TapTell

Privacy Policy

Last updated: March 2025

1. Controller

TapTell is operated by [Name/Company placeholder]. You can reach us at:

[Address placeholder]
Email: hello@taptell.app

2. Overview

TapTell is a SaaS application for real-time guest feedback in restaurants. We are committed to privacy by design. This policy explains how we collect, use, and protect your data.

3. No Cookies, No Tracking

We do not use cookies. Our website and application do not set any tracking cookies. We do not track users across sessions or sites. We do not use analytics or advertising trackers.

4. IP Address Handling

When we collect IP addresses (e.g., for rate limiting or abuse prevention), we hash them with a daily rotating salt before storage. This means we cannot reverse the hash to identify individual visitors. We never store raw IP addresses.

5. Data Storage / Supabase

We use Supabase for our database and backend services. Supabase is hosted in the EU (European Union). Your data is stored in EU data centers. Supabase is GDPR-compliant and provides appropriate data processing agreements.

6. AI Analysis / OpenAI

We use OpenAI for sentiment analysis of guest feedback. Feedback text is sent to OpenAI for processing. OpenAI processes data according to its Data Processing Agreement. We do not use feedback data for training OpenAI models.

7. Email / Resend

We use Resend for transactional emails (e.g., alerts, account notifications). Email addresses and content are processed by Resend. Resend is GDPR-compliant and provides appropriate safeguards.

8. Error Monitoring / Sentry

We use Sentry for error monitoring and crash reporting. This helps us fix bugs and improve stability. Sentry may collect error logs, stack traces, and device information. Sentry is GDPR-compliant and we configure it to minimize data collection.

9. Billing / Stripe & RevenueCat

For payments, we use Stripe (web) and RevenueCat (mobile in-app purchases). Payment data, billing addresses, and subscription information are processed by these providers. We do not store full payment card details. Stripe and RevenueCat are both GDPR-compliant.

10. Your Rights

Under GDPR, you have the right to access, rectify, erase, restrict processing, and data portability. You may also object to processing and lodge a complaint with a supervisory authority. To exercise your rights, contact us at hello@taptell.app.

11. Changes

We may update this privacy policy from time to time. We will notify you of material changes via email or in-app notice. The latest version is always available on this page.