Updated March 7, 2019
This privacy policy (“Privacy Policy”) provides our policies and procedures for collecting, transferring, processing, storing, using, and disclosing your information. Users (“you” or “your”) can access the services provided by Atavoli (“Company”, “Atavoli.com”, “we” or “our”) through our website and related applications and tools (the “Services”), and this Privacy Policy governs your access to the Services, regardless of what type of device or application you use to access them. By using our Services, you consent to the collection, transfer, processing, storage, disclosure and other uses of information described in this Privacy Policy. The term “Information” when used without other modifiers refers to all the different forms of data, content, and information described below.
We may collect and store the following Information when you are using the Services:
When you register for or access an Atavoli account, or otherwise access the Services, we may collect some personal Information that can be used to contact or identify you (“Personal Information”), such as your name, phone number, email address, and home and business postal addresses. Personal Information may also include records of item inventories, staff data, and records of sales you have made and with Atavoli.
We collect and store the files you upload, download, or access with the Services (“Files”). Any files uploaded to your account are managed only by you and other users of your account (e.g., “Staff Members”). These files may be private, as in the case of staff photos, or public, as in the case of photos used in the menu. You should contact Company in any case where the privacy scope of a file type is not clear from context.
We use “cookies” to collect Information and improve our Services. A cookie is a small data file that we transfer to your device. We may use “session ID cookies” to enable certain features of the Services, to better understand how you interact with the Services and to monitor aggregate usage and web traffic routing on the Services. We may also use “persistent cookies” to save your registration ID and login password for future logins to the Services.
We utilize encrypted tokens to allow user access to the Point-of-Sale (PoS). The token is stored on your device, uniquely identifying your account while you utilize the PoS. The token is cleared once you log out of any staff and device account in the PoS.
Atavoli uses the services provided by Google Analytics to monitor website performance. Google Analytics is not utilized within the application, after the point where users are logged in to the Service.
When you use the Services, we automatically record Information from the device you use, its software, and your activity using the Services. This may include the device’s Internet Protocol (“IP”) address, browser type, the web page(s) visited before you came to our website, Information you search for on our website, locale preferences, identification numbers associated with your devices, your mobile carrier, date and time stamps associated with transactions, system configuration, and other interactions with the Services.
Personal Information and data collected from cookies and other logging data may be used: (i) to provide and improve our Services and customer service, (ii) to administer your use of the Services, (iii) to better understand your needs and interests, (iv) to personalize and improve your experience, and (v) to provide or offer software updates and product announcements. We do not sell your Personal Information, Files or any other information about you to third parties.
Files are stored with Amazon’s (AWS) storage service and may be accessed and downloaded by you through the Service. Files and other data added to an account are only accessible from within your account by it's users ("Staff Members"). Files and guest data cannot be accessed from one account to another through the Service. You and your staff are in control of your files.
Website monitoring data collected by using Google Analytics is used only within the Google Analytics Dashboard. We do not share analytics data with any other third parties.
We will display your Personal Information in your account according to the preferences you set in your profile. You can review and revise your account profile Information at any time.
We do not sell your Personal Information, Files or other information about you to third parties. We may use certain trusted third-party companies and individuals to help us provide, analyze, and improve the Services (including but not limited to data storage, maintenance services, database management, web analytics, payment processing, and improvement of the Services’ features). These third parties may have access to your Information only for purposes of performing these limited tasks on our behalf.
We may disclose to outside parties Files and Personal Information stored in Atavoli accounts which you access and Information about you that we collect when we have a good faith belief that disclosure is reasonably necessary to (a) comply with a law, regulation or compulsory legal request; (b) protect the safety of any person from death or serious bodily injury; (c) prevent fraud or abuse of Atavoli, its Services or its users; or (d) to protect Atavoli’ property rights. If we provide your Files to a law enforcement agency as set forth above, we will remove Atavoli’ encryption from the Files before providing them to law enforcement. However, Atavoli will not be able to access and decrypt any Files on your behalf or that you encrypted prior to storing them via the Services.
If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your Information may be transferred as part of that transaction, but we will notify you (for example, via email and/or a prominent notice on our website) of any change in control or use of your Personal Information or Files, or if such Information becomes subject to a different privacy policy.
If you are registered as the account holder, you may review, update, correct or delete the Personal Information provided in your registration or account profile by logging in to your account. In some cases, we may retain copies of your Information and Files if required by law.
We may retain and use your Information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. Consistent with these requirements, we will attempt to delete your Information quickly upon request. Please note, however, that there might be latency in deleting Information from our servers and backed-up versions might exist after deletion. When you request to close your account, we will delete all Files and other records, such as reservations, payments and guest data, immediately upon account closure.
You have the ability to:
Please refer to your organization’s policies if you have questions about your rights.
The security of your Information is important to us. When you enter sensitive Information on our order forms and when you add or upload Files, we encrypt the transmission of that Information using secure socket layer technology (SSL).
We follow generally accepted standards to protect the Information submitted to us, both during transmission and once we receive it. No method of electronic transmission or storage is 100% secure, however. Therefore, we cannot guarantee its absolute security.
Atavoli complies with the provisions of the General Data Protection Regulation (“GDPR”) made effective in the EU on May 25, 2018. We are committed to protecting the security of your personal information, and we take commercially reasonable technical and organizational measures that are designed to that end.
It is your responsibility to comply with the provisions of the GDPR when using our platform. We only assume responsibility for compliance regarding subscribers of our Demo, Free, Basic, and Premium Plans. The User, by which we mean any subscriber to one of the previously mentioned plans and or restaurant staff members and other restaurant employees using our system, assumes responsibility in protecting and correct usage of any client and reservation data collected either through the sales channels, Walk Ins, or any other situations where the User collects any data used to operate their business.
Our Services are not directed to persons under 13. We do not knowingly collect Personal Information from children under 13. If a parent or guardian becomes aware that his or her child has provided us with Personal Information without their consent, he or she should contact us immediately. If we become aware that a child under 13 has provided us with Personal Information, we will take steps to delete such Information.
This Privacy Policy may change from time to time. If we make a change to this Privacy Policy that we believe materially reduces your rights, we will provide you with notice through our website and blog. We may provide notice of changes in other circumstances as well. By continuing to use the Services after those changes become effective, you agree to be bound by the revised Privacy Policy.
We're happy to answer any questions you may have about our privacy policy via email.