DDingDong LogoDD!NGDONG
Join
LEGAL INFORMATION

Privacy Policy

Effective Date: June 8, 2025

At DDingDong, we value your privacy and are committed to protecting any information you share with us through our smart service platform, including the QR/NFC-based customer call system and manager dashboard.

This Privacy Policy explains what we collect, how we use it, with whom we share it, and the choices you have. By using our services, you agree to this Policy and our Terms of Service.

Please read this carefully. Venue managers should also review the section below on Data Controller & Processor Roles.

Table of Contents

1. What We Collect2. How We Use Your Data3. Data Sharing4. Data Retention5. Security6. Your Rights7. Cookies & Tracking8. International Transfers9. Children’s Privacy10. Data Controller & Processor Roles11. Changes to This Policy12. Contact

1. What We Collect

A. Manager Accounts

To provide the dashboard experience for restaurants, we collect:

  • Business name and contact info
  • Login credentials (email and password)
  • Request history and device performance logs

B. Customer Interactions

Customers do not need to download an app or create an account. When a customer uses our service by scanning a QR code or tapping an NFC tag, we do not collect personally identifiable information. However, we may collect:

  • Device type and browser info (anonymized)
  • Timestamp of service requests
  • Table or location reference (based on code scanned)

C. Analytics & Logs

We collect anonymized analytics data for service optimization:

  • Frequency and type of customer requests
  • Staff response times
  • Device error logs (from dashboard tablets)

2. How We Use Your Data

  • To deliver real-time customer requests to your staff
  • To improve service flow through dashboard analytics
  • To troubleshoot and maintain platform performance
  • To monitor system usage and improve the DDingDong experience

3. Data Sharing

We do not sell or share your data with third-party advertisers. Data is stored securely and only accessed internally for operational purposes.

We use trusted service providers acting as our processors, including Google Firebase for authentication, database, and analytics. These providers are contractually required to process data only on our instructions and implement appropriate security measures.

4. Data Retention

  • Manager account data is retained while the account is active
  • Anonymized service logs may be kept for performance analysis
  • You may request deletion of your account and associated data at any time

5. Security

We use HTTPS encryption and role-based access controls on our manager dashboard. Customer QR/NFC requests are ephemeral and do not persist user identity.

6. Your Rights

Depending on your location, you may have the following rights over your personal data:

  • Access, correction, deletion, and portability of your data
  • Object to or restrict certain processing, or withdraw consent where processing is based on consent
  • Lodge a complaint with your supervisory authority

7. Cookies & Tracking

We may use cookies and similar technologies to operate the website, remember preferences, and understand usage. You can control cookies through your browser settings; disabling certain cookies may affect functionality.

8. International Transfers

We may transfer and store information in countries other than your own, including the United States. Where required, we implement appropriate safeguards (such as standard contractual clauses) to protect data during cross-border transfers.

9. Children’s Privacy

Our services are not directed to children under 13 (or a higher age where required by local law). We do not knowingly collect personal information from children. If you believe a child has provided personal information, please contact us so we can delete it.

10. Data Controller & Processor Roles

For manager account data (e.g., admin credentials and settings), DDingDong acts as the data controller.

For customer interaction data collected at your venue through the bell experience, the venue acts as the data controller and DDingDong acts as a data processor, processing such data on the venue’s instructions to deliver the service. A Data Processing Addendum (DPA) may be available upon request.

We may also collect aggregated and/or anonymized analytics that do not identify individuals, to improve performance and reliability.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via the Dashboard, our website, or email. Your continued use after the effective date constitutes your acceptance of the updated Policy.

12. Contact

For privacy-related inquiries, contact us at:

📧 contact@ddingdong.dev