Last updated: February 19, 2026
BluPlate AI collects restaurant account information (name, email, business details), diner session data (anonymized preferences, order history via device fingerprint), and platform usage analytics. We do not collect payment information — all transactions are processed through your existing POS system.
Restaurant data powers your dashboard analytics, AI recommendations, and review management. Diner session data is anonymized and used to improve recommendation accuracy. We never sell personal data to third parties.
All data is stored on AWS infrastructure with AES-256 encryption at rest and TLS 1.3 in transit. We are working toward SOC 2 Type II certification and conduct regular security audits. Data is retained for the duration of your subscription plus 90 days.
When you connect POS systems (Square, Toast) or review platforms (Google), data flows through authenticated APIs with minimal data exposure. We only access what's needed for platform functionality.
You can request data export, deletion, or correction at any time. Restaurant owners can delete all associated diner session data. Contact privacy@bluplateai.com for any data requests.
For privacy questions, email privacy@bluplateai.com. We respond within 48 hours.