Legal

Privacy Policy

Last updated: 1 January 2025

1. Who we are

Sinaas is a restaurant ERP platform operated by Sinaas B.V., registered in Sittard, Netherlands. We are committed to protecting the privacy of our users and their customers. This policy explains what data we collect, how we use it, and your rights.

2. Data we collect

We collect the following categories of data:

  • Account data: Name, email address, restaurant name, and location when you register.
  • Menu data: Menu items, prices, photos, and categories you add to the platform.
  • Order data: Orders placed through your restaurant, including items, amounts, and timestamps.
  • Payment data: Payment data is processed by our payment gateway partners. We do not store full card numbers. We receive transaction status and amount.
  • Device data: App version, device model, and OS version for crash reporting and compatibility.
  • Usage data: Feature usage patterns to improve the product (anonymised).

3. How we use your data

  • To provide and operate the Sinaas platform
  • To process orders and payments
  • To send transactional notifications (new orders, account changes)
  • To improve the product through anonymised usage analytics
  • To comply with legal obligations

4. Data sharing

We do not sell your data. We share data only with service providers necessary to operate the platform, including payment gateway providers, cloud hosting providers, and crash reporting services. All providers are contractually bound to process data only on our instructions.

5. Data retention

We retain different categories of data for different periods, based on the purpose for which it was collected and the legal obligations that apply.

  • Account and profile data: Retained for as long as your account is active. If you request account deletion, we will delete personal profile data within 30 days, subject to the exceptions below.
  • Order and transaction data: Retained for as long as required by applicable financial, tax, and accounting regulations in your country. This is typically 7 years in the Netherlands under Dutch law, but may differ in other jurisdictions. We comply with the local retention requirement applicable to your place of business.
  • Usage and analytics data: Retained in anonymised form indefinitely for product improvement purposes. No personally identifiable information is retained for this purpose.

Where retention is required by law, we will retain only the minimum data necessary to satisfy that obligation. Once the applicable retention period expires, data is permanently and securely deleted.

6. Your rights

Under GDPR, you have the right to access, correct, or delete your personal data. You may also request data portability or object to processing. To exercise these rights, please contact us.

7. Cookies

Our website uses cookies as described in our Cookie Policy.

8. Contact

For privacy enquiries, please visit our Contact page.
Sinaas B.V., Sittard, Netherlands.