Privacy Policy
Please read this privacy policy carefully before accessing or using OpsPilot.
Introduction
Welcome to OpsPilot by Culinary Compass ("OpsPilot", "we", "our", or "us").
OpsPilot is a workforce operations and performance management platform designed for restaurants, hotels, cloud kitchens, and other hospitality businesses. Through our mobile application and web platform, organizations can assign tasks, manage operational workflows, monitor compliance, track performance, and access analytics and reporting tools that support day-to-day business operations.
This Privacy Policy explains how Culinary Compass Advisors LLP collects, uses, stores, discloses, and protects information when you access or use OpsPilot and any related services (collectively, the "Services").
By accessing or using the Services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of information as described herein.
Company Information
OpsPilot is owned and operated by:
- Culinary Compass Advisors LLP
- India
- Email: contact@culinarycompass.in
- Website: culinarycompass.in
If you have any questions regarding this Privacy Policy or our data handling practices, you may contact us using the information provided above.
Scope of This Privacy Policy
This Privacy Policy applies to the collection, use, storage, disclosure, and protection of information obtained through:
- The OpsPilot mobile application;
- The OpsPilot web application and related dashboards;
- The Culinary Compass website and associated online services;
- Communications between users and Culinary Compass Advisors LLP, including support requests and account-related communications; and
- Any other products, features, content, or services that reference or link to this Privacy Policy.
This Privacy Policy applies to all users of the Services, including Super Administrators, Administrators, Members, and other authorized users granted access by an organization.
OpsPilot is intended for use by businesses and organizations operating within the hospitality industry, including restaurants, hotels, cloud kitchens, cafés, catering businesses, and related enterprises. Access to certain features and information may vary based on a user's role, permissions, and organizational settings.
This Privacy Policy does not apply to third-party websites, applications, products, or services that may be linked from or integrated with the Services. We encourage users to review the privacy policies of such third parties before providing any personal information.
Information We Collect
We collect information that is necessary to provide, maintain, improve, and secure the Services. The information we collect may vary depending on how users interact with OpsPilot and the permissions granted by their organization.
1. Account Information
When users create or access an account, we may collect:
- Full name
- Email address
- Phone number
- Job title or designation
- Organization, restaurant, hotel, outlet, or business name
- User role and permissions within the organization
- Profile information provided by the user
2. Authentication Information
To verify user identity and secure access to the Services, we may collect and process:
- Login credentials
- Encrypted passwords
- One-Time Password (OTP) verification data
- Google account information when users choose Google Sign-In
- Account recovery and security-related information
3. Operational Data
As part of providing the Services, we collect information created, uploaded, assigned, or managed within OpsPilot, including:
- Tasks and checklists
- Task descriptions and instructions
- Subtasks and action items
- Audit and compliance records
- Comments and notes
- Status updates
- Attachments and uploaded files
- Images and supporting documentation
- Activity logs and task history
- User-generated content
4. Analytics and Performance Data
We may generate and process operational analytics based on information submitted within the platform. Such analytics may include:
- Task completion metrics
- Workforce productivity indicators
- Operational compliance statistics
- Outlet-level performance metrics
- Team performance trends
- Operational reporting and dashboard insights
These analytics are intended to assist organizations in monitoring and improving operational performance.
5. Device and Technical Information
When users access the Services, we may automatically collect certain technical information, including:
- Device type and model
- Operating system information
- Browser type and version
- Internet Protocol (IP) address
- Application version
- Device identifiers
- Log files and diagnostic information
- Usage and performance data
- Crash reports and error logs
6. Media and Device Permissions
Depending on the features used, OpsPilot may request access to certain device capabilities and information, including:
Camera Access
- To capture and upload images related to tasks, audits, checklists, operational records, and other workflow activities.
Photo Library Access
- To allow users to select and upload existing images and documents from their device.
Microphone Access
- To enable voice-based communication and audio messaging features available within the Services.
Contacts Access
- To assist authorized users, including Super Administrators and Administrators, in inviting team members and managing organizational access by selecting contact information from their device.
Access to these permissions is optional and subject to the user's authorization. Users may manage or revoke permissions at any time through their device settings, although doing so may limit the functionality of certain features within the Services.
7. Notification Information
To provide alerts, reminders, and operational updates, we may collect information required to send notifications, including:
- Push notification tokens
- Notification preferences
- Delivery and interaction data related to notifications
How We Use Information
We use the information we collect to operate, maintain, improve, and secure the Services. Specifically, we may use information for the following purposes:
Account Management and Authentication
- Create and manage user accounts.
- Verify user identity and authenticate access to the Services.
- Manage user roles, permissions, and organizational access controls.
- Facilitate account recovery and security-related processes.
Service Delivery
- Provide task management, checklist management, workflow tracking, and operational monitoring features.
- Enable users to create, assign, receive, update, and complete tasks.
- Support collaboration and communication among authorized users within an organization.
- Maintain records of operational activities and user interactions.
Analytics and Reporting
- Generate operational reports, dashboards, and analytics.
- Provide workforce productivity insights and performance metrics.
- Analyze task completion trends, compliance records, and operational effectiveness.
- Deliver outlet-level, team-level, and organization-level performance insights to authorized users.
Communication and Notifications
- Send operational alerts, reminders, updates, and notifications.
- Notify users regarding assigned tasks, deadlines, approvals, and workflow activities.
- Respond to inquiries, support requests, and customer service communications.
Artificial Intelligence Features
- Generate task descriptions, suggestions, and subtasks using AI-powered features.
- Improve the quality and relevance of AI-assisted recommendations.
- Process user inputs required to deliver AI-generated outputs.
Security and Fraud Prevention
- Protect the Services against unauthorized access, misuse, fraud, and security threats.
- Detecting, investigating, and resolving technical issues and security incidents.
- Monitor compliance with our policies, terms, and applicable laws.
Product Improvement
- Understand how users interact with the Services.
- Monitor application performance and reliability.
- Develop new features, functionality, and enhancements.
- Improve user experience, usability, and operational efficiency.
Legal and Compliance Purposes
- Comply with applicable laws, regulations, legal obligations, and lawful requests from governmental authorities.
- Establish, exercise, or defend legal rights and claims.
- Enforce our Terms of Service and other agreements.
Artificial Intelligence Features
OpsPilot may offer artificial intelligence ("AI") powered features designed to assist users in creating, organizing, and managing operational workflows. These features may include, but are not limited to:
- Generating task descriptions;
- Suggesting subtasks and action items;
- Improving task clarity and consistency;
- Assisting with operational planning and workflow creation; and
- Providing other productivity-enhancing recommendations.
To provide these features, user inputs submitted to AI-enabled functionality may be processed by third-party artificial intelligence service providers acting on our behalf.
Users are responsible for reviewing and validating any AI-generated content before relying upon or implementing it within their operations. While we strive to provide useful and relevant suggestions, AI-generated outputs may contain inaccuracies, omissions, or recommendations that are not suitable for every situation.
Users should avoid submitting confidential, sensitive, regulated, or proprietary information to AI-enabled features unless they have the necessary authorization to do so.
We may change, add, remove, or replace AI service providers and technologies from time to time in order to improve the Services, performance, reliability, or functionality.
Data Retention
We retain information for as long as reasonably necessary to provide the Services, fulfill the purposes described in this Privacy Policy, comply with legal obligations, resolve disputes, enforce agreements, and protect the security and integrity of the Services.
The retention period for specific categories of information may vary depending on:
- The nature of the information;
- The purpose for which the information was collected;
- Organizational settings and requirements;
- Legal, regulatory, tax, accounting, or reporting obligations; and
- Operational, security, and business needs.
Information associated with an organization's account may be retained for the duration of the organization's use of the Services and for a reasonable period thereafter as required for legitimate business, legal, or operational purposes.
When users request account deletion, we will take reasonable steps to delete or anonymize personal information, unless retention is required or permitted by applicable law, necessary for security purposes, required to resolve disputes, enforce agreements, prevent fraud, maintain business records, or satisfy other legitimate obligations.
