Introduction
Safe Control ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application Safe Control (the "App").
Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the application.
Information We Collect
Personal Information You Provide
When you register and use Safe Control, we collect the following personal information:
- Account Information: Full name, email address, phone number
- Profile Information: User avatar/photo (optional)
- Authentication Data: Password (encrypted), authentication tokens
- Restaurant Association: Your assigned restaurants and roles within them
Information Automatically Collected
When you use the App, we automatically collect:
- Device Information:
- Device type and model (Android)
- Operating system version
- Unique device identifiers
- Network connectivity status (to enable offline functionality)
- Push Notification Tokens: Device tokens for sending push notifications via Firebase Cloud Messaging
- Local Device Storage:
- Authentication tokens stored securely using encrypted storage
- User preferences and app settings
- Usage Data:
- App features you use
- Time and date of your activities
- Operational logs you create (temperature readings, cleaning logs, etc.)
Operational Data You Create
The App allows you to create and manage food safety and compliance records, including:
- Temperature Monitoring: Temperature readings, device measurements, compliance status
- Cleaning Logs: Cleaning activities, areas cleaned, items restocked, task completion
- Oil Quality Logs: Oil quality measurements, temperature readings, oil change records
- Sanitation Logs: Product sanitation procedures and records
- Equipment Logs: Blast chiller operations, water bath logs
- Inventory Logs: Restocking activities and inventory management
- Notes and Comments: Any notes or comments you add to records
Documents and Files
- PDF Documents: Access to shared operational manuals and documents
- Temporary Files: Downloaded documents temporarily stored on your device
How We Use Your Information
Primary Functions
- Account Management: Create and manage your user account
- Authentication: Verify your identity and secure access to the App
- Restaurant Operations: Enable you to record and manage food safety compliance data
- Team Collaboration: Allow you to work with other team members in your restaurant(s)
- Notifications: Send you important alerts and updates about your restaurant operations
App Improvement
- Service Enhancement: Improve and optimize App functionality
- Technical Support: Provide customer support and respond to inquiries
- Security: Monitor for security threats and prevent fraud
- Compliance: Maintain records as required by food safety regulations
How We Share Your Information
We do not sell, rent, or trade your personal information. We may share your information only in the following circumstances:
Within Your Organization
- Restaurant Team Members: Other authorized users within your assigned restaurant(s) can view operational data you create
- Restaurant Administrators: May have access to all data within their restaurant(s)
Service Providers
We use third-party services to operate the App:
- Supabase: Cloud database, authentication services, and document storage
- Firebase Cloud Messaging (Google): Push notifications for operational alerts
- Supabase Storage: Shared operational documents storage
These service providers have access to your information only to perform specific tasks on our behalf and are obligated to protect your information.
Legal Requirements
We may disclose your information if required to do so by law or in response to:
- Valid legal processes (subpoena, court order)
- Requests from government authorities
- Protection of our rights, property, or safety
- Prevention of fraud or security issues
Data Security
We implement appropriate technical and organizational security measures to protect your information:
Security Measures
- Encryption: All data transmitted between your device and our servers is encrypted using industry-standard SSL/TLS protocols
- Authentication: Secure user authentication with encrypted passwords
- Access Controls: Row-level security policies ensure users can only access authorized data
- Database Security: Multi-tenant database architecture with strict access controls
- Regular Backups: Automated backups to prevent data loss
Your Responsibility
You are responsible for:
- Maintaining the confidentiality of your account password
- Logging out of your account when using shared devices
- Notifying us immediately of any unauthorized access
Data Retention
We retain your information for as long as necessary to provide our services and comply with legal obligations:
- Active Accounts: Data retained while your account is active
- Operational Records: Food safety logs retained according to regulatory requirements (typically 2-3 years)
- Deleted Accounts: Most data deleted within 30 days of account deletion, except where retention is required by law
Your Rights and Choices
Depending on your location, you may have the following rights:
Access and Portability
- View Your Data: Access and review your personal information within the App
- Export Data: Request a copy of your data in a portable format
Correction and Deletion
- Update Information: Modify your profile information in the App settings
- Delete Account: Request deletion of your account and associated data
Communication Preferences
- Push Notifications: Enable or disable push notifications in your device settings
- Email Communications: Opt out of promotional emails (operational emails may still be sent)
Children's Privacy
Safe Control is not intended for use by children under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately.
International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in accordance with this privacy policy.
Cookies and Tracking Technologies
The App uses authentication tokens and session management for functionality. We do not use cookies for advertising or tracking purposes.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Updating the "Last Updated" date
- Posting the new Privacy Policy in the App
- Sending you a notification for material changes
Continued use of the App after changes constitutes acceptance of the updated Privacy Policy.
Compliance
This Privacy Policy complies with:
- General Data Protection Regulation (GDPR) - for EU users
- California Consumer Privacy Act (CCPA) - for California users
- Google Play Store requirements
- Other applicable data protection laws
Specific Information for EU Users (GDPR)
If you are located in the European Economic Area (EEA), you have additional rights under GDPR:
Legal Basis for Processing
We process your data based on:
- Contract Performance: To provide the App services you've requested
- Legitimate Interest: To improve our services and ensure security
- Consent: For optional features like push notifications
- Legal Obligation: To comply with food safety regulations
Your GDPR Rights
- Right to access your personal data
- Right to rectification of inaccurate data
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent
- Right to lodge a complaint with your supervisory authority
Specific Information for California Users (CCPA)
California residents have additional rights under CCPA:
Categories of Information Collected
- Identifiers (name, email, phone)
- Device and usage information
- Professional information (restaurant role)
- Operational records
Your CCPA Rights
- Right to know what personal information is collected
- Right to know if personal information is sold or disclosed
- Right to opt-out of sale (we do not sell your information)
- Right to deletion
- Right to non-discrimination for exercising your rights
We do not sell your personal information.