Privacy Policy

Serveo (“Serveo”, “we”, “our”, or “us”) operates a physical operations platform that helps businesses manage their devices, locations, workflows, and hospitality operations.

We care about your privacy and this page explains what we collect, why we collect it, and how you stay in control.

📂 1. Information We Collect

We collect information in a few ways:

a) Information you provide directly

  • Name, email, password

  • Business name and role

  • Department, location, contact details

  • Messages you send us (support requests, feedback)

  • Billing details (handled by Stripe, Square, or SumUp — we do not store card numbers)

b) Information collected automatically

  • Device and browser info (IP address, OS, browser type)

  • Actions you take in the product (pages viewed, clicks, session length)

  • Cookies and similar tracking technologies

c) Device & operational data (for platform customers)

  • Device activation and status

  • Metrics and alerts (where enabled)

  • Location and department mappings

  • Hospitality menus, orders, and transaction metadata

  • Workflow actions and event logs

d) AI inputs

  • Text you type into AI features

  • Voice input (transcribed via speech-to-text)

  • Images you upload for analysis

These are processed via providers like OpenAI and Google to power features such as voice commands and image recognition.

⚙️ 2. How We Use Your Information

We use your information to:

  • Provide the service

    • Create and manage your account

    • Handle devices, locations, departments, and workflows

    • Process orders and hospitality flows

  • Improve the platform

    • Debug issues, optimize performance, and build new features

  • Power AI features

    • Voice ordering, computer vision workflows, and predictive suggestions

    We do not use your data to train public AI models.

  • Process payments

    • Through Stripe/Square/SumUp (they handle card data securely)

  • Communicate with you

    • Service updates, security alerts, support replies

  • Keep Serveo secure

    • Detect abuse, enforce RBAC, and maintain audit logs

⚖️ 3. Legal Basis (EU/UK GDPR)

If you’re in the EU or UK, we rely on:

  • Contract – to run the service you sign up for

  • Legitimate interests – security, product improvement, analytics

  • Consent – for cookies and some marketing/comms

  • Legal obligations – accounting, fraud prevention, compliance

🤝 4. How We Share Your Information

We do not sell your personal data.

We may share data with:

a) Service providers

  • Payment processors (Stripe, Square, SumUp)

  • Hosting and infrastructure (Vercel, Railway, Neon/Postgres)

  • AI and voice/vision providers (OpenAI, Google Cloud)

These providers are required to protect your data and only use it as instructed.

b) Your organisation (if you use Serveo via your employer)

  • Admins may see activity logs, device assignments, workflows, and configuration related to your account.

c) When required by law

  • To comply with legal requests or protect Serveo, our users, or the public.

🛡️ 5. Data Security

We use modern security practices, including:

  • TLS 1.3 encryption in transit

  • Per-business data isolation at the database layer

  • Role-Based Access Control (RBAC)

  • Secure hosting providers and access controls

  • Logging and monitoring for suspicious activity

No system is 100% secure, but we design Serveo with security as a core principle.

🕰️ 6. Data Retention

We keep your data for as long as it’s needed to:

  • Provide the service

  • Comply with legal and accounting requirements

  • Resolve disputes or enforce our agreements

If you close your account, we may retain certain records as required by law. You can request export of your business data where applicable.

🍪 7. Cookies & Tracking

We use cookies to:

  • Keep you logged in

  • Remember preferences

  • Understand how the product is used

You can control cookies via your browser settings. Some features may not work properly if essential cookies are disabled.

🧑‍⚖️ 8. Your Rights

Depending on where you live, you may have the right to:

  • Access the personal data we hold about you

  • Correct inaccurate data

  • Delete certain data

  • Restrict or object to some processing

  • Export your data (data portability)

  • Withdraw consent where we rely on consent

To exercise these rights, contact us at development@serveo.ai. We may need to verify your identity before responding.

🌍 9. International Transfers

Your data may be processed in different countries (for example, where our infrastructure or service providers are located).

When we move data across borders, we use safeguards such as:

  • Standard Contractual Clauses (SCCs)

  • GDPR-compliant providers

  • Contractual and technical protections

👶 10. Children’s Privacy

Serveo is designed for businesses, not for children.
We do not knowingly collect data from anyone under 16 years old. If you believe a child has provided us data, please contact us, and we’ll take appropriate steps.

🔗 11. Third-Party Links

If our website links to other sites, their terms and privacy policies apply.
We are not responsible for their content or privacy practices.

📝 12. Changes to This Policy

We may update this Privacy Policy from time to time.
When we do, we’ll update the “Last Updated” date at the top of this page.

If changes are significant, we may notify you by email or in-app notice.

📬 13. Contact Us

For questions about this Privacy Policy or your data:

Serveo – Privacy Office
Email: development@serveo.ai
Address: