Privacy Policy

Privacy Policy for Fleksa, Inc. - How we collect, use, and protect your data

Privacy Policy

Fleksa, Inc. Effective Date: December 2024 Last Updated: December 2024

1. Introduction

Fleksa, Inc. ("Fleksa," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our restaurant technology platform and related services.

2. Information We Collect

2.1 Information You Provide

Account Information:

  • Business name and details
  • Contact information (name, email, phone)
  • Billing and payment information
  • Restaurant location and operating hours

Restaurant Data:

  • Menu items and pricing
  • Order history and transaction data
  • Customer reservation information
  • Employee/staff information

2.2 Information Collected Automatically

Usage Data:

  • Log files and device information
  • IP addresses and browser type
  • Pages visited and features used
  • Time and date of access

Cookies and Tracking:

  • Session cookies for authentication
  • Analytics cookies for service improvement
  • Marketing cookies (with consent)

2.3 Information from Third Parties

  • Payment processors (transaction status, not full card numbers)
  • Delivery service integrations
  • Marketing and analytics partners

3. How We Use Your Information

We use your information to:

  • Provide Services: Operate our platform, process orders, manage reservations
  • Improve Services: Analyze usage patterns, develop new features
  • Communicate: Send service updates, support responses, and (with consent) marketing
  • Security: Detect fraud, protect against unauthorized access
  • Legal Compliance: Meet regulatory requirements, respond to legal requests

4. Information Sharing

We may share your information with:

4.1 Service Providers

Third-party vendors who assist in operating our services (hosting, payment processing, analytics).

4.2 Business Partners

Integration partners when you connect third-party services to your account.

When required by law, court order, or to protect our rights and safety.

4.4 Business Transfers

In connection with a merger, acquisition, or sale of assets.

We do not sell your personal information.

5. Data Retention

We retain your information for as long as your account is active or as needed to provide services. After account termination:

  • Transaction records: 7 years (tax/legal requirements)
  • Personal data: Deleted within 90 days (upon request)
  • Aggregated/anonymized data: May be retained indefinitely

6. Data Security

We implement appropriate security measures including:

  • Encryption in transit (TLS/SSL) and at rest
  • Access controls and authentication
  • Regular security assessments
  • Employee training on data protection

See our Data Protection page for more details.

7. Your Rights and Choices

7.1 Access and Correction

You can access and update your account information through our platform or by contacting us.

7.2 Data Export

You can request a copy of your data in a portable format.

7.3 Deletion

You can request deletion of your personal information, subject to legal retention requirements.

7.4 Marketing Opt-Out

You can unsubscribe from marketing communications at any time.

You can manage cookie preferences through your browser settings or our cookie consent tool.

8. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

8.1 Right to Know

You can request disclosure of:

  • Categories of personal information collected
  • Sources of personal information
  • Business purposes for collection
  • Categories of third parties with whom we share data
  • Specific pieces of personal information collected

8.2 Right to Delete

You can request deletion of your personal information, with certain exceptions.

8.3 Right to Correct

You can request correction of inaccurate personal information.

8.4 Right to Opt-Out of Sale/Sharing

We do not sell personal information. If this changes, we will provide opt-out mechanisms.

8.5 Right to Limit Use of Sensitive Personal Information

You can limit our use of sensitive personal information to necessary purposes.

8.6 Non-Discrimination

We will not discriminate against you for exercising your privacy rights.

8.7 How to Exercise Rights

9. Other State Privacy Rights

Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA)

Residents of these states have similar rights to access, correct, delete, and opt-out. Contact us to exercise these rights.

Nevada

Nevada residents may opt-out of sale of personal information by contacting us at privacy@fleksa.com.

10. Children's Privacy

Our Services are not directed to children under 13. We do not knowingly collect personal information from children under 13. If we learn we have collected such information, we will delete it promptly.

11. International Data Transfers

If you are accessing our Services from outside the United States, your information may be transferred to and processed in the United States. We implement appropriate safeguards for international transfers.

Our Services may contain links to third-party websites. We are not responsible for the privacy practices of these websites.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through our Services. Your continued use after changes constitutes acceptance.

14. Contact Us

For privacy-related inquiries:

Fleksa, Inc. 10900 Research Blvd 160c 1059 Austin, TX 78759, USA

For general inquiries: hello@fleksa.com