1. Who We Are
Ownorders is operated by Stockmice Lab Corp. We are the data controller for the platform infrastructure. Individual restaurants are data controllers for their own customer data.
2. What Data We Collect
From Restaurant Owners
- Name, email, phone number
- Business name and address
- Bank account information (processed by Stripe, not stored by us)
- Menu data, business hours, branding assets
From Restaurant Customers (End Users)
- Name, phone number, email
- Delivery addresses
- Order history
- Loyalty points and transaction history
- Payment information (processed by Stripe, never stored by us)
3. How We Use Data
- To operate and maintain the ordering platform
- To process orders and payments
- To provide customer support
- To send order status notifications via SMS
- To improve the platform (aggregate analytics only)
4. Data Sharing
We do NOT sell your data. We share data only with:
- Stripe — payment processing
- Vercel — website hosting and SSL
- Cloudflare R2 — image storage
- Twilio — SMS delivery
- Upstash — caching infrastructure
Each sub-processor is bound by data processing agreements.
5. Data Retention
- Active account data: retained while subscription is active
- Order history: retained for 7 years (tax/regulatory requirements) or until account deletion
- After cancellation: data export provided within 14 days, then deleted within 30 days unless otherwise required by law
6. Your Rights
- Request a copy of your data
- Request correction of inaccurate data
- Request deletion of your data (subject to legal requirements)
- Opt out of non-essential communications
7. Security
We use HTTPS everywhere, encrypt data at rest, and follow industry best practices. Payment data is handled entirely by Stripe (PCI DSS Level 1 certified). We never store credit card numbers.
8. Contact
Data protection inquiries: privacy@ownorder.com
Stockmice Lab Corp
Illinois, United States