Privacy Policy
Last updated 6 July 2026
This policy explains what personal data HospiX collects, why, and your rights under the UK GDPR / EU GDPR. HospiX (a trading name of the operator of hospix.tech) is the data controller for your account data. For our full legal entity name and registered address, contact privacy@hospix.tech.
1. Data we collect
- Account data: your name, email, password (hashed), and business details you provide.
- Content you enter: menus, costs, sales, and other records you create in the tools.
- Personal data you enter about others: for example guest contacts in the Repeat-Visit tool, or staff names in sales entries. For this data you are the controller and we are your processor. You must have a lawful basis and, where required, consent.
- Usage & technical data: analytics events, IP address and device information to run and secure the Service.
2. Why we use it (lawful bases)
- To provide the Service (contract).
- Billing and fraud/abuse prevention (contract, legitimate interests).
- Security and rate limiting (legitimate interests).
- Analytics and marketing only with your consent (see our Cookie Policy).
3. Sharing
We share data only with processors that help us run the Service (hosting, database, payments, email), under contract. We do not sell your data. Our payment provider processes card details directly; we never see full card numbers.
4. Retention
We keep your data while your account is active. When you delete your account, we delete your personal data and content within 30 days, except where we must retain limited records (for example invoices) to meet legal obligations.
5. Your rights
You can access, correct, export or delete your data, object to or restrict processing, and withdraw consent at any time. Use Export my data and Delete my account in your account settings, or contact us. You may also complain to your data protection authority.
6. International transfers & security
Data may be processed in the EU/EEA and other regions by our providers under appropriate safeguards. We protect data with encryption in transit, hashed passwords, access controls and rate limiting. No system is perfectly secure, but we take reasonable measures.
7. Contact
Privacy questions or requests: privacy@hospix.tech.
This is a general template provided for convenience. Have it reviewed by a qualified solicitor and tailored to your registered company details, jurisdiction and payment provider before relying on it commercially.