Privacy Policy

Last Updated: May 26, 2026

BharatReach ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Restaurant and Cafe Automation Solution, including Cloud POS, Kitchen Display Systems (KDS), and QR Table Ordering services.

1. Information We Collect

1.1 Information You Provide

Account Information: Name, email address, phone number, restaurant name, billing information
Business Verification: FSSAI registration details, GST details, authorized signatory information
Payment Information: Credit card details, UPI information, bank account details for settlements
Operational Data: Menu items, pricing, inventory stock, staff accounts, and customer order history uploaded to our platform

1.2 Automatically Collected Information

Usage Data: Order processing metrics, POS terminal interactions, system performance logs
Device Information: IP address, browser type, operating system (for web dashboard), tablet/mobile device identifiers (for POS apps)
Cookies: Session cookies, authentication tokens, preference cookies

2. How We Use Your Information

Service Delivery: Provide Cloud POS, KDS, inventory tracking, and digital menu ordering capabilities
Account Management: Create, maintain, and secure your restaurant's account and staff logins
Payment Processing: Process diner transactions and maintain billing records
Compliance: Comply with tax regulations and financial reporting obligations
Analytics: Provide you with sales trends, analyze platform usage to improve our software
Security: Detect fraud, prevent unauthorized access to your store data

3. Legal Basis for Processing

We process your personal data based on:

Contractual Necessity: To fulfill our software service agreement with your business
Legitimate Interests: To improve our automation solutions and ensure data security
Legal Obligations: To comply with IT Act 2000, tax regulations, and other statutory requirements

4. Data Sharing and Disclosure

4.1 Third-Party Service Providers

Payment Gateways: (e.g., PhonePe, Razorpay) for transaction processing
Food Delivery Aggregators: (e.g., Zomato, Swiggy) if you enable order syncing integrations
Cloud Providers: (e.g., AWS, Google Cloud) for secure hosting and database storage

4.2 Legal Requirements

We may disclose information when required to:

Comply with legal obligations, court orders, or government requests
Enforce our Terms and Conditions
Protect the rights, property, or safety of BharatReach, our users, or the public

5. Data Retention

Active Accounts: Store data (menus, inventory, orders) is retained while your subscription is active
Billing Records: Retained for 7 years as per Indian tax laws
After Account Closure: Operational data is deleted within 30 days of subscription termination, except where legal retention is required

6. Data Security

We implement industry-standard security measures to protect your restaurant's data:

Encryption: TLS/SSL for data in transit, AES-256 for database storage
Access Controls: Role-based access for your staff (Cashiers vs Managers)
Backups: Automated daily backups of your menu and order data

7. Your Rights

You have the right to:

Access: Request an export of your restaurant's data
Correction: Update or correct business information
Deletion: Request deletion of your account and related data

To exercise these rights, contact us at [email protected]

8. Contact Us

For privacy-related inquiries or to exercise your rights:

Email: [email protected]

Address: 387, Unnamed Road, Hanuman Nagar, Niwai, Tonk, Rajasthan