PRIVACY POLICY

Last Updated:

Privacy Policy for HotelsDigitalMenu.com

HotelsDigitalMenu.com (“we”, “our”, “us”) is committed to safeguarding your privacy and ensuring the security of your personal and business information. This Privacy Policy explains how we collect, use, store, and protect your information when you access our website, create an account, or use our digital menu services.

By using our platform, you agree to the terms outlined in this Privacy Policy.

1. INFORMATION WE COLLECT

We collect the following types of information:

1.1 Personal Information

Collected during signup or account management:

  • Full name
  • Email address
  • Phone number
  • Password (encrypted)
  • Business or hotel name
  • Billing details (payment method, transaction ID)

1.2 Hotel/Business Information

  • Logo, branding, menu content
  • Outlet names (e.g., restaurant, bar, room service)
  • Employee accounts and permissions
  • QR code labels and placements

1.3 Usage & Device Data

Automatically collected for platform performance and security:

  • IP address
  • Browser type and version
  • Device information
  • Location (approximate)
  • Access logs
  • Pages visited
  • Feature usage statistics

1.4 Guest Interaction Data

When guests scan QR codes:

  • Menu items viewed
  • Time of access
  • Device type
  • Language preferences
  • (No personal guest information is collected unless voluntarily provided.)

1.5 Payment Information

Payment processing is handled by secure third-party providers. We do not store credit card numbers or sensitive financial data.

2. HOW WE USE YOUR INFORMATION

We use collected data to:

  • Create and manage your account
  • Provide digital menu services
  • Process subscription payments
  • Improve platform performance and user experience
  • Diagnose technical issues
  • Customize your dashboard and menu settings
  • Send important notifications (service updates, billing, alerts)
  • Prevent fraud and unauthorized activity
  • Generate anonymized analytics
  • Comply with legal obligations

We never sell your information to third parties.

3. LEGAL BASIS FOR PROCESSING (GDPR COMPLIANCE)

We process data under one or more of the following lawful bases:

  • Consent (during signup or feature opt-in)
  • Contractual necessity (to provide the service)
  • Legitimate interest (improving platform performance)
  • Legal compliance (tax, fraud, security)

4. HOW WE SHARE YOUR INFORMATION

4.1 Trusted Service Providers

  • Hosting companies
  • Payment processors
  • Email & notification services
  • Analytics tools
  • These providers are bound by strict confidentiality obligations.

4.2 Legal Requirements

We may disclose your data when required by:

  • Law
  • Court order
  • Government investigation
  • Security and fraud prevention

4.3 Internal Staff

Access is highly restricted and only granted for:

  • Support, troubleshooting, or account management
  • Platform maintenance
  • Data security monitoring

5. HOW WE STORE & PROTECT INFORMATION

We implement industry-standard security measures:

  • Encrypted passwords
  • HTTPS secure connections
  • Firewalls and intrusion protection
  • Daily backups
  • User access controls
  • Limited internal access
  • Encrypted data-at-rest (where applicable)