Legal

Privacy Policy

Effective date: March 26, 2026

This Privacy Policy explains what information Tichsy processes, why it is processed, and the controls available to account owners using the platform.

1. Scope

This policy applies to Tichsy web application experiences, account operations, and related communications for restaurant management use cases.

2. Data We Process

Depending on how you use Tichsy, we may process:

  • Account and profile data, such as name, email, encrypted password, avatar, timezone, and authentication identifiers.
  • Device and session data, such as device ID, browser/OS, approximate IP-based location, IP address, user agent, and session activity timestamps.
  • Security data, such as login, password-change, and related security event records.
  • Restaurant operations data, such as menus, tables, orders, staff membership, invitations, and coupons.
  • Billing and subscription data, including plan, billing period, payment status, and payment gateway references required for transaction verification.
  • Communication data, including in-app notifications and transactional email delivery records.

3. Why We Process Data

  • To create and secure your account and authenticate access.
  • To operate core product features, including menu, table, and order management.
  • To process subscriptions and payment confirmations.
  • To send service messages such as security alerts, account events, and billing notifications.
  • To detect abuse, reduce fraud risk, and maintain service integrity.

4. Cookies and Device Technologies

Tichsy uses cookies and similar mechanisms for session management, device tracking for account security, and service continuity. If you block essential cookies, some features may not function correctly.

5. Data Retention

Retention periods may vary by data type and operational need. Current platform defaults include:

  • One-time passwords (OTP): about 10 minutes.
  • Inactive device sessions: about 30 days.
  • Security events: up to about 365 days.
  • Cart records: about 7 days.
  • Notifications: about 15 days by default.

Some business and billing records may be retained longer when needed for legal, security, audit, or accounting purposes.

6. Sharing and Processors

Tichsy does not sell personal data. We use trusted service providers to help run the platform (for example payment, authentication, media, and email infrastructure). These providers may process limited operational data needed to deliver their services on our behalf.

7. Data Security

Tichsy uses technical and operational safeguards such as password hashing, access controls, verification flows, and security event monitoring. No online system can be guaranteed fully secure, but we work to reduce risk and respond quickly to suspicious activity.

8. Your Choices and Requests

For account-related privacy questions or requests, reply to transactional emails sent by Tichsy and include enough details for verification.

9. Changes to This Policy

This Privacy Policy may be updated over time. The latest version is effective when published on this page.

For service terms, visit the Terms of Service.