Please note that residual copies of information may remain in backup systems, archives, disaster recovery systems, and security logs for a limited period of time before being permanently removed in accordance with our internal retention practices.
Data Security
We implement reasonable administrative, technical, and organizational measures designed to protect information against unauthorized access, disclosure, alteration, loss, misuse, or destruction.
Our security practices may include, where appropriate:
- Access controls and role-based permissions;
- Authentication and account security mechanisms;
- Encryption of data during transmission;
- Secure hosting and infrastructure practices;
- Monitoring, logging, and auditing of system activity;
- Backup and disaster recovery procedures; and
- Regular maintenance, updates, and security improvements.
Users are responsible for maintaining the confidentiality of their account credentials and for taking appropriate measures to protect access to their accounts and devices.
While we strive to use commercially reasonable safeguards to protect information, no method of electronic transmission, storage, or processing can be guaranteed to be completely secure. As a result, we cannot guarantee absolute security of any information transmitted to or stored within the Services.
In the event we become aware of a security incident affecting personal information, we will take appropriate steps in accordance with applicable laws and our internal security procedures.
Your Rights and Choices
Subject to applicable laws and the nature of your relationship with the Services, you may have certain rights regarding your personal information.
These rights may include the ability to:
Access Information
Request access to personal information that we maintain about you and obtain information regarding how it is processed.
Correct Information
Request correction or updating of inaccurate, incomplete, or outdated personal information.
Delete Information
Request deletion of personal information, subject to legal, contractual, operational, security, and regulatory requirements.
Restrict or Object to Processing
Where permitted by applicable law, request restrictions on certain processing activities or object to specific uses of personal information.
Withdraw Consent
Where processing is based on consent, you may withdraw your consent at any time. Withdrawal of consent will not affect the lawfulness of processing conducted prior to such withdrawal.
Manage Communications
Users may manage certain communication preferences, including notifications and non-essential communications, through account settings or by contacting us.
Organization-Managed Accounts
If your access to OpsPilot is provided by an organization, employer, restaurant, hotel, or other business entity, certain privacy requests may need to be submitted through or approved by the organization's authorized administrator.
In such cases, the organization may control certain aspects of account management, operational records, user permissions, reporting, and data retention.
Exercising Your Rights
To submit a privacy-related request or inquire about your personal information, please contact us at:
Email: contact@culinarycompass.in
We may request additional information to verify your identity before processing certain requests. We will respond to requests within a reasonable timeframe and in accordance with applicable legal requirements.
Children's Privacy
OpsPilot is intended for use by businesses, organizations, and their authorized personnel. The Services are not directed to, designed for, or intended for use by children.
We do not knowingly collect, solicit, or process personal information from individuals under the age of 13, or any higher minimum age required under applicable law in the user's jurisdiction.
If we become aware that personal information has been collected from a child without appropriate authorization or legal basis, we will take reasonable steps to delete such information as soon as practicable.
If you believe that a child has provided personal information through the Services, please contact us at contact@culinarycompass.in so that appropriate action can be taken.
Changes to This Privacy Policy
We may update or modify this Privacy Policy from time to time to reflect changes in our Services, business practices, legal requirements, technologies, or other operational needs.
When material changes are made, we will update the "Last Updated" date at the beginning of this Privacy Policy and may provide additional notice through the Services, including through the OpsPilot mobile application, web application, email communications, or other appropriate channels.
The most current version of this Privacy Policy will be available at:
https://opspilot.culinarycompass.in/privacy-policy
We encourage users to review this Privacy Policy periodically to stay informed about how information is collected, used, and protected.
Your continued use of the Services following the publication of any updated Privacy Policy constitutes your acknowledgment of the revised Privacy Policy, to the extent permitted by applicable law.
Contact Us
If you have any questions, concerns, requests, or complaints regarding this Privacy Policy, our privacy practices, or the processing of personal information, please contact us using the details below:
Culinary Compass Advisors LLP
India
Email: contact@culinarycompass.in
Website: https://opspilot.culinarycompass.in
We will make reasonable efforts to respond to privacy-related inquiries and requests in a timely manner and in accordance with applicable laws and regulations.