Privacy Policy

Last updated: March 28, 2026

Introduction

SIMOO is committed to protecting your privacy. This privacy policy explains how we collect, use, and protect your personal data when you use our QR code ordering platform for restaurants.

Data We Collect

1. For Restaurant Owners:

  • Email address (for authentication)
  • Business name and restaurant information
  • Menu data (items, prices, descriptions, images)
  • Order history
  • Staff information (emails, roles)

2. For Customers:

  • Table number (from QR code)
  • Order details (items, quantities, special instructions)
  • Phone number or name (optional, if provided by customer)
  • Usage data (pages visited, interactions)

3. Technical Data:

  • IP address
  • Browser type and device
  • Usage and analytics data

How We Use Your Data

  • Provide and maintain the SIMOO service
  • Process orders and transmit them to restaurants
  • Authenticate users and manage accounts
  • Improve our service and develop new features
  • Ensure security and prevent fraud
  • Send important notifications (order updates, etc.)
  • Provide customer support
  • Comply with legal obligations

Data Storage and Security

Infrastructure: Your data is stored on Google Firebase, a secure cloud platform certified SOC 2.

Encryption: All data is encrypted in transit (TLS/SSL) and at rest.

Access: Data access is strictly limited to authorized employees and restaurant owners (for their own data only).

Retention: Order data is retained for 2 years for tax and accounting purposes. Accounts inactive for more than 3 years may be deleted.

Data Sharing

We never sell your personal data. We share your data only in the following cases:

  • With the restaurant: Customer orders are shared with the relevant restaurant
  • Service providers: Google Firebase (hosting), email services (notifications)
  • Legal obligations: If required by law or to protect our rights

Your Rights (Law 09-08 & GDPR)

Under Moroccan Law 09-08 and GDPR, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct incorrect or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Receive your data in a structured format
  • Object: Object to processing of your data
  • Restriction: Request limitation of processing

To exercise these rights, contact us at: [email protected]

You may also file a complaint with CNDP (Morocco's National Data Protection Commission): www.cndp.ma

Cookies and Tracking

We use strictly necessary cookies for service functionality (authentication, cart). We do not use advertising or third-party tracking cookies.

Children

SIMOO is not intended for persons under 16 years old. We do not knowingly collect data from children.

Changes

This policy may be updated occasionally. We will notify you of significant changes via email or in-app notification.

Contact

For any questions about this privacy policy:
Email: [email protected]
Support: [email protected]