Privacy Policy

1. Scope and roles of the parties

This Privacy Policy applies to the Cafe Simply mobile app, related public pages, payment functions, support interactions, and other service operations connected to the product.

For account, billing, security, support, diagnostics, and service analytics data, we usually act as the data controller. For workspace content entered by a customer organization or its administrators such as staff records, suppliers, schedules, tasks, internal documents, and operational materials, that customer organization typically determines the purposes and scope of processing, while we provide the hosted software and supporting infrastructure needed to process that data on its behalf as part of the service.

2. What data we may process

• Account data: email address, display name, login credentials, account identifiers, user role, and session-related service data.
• Profile and settings data: profile image, notification preferences, technical push tokens, language selection, and other user settings.
• Workspace data: organization and location names, team roles, schedules, shifts, requests, tasks, checklists, recipes, instructions, supplier cards, products, consumables, attachments, uploaded images, and other materials created or stored in the service.
• Payment data: payment and subscription identifiers, payment status, number of locations, billing period, and other information required to process payment and validate access. We do not store full bank card details.
• Technical and diagnostic data: IP address, device type, operating system, app version, technical events, error logs, service identifiers, and information about use of product functions.
• Support data: support messages, feedback, screenshots, and other materials voluntarily provided with a request.

3. Where data comes from

• directly from the user during registration, sign-in, payment, normal use of the app, and support requests;
• from an organization administrator or another authorized user who populates the workspace with team and operational information;
• from connected authentication, payment, analytics, notification, and infrastructure providers;
• from automatic technical logs and analytics events.

4. Purposes of processing and legal bases

We process data only to the extent reasonably necessary for lawful and predefined purposes. Depending on the context, the legal basis may be performance of a contract, provision of the service, user consent, compliance with legal obligations, or our legitimate interests in securing, operating, and improving the product.

• Service delivery and contract performance: account creation, sign-in, workspace access, role management, data synchronization, and everyday product functionality.
• Support and communication: replying to support requests, handling account and billing questions, and sending service-related notices.
• Security and abuse prevention: protecting the service, investigating suspicious access, troubleshooting failures, and maintaining auditability of key operations.
• Payments and subscription management: taking payment, validating payment status, calculating access, and managing subscription state.
• Analytics and product improvement: understanding product usage, screen flows, and failures, as well as analytics on the public marketing site. Where the law requires specific consent for analytics or measurement, such tools should only be used after that consent or another valid legal basis has been obtained.

5. Data location and cross-border processing

Primary production customer workspace data and operating materials for the production version of the service are hosted on infrastructure administered by us in Russia. The public landing pages are also served from infrastructure in Russia.

Some integrations may nevertheless involve processing of limited data or technical identifiers outside Russia when the user or customer organization chooses to use a particular feature. This may apply, for example, to Firebase services, Apple Sign In, Google Gemini, and other external providers. In such cases, only the data reasonably required for the relevant feature is sent, and the transfer occurs as part of the selected sign-in, notification, analytics, or AI-assisted document processing flow.

6. Service providers and subprocessors

• Supabase / self-hosted Supabase: authentication, database operations, file storage, server-side functions, and related core backend components.
• Firebase: product analytics, push notifications, remote configuration, and related application or device identifiers.
• YooKassa: subscription payment processing and payment confirmation.
• Apple Sign In and other identity providers: data required to support the sign-in method chosen by the user.
• Google Gemini or a similar AI provider: only where the user intentionally invokes supplier-document data extraction.
• Yandex Metrica: analytics for the public marketing site; it is not our main analytics tool inside the mobile app itself.

7. AI-assisted supplier document processing

If a user deliberately runs the AI-assisted supplier document extraction feature, the document text, extracted fragments, and in some cases page images or PDF content may be sent to a server-side function and then to the connected AI provider for parsing. This feature is optional and is not required for ordinary use of the app.

The user and the organization on whose behalf the user acts remain responsible for deciding whether it is lawful and appropriate to submit that document content and whether any third-party personal data contained in it may be processed for that purpose.

8. Push notifications, analytics, cookies, and similar technologies

We use Firebase Cloud Messaging for push notifications. A device push token is stored in the user profile only after the relevant app setup flow and operating-system permission are completed.

For the mobile app, we may use Firebase Analytics and related tools to understand which screens and features are used and to investigate crashes and failures. For the public landing pages, we use Yandex Metrica and similar website analytics tools. These tools may rely on cookies, local storage, or comparable browser and app identifiers. Where separate consent is required for analytics cookies or measurement technologies in a particular jurisdiction, those tools should only be activated after such consent or another legally valid basis is available.

9. Sharing of data

We do not sell personal data. Data may be shared only to the extent needed to operate the service, comply with law, process a payment, follow the instructions of a customer organization, answer a support request, or protect our legitimate interests. We aim to keep shared data limited to what is reasonably necessary for the relevant purpose.

10. Retention

We do not keep data indefinitely without purpose. The actual retention period depends on the category of data, the user role, the contractual relationship with the customer organization, and applicable legal requirements.

• Account and workspace data: typically retained while the account or workspace remains active and for a limited period afterward as needed to complete deletion requests, prevent abuse, resolve disputes, and complete technical cleanup.
• Billing and payment records: retained during the subscription relationship and afterward for as long as required by tax, accounting, or other mandatory legal rules.
• Support correspondence: retained as long as reasonably necessary to handle the issue, preserve communication history, and defend against recurring claims.
• Technical logs and diagnostics: retained for a limited period needed for security, incident investigation, and troubleshooting, after which they may be deleted, anonymized, or overwritten.
• Backups: may continue to contain data until the normal backup rotation cycle completes and are used only for resilience and recovery purposes.

11. Your rights and how to make a request

You may request information about the processing of your data, correction, deletion, restriction of processing, withdrawal of consent where applicable, or any other request available under applicable law.

12. Account deletion

The app may provide an account deletion function. If the user cannot use the app or needs additional assistance, the request may be sent to princess.zhirova@gmail.com. Deleting an account does not always mean instant removal of all related data from backups or payment records where retention is still required by law, security needs, or completion of backup rotation.

13. Data about third parties uploaded by users

14. Children and minors

The service is intended for business use in managing cafes and similar organizations and is not designed for children. If you believe personal data relating to a minor has been submitted without the necessary legal basis or consent, contact us at princess.zhirova@gmail.com.

15. Security and incident notice

We apply organizational and technical measures intended to protect data against loss, unauthorized access, alteration, blocking, and other unlawful actions. No method of internet transmission or electronic storage can guarantee absolute security. If we become aware of an incident that is reasonably likely to affect user or administrator data, we may notify affected persons, organization administrators, or other appropriate parties to the extent we consider necessary and legally permitted.

16. Changes to this policy

We may update this Privacy Policy from time to time. The current version is published on the relevant public page. Where a change is material, we may also notify users through the app, website, or email.

17. Contact

For privacy, personal data, account deletion, or data rights requests, contact princess.zhirova@gmail.com.