Privacy Policy – Joelsa Restaurant POS Platform

Last updated: 14 November 2025

Operated by: Joelsa Ltd (Company No. 09425232)

Joelsa Ltd ("we", "us", "our") operates the Joelsa Restaurant POS platform, including QR code ordering, kitchen display systems, waiter apps, and management dashboards (the "Service").

We are committed to protecting your privacy and complying with the UK GDPR, the Data Protection Act 2018, and where applicable, the EU GDPR.

1. Information We Collect

We collect only the data necessary to operate restaurant ordering and POS functionality.

1.1 Customer Order Information

• Name (optional)
• Email address (optional)
• Phone number (optional)
• Delivery or table information
• Order details (items, quantity, price)

1.2 Restaurant / Merchant Data

• Business name
• Account email
• Menu items and pricing
• Order and transaction records

1.3 Device & Technical Data

• Device type and OS
• Browser/app version
• Crash logs and diagnostics

1.4 Data We Do NOT Collect

• Card numbers, CVC, or PINs
• Bank account details
• GPS location data
• Sensitive personal data

2. Payments & Stripe

All payments are securely processed by Stripe. We do not store or access card details.

• Stripe handles encryption and processing
• Stripe is PCI DSS Level 1 compliant

3. How We Use Your Data

• Process and manage orders
• Display orders on kitchen and waiter systems
• Manage restaurant dashboards
• Provide customer receipts and order tracking
• Improve system performance and security

4. Legal Basis

• Contract: To provide POS and ordering services
• Legitimate Interest: Improve platform performance and prevent fraud
• Legal Obligation: Financial and compliance requirements

5. Data Storage & Retention

We store data securely with restricted access and encryption in transit.

• Orders may be retained for up to 12–24 months
• Inactive accounts may be deleted after 24 months

6. Sharing of Data

We do not sell your data.

• Stripe (for payments)
• Legal authorities (if required)

7. Your Rights

• Access your data
• Correct inaccurate data
• Request deletion
• Restrict or object to processing
• Data portability

To exercise your rights, contact: support@joelsapos.com

8. Children’s Privacy

Our platform is intended for business use and not directed at children under 18.

9. International Transfers

Data may be processed outside the UK/EEA using appropriate safeguards such as Standard Contractual Clauses.

10. Updates

We may update this policy periodically. Changes will be posted on this page.

11. Contact

Email: support@joelsapos.com
Company: Joelsa Ltd (Company No. 09425232)