Privacy Policy

Last updated: May 29, 2026

This Privacy Policy describes how Restaurant SaaS handles information when you order from Demo Restaurant online.

Information we collect

• Order details: name, phone, email (if provided), items, notes, pickup/delivery choice, and scheduled time.
• Delivery address: street, city, state, ZIP — used to quote delivery fees and validate your zone.
• Payment: card payments are handled by Stripe; we receive payment status and Stripe identifiers, not your full card number.
• Technical: session cookies for security (CSRF), and local storage if you save cookie preferences.

How we use information

• Process and display your order to the restaurant.
• Prevent fraud and secure the checkout flow.
• Geocode delivery addresses via OpenStreetMap Nominatim (address sent to their service).

SMS alerts (restaurant)

The restaurant may receive SMS alerts for new orders via Twilio to the phone number configured in their account. SMS is sent to the merchant, not marketing texts to customers, unless the restaurant contacts you separately.

Sharing

We share data with service providers only as needed: Stripe (payments), hosting/database provider, and geocoding as above. We do not sell personal information.

Retention & rights

Order records are kept for restaurant operations and accounting. Contact Demo Restaurant or privacy@example.com for access or deletion requests where applicable.