Privacy Policy

Last updated: December 27, 2025

NGOS ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered restaurant management platform and related services.

🔒 Our Commitment

We believe in transparency and giving you control over your data. We only collect what's necessary to provide our services, and we never sell your personal information to third parties.

1. Information We Collect

1.1 Information You Provide

Account Information: Name, email address, phone number, restaurant name, and billing information when you create an account.
Restaurant Data: Menu items, inventory levels, pricing, and operational data you input into our platform.
Customer Data: Information about your customers that you choose to store in our CRM features.
Communications: Messages you send to us for support or feedback.

1.2 Automatically Collected Information

Usage Data: How you interact with our platform, features used, and time spent.
Device Information: Browser type, operating system, and device identifiers.
Log Data: IP address, access times, and pages viewed.
Cookies: We use cookies to improve your experience. See our Cookie Policy below.

1.3 Third-Party Integrations

POS Systems: Sales and inventory data from connected point-of-sale systems (Square, Toast, etc.).
Social Media: Public data from connected social accounts for marketing automation.
Payment Processors: Transaction data from Stripe or other payment providers.

2. How We Use Your Information

We use the collected information for:

Providing and improving our AI-powered restaurant management services
Generating predictive analytics and recommendations
Processing transactions and sending billing information
Sending service updates, security alerts, and support messages
Analyzing usage patterns to enhance our platform
Complying with legal obligations

3. AI and Machine Learning

Our platform uses artificial intelligence to provide features like demand prediction, automated marketing, and inventory optimization. Here's how we handle AI-related data:

Training Data: We may use anonymized, aggregated data to improve our AI models. Individual restaurant data is never shared with other customers.
AI Decisions: Our AI provides recommendations, but you maintain full control over final decisions.
Transparency: You can always see why our AI made a specific recommendation.

4. Data Sharing and Disclosure

We may share your information with:

Service Providers: Third-party vendors who help us operate our platform (hosting, analytics, payment processing).
Business Partners: With your consent, for integrated services.
Legal Requirements: When required by law or to protect our rights.
Business Transfers: In connection with a merger, acquisition, or sale of assets.

            ❌ What We Never Do
            Sell your personal information to advertisers or data brokers
Share your restaurant's proprietary data with competitors
Use your customer data for our own marketing purposes

        

5. Data Security

We implement industry-standard security measures to protect your data:

256-bit SSL/TLS encryption for data in transit
AES-256 encryption for data at rest
Regular security audits and penetration testing
Multi-factor authentication options
SOC 2 Type II compliance (pending)

6. Your Rights (GDPR & CCPA)

Depending on your location, you may have the following rights:

Access: Request a copy of your personal data
Rectification: Correct inaccurate data
Erasure: Request deletion of your data ("right to be forgotten")
Portability: Receive your data in a machine-readable format
Objection: Object to certain types of processing
Withdraw Consent: Revoke previously given consent

To exercise these rights, contact us at privacy@ngos.ai.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide services. After account deletion:

Personal data is deleted within 30 days
Anonymized analytics data may be retained indefinitely
Legal/compliance records are kept as required by law

8. International Data Transfers

Your data may be processed in the United States or other countries where our service providers operate. We ensure adequate protection through:

Standard Contractual Clauses (SCCs)
Data Processing Agreements with all vendors
Compliance with EU-US Data Privacy Framework

9. Children's Privacy

NGOS is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or through the platform. Continued use after changes constitutes acceptance.

11. Contact Us

For privacy-related inquiries:

Email: privacy@ngos.ai
Address: NGOS Inc., Privacy Team, [Address to be added]
Data Protection Officer: dpo@ngos.ai