Security & Transparency

Privacy Policy (GDPR)

Version 2.0 — Optimized for France & EU Compliance

1. Identity of the Data Controller

Localisr Technologies ("Localisr", "we", "us", or "our") acts as the Data Controller for the personal data of our customers (Restaurant Owners) and as a Data Processor for the data of their customers (Dinners). We operate in full accordance with the European General Data Protection Regulation (GDPR) and the French Data Protection Act (Loi Informatique et Libertés).

2. Purpose and Legal Basis of Processing

We process your data based on the following legal grounds:

Contractual Necessity: To provide the Localisr review generation service and manage your restaurant dashboard.
Legitimate Interest: To improve our AI algorithms and platform security.
Legal Obligation: For tax and accounting purposes in accordance with French law.

3. Data Minimization & Security

Under the "Privacy by Design" principle mandated by the CNIL, we collect only the minimum data required: Email, Business Name, and QR activity logs. We use Google Firebase (EU-region) with industry-standard encryption for data storage. All scan activity is randomized to protect user anonymity while preventing malicious double-spins.

4. Data Subjects' Rights

As a resident of the EU or France, you have the following rights regarding your data:

Access & Rectification

Request a copy of your data or correct inaccuracies.

Right to Erasure

The 'Right to be Forgotten'—request total deletion of your profile.

Data Portability

Receive your restaurant metadata in a structured format.

Right to Lodge a Complaint

Contact the CNIL (www.cnil.fr) if you believe your rights were violated.

5. Contacting the DPO

For any inquiries regarding your data protection, you can contact our Data Protection Officer at:

privacy@localisr.app