy Policy, wish to exercise your privacy rights, or want to file a privacy complaint, please contact us at:

Tasty7 Privacy Officer
Email: igor@syntoagency.com