Overview
ChefOS Systems, Inc. (“ChefOS,” “we,” “us”) builds the operating system that unifies scheduling, inventory, sales analytics, and team communication for restaurants. This Privacy Policy describes how we collect, use, and share information when you visit our website, request a demo, or use the ChefOS platform.
We designed this document to be read end-to-end. If anything is unclear, write to legal@chefos.us and a human will respond.
Information we collect
Account information. When you request a demo or create a ChefOS account, we collect your name, work email, phone number, restaurant name, and role.
Operational data. When you connect ChefOS to your POS, scheduling, or accounting tools, we ingest the operational data required to power the product — orders, shifts, invoices, menu items, labor, and inventory counts.
Usage data. We collect standard product analytics (pages viewed, features used, device type, IP address) to improve ChefOS. We do not sell this data.
Cookies. We use a small number of essential cookies to keep you signed in and to measure site performance. We do not run third-party ad trackers.
How we use information
We use the information we collect to:
- Deliver, operate, and improve the ChefOS platform.
- Provide support, respond to questions, and process your demo requests.
- Generate the dashboards, reports, and AI-powered insights that are the product itself.
- Detect, investigate, and prevent fraud, abuse, and security incidents.
- Comply with legal obligations and enforce our Terms of Service.
We never train foundational AI models on your customer data without an explicit written agreement.
Security
Security is a first-class concern at ChefOS. We encrypt data in transit with TLS 1.3 and at rest with AES-256. Production systems run in SOC 2 Type II audited environments with least-privilege access, hardware-backed key management, and continuous monitoring.
We run regular penetration tests and maintain an incident response program with defined SLAs for customer notification. Report a suspected vulnerability to security@chefos.us.
Data retention
We retain customer data for the duration of your subscription plus 30 days, after which it is permanently deleted from our production systems. Backups are rotated within 90 days. Customers on enterprise plans can configure custom retention windows.
You can export your data at any time through the ChefOS dashboard or by contacting us.
Your rights
Depending on where you live, you may have the right to access, correct, delete, or export your personal information, and to object to or restrict certain processing. To exercise any of these rights, email privacy@chefos.us with the email address associated with your account.
We respond to verified requests within 30 days and will never charge for standard privacy requests.
International transfers
ChefOS is headquartered in the United States. Customer data is hosted in the U.S. by default, with EU and UK hosting available on request for qualifying customers. We rely on Standard Contractual Clauses for transfers where required.
Children
ChefOS is built for restaurant operators, not children. We do not knowingly collect personal information from anyone under 16. If we learn we have collected information from a child, we will delete it.
Changes to this policy
We may update this Privacy Policy as our product and the legal landscape evolve. When we make material changes, we will notify active customers by email at least 30 days before the changes take effect and update the “Last updated” date at the top of this page.
Contact
For any question about this Privacy Policy or our data practices, contact us at:
ChefOS Systems, Inc.
privacy@chefos.us
Questions? Write to legal@chefos.us.