Privacy Policy

Last updated: May 18, 2026

1. Introduction

Vibe Order ("Company," "we," "us," or "our") operates a cloud-based platform and related services (collectively, the "Services"), owned and managed by Agito Solutions. This Privacy Policy explains how we collect, use, disclose, and safeguard information about merchants who use our Services ("Merchants"), their employees, and the end customers who transact through Vibe Order-powered terminals ("Customers").

By accessing or using the Services, you agree to the practices described in this Policy. If you do not agree, please discontinue use of the Services.

2. Information We Collect

2.1 Information You Provide

  • Account registration: Name, business name, email address, phone number, mailing address, and password when you create a Merchant account.
  • Business information: Tax identification number, business license details, and bank account information required for payment processing and payouts.
  • Menu and inventory data: Product names, descriptions, prices, photos, and modifiers you enter into the platform.
  • Support communications: Messages, attachments, and other information you send when contacting our support team.

2.2 Information Collected Automatically

  • Transaction data: Order details, item quantities, subtotals, taxes, discounts, tips, payment method type (e.g., credit card, debit card, contactless), and timestamps.
  • Device and usage data: IP address, browser type, operating system, device identifiers, pages visited, features used, and session duration.
  • Log data: Server logs including access times, error logs, and diagnostic information.
  • Location data: Approximate geolocation derived from IP address; precise location if you grant permission on a mobile device.

2.3 Payment Card Data

Vibe Order does not store full payment card numbers, CVV codes, or magnetic stripe data. All payment card processing is performed by PCI DSS-compliant third-party processors. We may retain the last four digits of a card number and card brand solely for transaction reference and dispute resolution purposes.

2.4 Customer Data

When end customers transact at a Merchant's location, we may collect names, email addresses, phone numbers, and purchase history if the Merchant enables features such as digital receipts or loyalty programs. Merchants are independently responsible for obtaining any required consent from their customers.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and improve the Services;
  • Process transactions and facilitate payouts to Merchants;
  • Authenticate users and maintain account security;
  • Generate analytics, reports, and business insights for Merchants;
  • Send transactional communications such as receipts, payout notifications, and account alerts;
  • Send marketing communications about new features or promotions, where permitted by law and subject to your opt-out rights;
  • Detect, investigate, and prevent fraudulent transactions and other illegal activities;
  • Comply with applicable laws, regulations, and legal process;
  • Enforce our Terms of Service and other agreements.

4. Sharing of Information

We do not sell your personal information. We may share information as follows:

  • Payment processors: We share transaction data with our payment processing partners solely to authorize and settle payments.
  • Service providers: We engage third-party vendors (e.g., cloud hosting, analytics, email delivery, customer support tools) who process data on our behalf under contractual obligations to protect it.
  • Business transfers: If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your information becomes subject to a different privacy policy.
  • Legal requirements: We may disclose information when required by law, subpoena, court order, or governmental authority, or when we believe disclosure is necessary to protect our rights, prevent fraud, or protect the safety of any person.
  • With your consent: We may share information for any other purpose with your explicit consent.

5. Data Retention

We retain Merchant account data for the duration of the account relationship and for up to seven (7) years thereafter to comply with financial recordkeeping obligations and to resolve disputes. Transaction records are retained for a minimum of five (5) years in accordance with payment network rules and applicable law. You may request deletion of personal data not subject to legal retention requirements by contacting us at the address below.

6. Security

We implement industry-standard technical and organizational measures to protect your information, including TLS encryption for data in transit, AES-256 encryption for sensitive data at rest, role-based access controls, and regular security audits. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

  • Keep you logged in and remember your preferences;
  • Understand how you use our Services so we can improve them;
  • Measure the effectiveness of our marketing.

You can control cookies through your browser settings. Disabling cookies may affect the functionality of the Services. We do not respond to "Do Not Track" signals at this time.

8. Your Rights and Choices

Depending on your jurisdiction, you may have the right to:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request that we correct inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information, subject to legal retention obligations.
  • Portability: Receive your data in a structured, machine-readable format.
  • Opt-out of marketing: Unsubscribe from marketing emails at any time by clicking the "unsubscribe" link in any email or by contacting us directly.
  • Restrict or object to processing: Request that we limit or stop certain uses of your data.

To exercise these rights, please contact us. We will respond within 30 days (or as required by applicable law).

9. Children's Privacy

The Services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will delete it promptly. If you believe we may have collected such information, please contact us.

10. Third-Party Links

Our Services may contain links to third-party websites or integrations with third-party services. This Privacy Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party services you access.

11. International Data Transfers

Vibe Order is based in the United States. If you access the Services from outside the United States, your information may be transferred to, stored in, and processed in the United States or other countries where our service providers operate. By using the Services, you consent to such transfers. Where required, we implement appropriate safeguards (such as standard contractual clauses) for cross-border transfers.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the "Last updated" date at the top of this page and, where appropriate, by sending an email to the address associated with your account. Your continued use of the Services after the effective date of the updated Policy constitutes your acceptance of the changes.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Vibe Order
Attn: Privacy Team
Email: privacy@agitosolutions.com