Privacy Policy

Effective Date: February 5, 2026

1. Introduction

Welcome to Tapito ("we," "our," or "us"). We provide an AI-native Restaurant Operating System designed to streamline operations through voice-powered POS, auto-staffing features, and zero-commission ordering.

We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website, mobile application, and associated services (collectively, the "Services").

2. Information We Collect

A. Information You Provide to Us

  • Account Data: Name, email address, phone number, and restaurant business details provided during registration.
  • Menu & Inventory Data: Images, descriptions, and pricing of items uploaded to the platform.
  • Operational Data: Staff details, table configurations, and business hours.

B. Information Collected Automatically

  • Voice Data: To provide our voice-powered POS features, we process audio recordings when you use microphone-enabled features. These are converted to text for command execution.
  • Usage Data: Interactions with the app, features used, and performance metrics.
  • Device Information: Device model, OS version, and unique identifiers (for push notifications and security).

C. Device Permissions

Our mobile application requires specific permissions to function:

  • Camera: To scan QR codes for login/inventory and to capture menu item photos.
  • Photo Library: To upload existing images for menu customization and branding.
  • Microphone & Speech Recognition: Strictly for processing voice commands and recording audio notes within the POS system.

3. Cookies and Tracking Technologies

We use cookies, local storage, and similar tracking technologies to track the activity on our Service and hold certain information:

  • Essential Storage: We securely store Device IDs and Firebase Cloud Messaging (FCM) tokens in your browser's local storage. This is strictly necessary to keep your cart active, deliver real-time order status notifications, and temporarily block devices to prevent fake or prank orders.
  • Analytics: We use Google Analytics to analyze user behavior, measure performance, and improve our services. Google Analytics may set cookies on your browser to collect anonymized usage data.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies or local storage, you may not be able to use some portions of our Service.

4. How We Use Your Information

We utilize your data to operate and improve our Restaurant OS:

  • Service Delivery: Processing orders, managing staff, and facilitating payments.
  • AI Improvement: We use anonymized voice and usage data to train and refine our speech recognition models to better understand restaurant-specific terminology.
  • Communication: Sending order alerts, system updates, and security notifications.
  • Security: Detecting and preventing fraud or unauthorized access.

5. Data Sharing and Disclosure

We do not sell your personal data. We share information only in the following circumstances:

  • Service Providers: With trusted third-party vendors (e.g., Google Cloud, Firebase, Payment Processors) who assist in hosting, data processing, and payment facilitation. We are not responsible for the security practices or service failures of these third-party providers.
  • Legal Requirements: If required by law or to protect our rights and safety.
  • Business Transfers: In connection with a merger, sale, or asset transfer.

6. Third-Party Services

Our Service may contain links to third-party websites or services (such as payment gateways like Razorpay/Stripe, or delivery partners) that are not owned or controlled by Tapito.

Tapito assumes no responsibility for the content, privacy policies, or practices of any third-party sites or services. We strongly advise you to read the terms and conditions and privacy policies of any third-party web sites or services that you visit.

7. Your Data Ownership

Unlike traditional aggregator platforms, you retain full ownership of your customer data. Tapito does not use your customer lists to market competing restaurants or third-party services.

8. Data Security & Liability Disclaimer

We implement industry-standard security measures, including encryption in transit and at rest, to protect your information. However, no internet transmission is 100% secure, and we cannot guarantee absolute security.

While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security. By using our Service, you acknowledge that you understand and accept these risks.

9. Data Retention Policy

We retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.

Voice Data: Any voice recordings used for AI training and improvement are anonymized and stripped of personally identifiable information before being stored securely.

10. India DPDP Act 2023 Compliance

In compliance with the Digital Personal Data Protection Act, 2023, you have the right to withdraw your consent and request the deletion of your personal data at any time.

  • Right to Erasure: You may request the deletion of your specific account data by emailing us at support@tapito.online.
  • Processing Time: We are committed to processing valid deletion requests within 7 days of receipt.
  • Verification: To protect your privacy, we may ask you to verify your identity before taking action on your request.

11. Children's Privacy

Our Services are not intended for use by children under the age of 18 ("Child" or "Children"). We do not knowingly collect personally identifiable information from Children under 18. If you become aware that a Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from Children without verification of parental consent, we take steps to remove that information from our servers.

12. Contact Us

If you have questions regarding this Privacy Policy, please contact us at:

Email: support@tapito.online

Registered Location: Ramgarh Cantt, Jharkhand, India.