Privacy Policy

This Privacy Policy describes how TCC Solutions (“Company,” “we,” “us,” or “our”) collects, uses, and shares information when you use the TCC Menus platform (the “Service”). This policy applies to restaurant clients, their staff, and guests who interact with menus and ordering features.

1. Information We Collect

1.1 Information You Provide

• Account Information: When restaurants register, we collect business name, contact email, and account credentials.
• Order Information: When guests place orders (if ordering is enabled), we collect name, email, phone number (optional), and order details including items, quantities, special instructions, and table number (for dine-in).
• Payment Information: Payment card details are collected and processed by Stripe, Inc. We do not store full payment card numbers.
• Communications: When you contact us, we collect the content of your messages and contact information.
• Terms Acceptance Records: When you accept our Terms of Service, we log your email, IP address, timestamp, and the version of terms accepted.

1.2 Information Collected Automatically

• Device and Browser Information: Browser type, operating system, device identifiers, and screen resolution.
• Usage Data: Pages viewed, features used, time spent, and interaction patterns.
• IP Address: Your IP address for security, fraud prevention, and compliance purposes.
• AI Assistant Interactions: Questions submitted to the AI menu assistant and responses provided, for quality improvement.

2. How We Use Information

• Provide the Service: Display menus, process orders, send order confirmations and status updates.
• Process Payments: Facilitate payment processing through Stripe.
• Communications: Send transactional emails (order confirmations, receipts) and optional SMS notifications when opted in.
• Analytics: Provide restaurant clients with order analytics and insights.
• Improve the Service: Analyze usage patterns and AI interactions to improve features and accuracy.
• Security: Detect and prevent fraud, abuse, and unauthorized access.
• Legal Compliance: Comply with legal obligations and enforce our Terms of Service.

3. Information Sharing

We share information only as described below:

• With Restaurants: Order information is shared with the restaurant fulfilling your order, including name, contact info, and order details.
• Service Providers: We use third-party providers for:
  • Payment processing (Stripe)
  • SMS notifications (Twilio, when enabled)
  • Cloud hosting and infrastructure (Vercel, Neon)
  • AI services (OpenAI)
• Legal Requirements: When required by law, legal process, or to protect rights, safety, or property.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred.

We do not sell personal information.

4. Data Retention

• Order Data: Retained for the duration of the restaurant's subscription plus 3 years for tax and legal compliance.
• Account Data: Retained while the account is active and for 1 year after termination.
• Terms Acceptance Records: Retained indefinitely for legal compliance purposes.
• AI Interaction Logs: Retained for 90 days for quality improvement, then anonymized or deleted.

5. Your Rights (California Residents)

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have the following rights:

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected.
• Right to Delete: Request deletion of your personal information, subject to certain exceptions.
• Right to Correct: Request correction of inaccurate personal information.
• Right to Opt-Out: Opt out of the sale or sharing of personal information. Note: We do not sell personal information.
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To exercise these rights, contact us at privacy@tccsolutions.com with the subject line “CCPA Request.”

6. SMS Communications

If you opt in to SMS notifications when placing an order:

• You consent to receive transactional SMS messages about your order status.
• Message frequency depends on order activity.
• Message and data rates may apply.
• You can opt out by not selecting SMS notifications on future orders.
• SMS is provided through Twilio. See Twilio's privacy policy for details.

7. Cookies and Tracking

We use essential cookies for authentication and session management. We do not use third-party advertising cookies or tracking pixels for advertising purposes.

8. Security

We implement industry-standard security measures including:

• Encryption of data in transit (TLS/HTTPS)
• Encryption of sensitive data at rest
• Access controls and authentication
• Regular security assessments

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

9. Children's Privacy

The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

10. International Users

The Service is operated from the United States. If you access the Service from outside the U.S., your information will be transferred to and processed in the United States.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify restaurant clients of material changes via email. The “Effective Date” at the top indicates when this policy was last revised.

12. Contact Us

For privacy-related questions or to exercise your rights:

• Email: privacy@tccsolutions.com
• Subject Line: “Privacy Inquiry” or “CCPA Request”
• Website: tccmenus.com

Categories of Personal Information Collected

For CCPA compliance, the following categories of personal information may be collected: