Privacy Policy

Last Updated: February 10, 2026

Introduction

ScanOrderPay ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and web platform.

Information We Collect

Personal Information

  • Contact Information: Email address, phone number (optional for order notifications)
  • Payment Information: Credit card details processed securely via Stripe and Apple Pay (we do not store full card numbers)
  • Order History: Items ordered, order amounts, timestamps, venue locations
  • Account Information: Username, password (encrypted), preferences, dietary restrictions

Location Data

  • GPS Location: For delivery to outdoor venues (tennis courts, beach clubs, ski resorts) - only when you explicitly enable location services
  • Venue Check-in: QR code scans indicate which table/venue you're at
  • Background Location: Only used for active delivery orders to track delivery staff (can be disabled)

Usage Data

  • App interactions, features used, order patterns
  • Device information (iOS version, device model, app version)
  • Error logs and crash reports (anonymized)

AI Chat Data

  • Conversations with Sofia AI assistant for menu recommendations
  • Messages are stored to improve service quality and provide context
  • No personally identifiable information is shared with third-party AI providers

How We Use Your Information

  • Order Processing: Fulfill orders, process payments, send receipts
  • Communication: Order status updates, delivery notifications, customer support
  • Personalization: Save favorites, dietary preferences, order history
  • VIP Benefits: Manage subscriptions, apply discounts, priority queue
  • Delivery: GPS tracking for outdoor venue deliveries
  • Analytics: Improve app performance, understand usage patterns (anonymized)
  • Security: Detect fraud, prevent abuse, protect user accounts

Data Sharing

We share data with:

  • Restaurants: Order details, delivery locations (for fulfillment)
  • Payment Processors: Stripe, Apple Pay (for payment processing only)
  • AI Providers: Anthropic Claude (for Sofia AI - anonymized conversations)
  • Email/SMS Services: SendGrid, Routee (for notifications - opt-out available)
  • Analytics: Google Analytics (anonymized usage data)

We DO NOT:

  • ❌ Sell your personal data to third parties
  • ❌ Share your data for advertising purposes
  • ❌ Track your location when the app is closed (unless active delivery)
  • ❌ Store full credit card numbers

Your Rights (GDPR Compliance)

You have the right to:

  • Access: Request a copy of your data
  • Correction: Update inaccurate information
  • Deletion: Request account and data deletion
  • Portability: Export your data in JSON format
  • Opt-Out: Unsubscribe from marketing emails and SMS
  • Withdraw Consent: Disable location services anytime

To exercise these rights, email: privacy@scanorderpay.ai

Data Retention

  • Order History: 3 years (for tax/accounting purposes)
  • Account Data: Until account deletion requested
  • Location Data: Deleted after delivery completion (max 24 hours)
  • Chat Logs: 90 days (for service improvement)
  • Payment Data: Tokenized references only (no card storage)

Security

We implement industry-standard security measures:

  • HTTPS encryption for all data transmission
  • Encrypted password storage (bcrypt)
  • PCI-DSS compliant payment processing (Stripe)
  • Regular security audits and penetration testing
  • Rate limiting and fraud detection
  • Database access controls and audit logs

Children's Privacy

Our service is not directed to individuals under 13. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal data, please contact us immediately.

International Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure adequate safeguards through:

  • Standard Contractual Clauses (SCCs) with service providers
  • GDPR-compliant data processing agreements
  • Privacy Shield certified partners (where applicable)

Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last Updated" date. For material changes, we will notify you via email or in-app notification.

Contact Us

ScanOrderPay

Email: privacy@scanorderpay.ai

Support: support@scanorderpay.ai

Website: https://scanorderpay.ai

Address: Kifissia, Athens, Greece

Apple App Store Specific Disclosures

Data Used to Track You: None

Data Linked to You:

  • Contact Info (email, phone)
  • Purchases (order history)
  • Location (GPS for delivery)
  • User Content (favorites, dietary preferences)

Data Not Linked to You:

  • Diagnostics (crash reports, error logs)