Halo Button

Privacy Policy

Last updated: November 2025

This Privacy Policy explains how Halo Button ("we", "us") collects, uses, and protects information when you use the Halo Button mobile app and related services (the "Service"). Halo Button is a B2B platform: subscriptions are sold to businesses (hotels, restaurants, cafés), and the app is used by their staff and operators.

1. Who is the data controller

Halo Button is the data controller for personal data processed through the Service. The contracting business (your employer) is the controller for guest data they upload or generate inside the Service; Halo Button is the processor for that data.

For any privacy-related question, contact privacy@halobutton.com.

2. What data we collect

Category	Examples	Why we collect it
Account data	Email address, name, role, business association, password hash	To authenticate you and connect you to your business
Device data	Push notification token, device model, OS version, app version, language, timezone	To deliver notifications and to diagnose issues
Usage data	Screens visited, features used, error and crash reports	To operate and improve the Service
Optional location	Approximate or precise location, only when you tap "use current location" inside the access codes screen	To pre-fill a geofence center for QR access codes. Not tracked in the background.
Audio	Voice recordings while you actively use the Voice Call feature	To clarify a guest request in real time. Audio is streamed and not retained beyond the active call unless you save a transcript.
Content you create	Menu items, knowledge base entries, request notes, photos you upload	To operate the Service for your business

We do not collect data for advertising. We do not use the Apple App Tracking Transparency framework because we do not track you across other companies' apps or websites.

3. Payment information

Halo Button subscriptions are billed through our web portal, not the mobile app. Card details, billing address, and tax IDs are entered directly into our payment processor's (Stripe's) hosted forms. Halo Button does not see or store full card numbers.

4. How we use data

• To provide the Service (sign-in, request routing, notifications, analytics for your business).
• To secure the Service (rate limiting, abuse detection, audit logs).
• To support and improve the Service (debug crashes, fix bugs, ship updates).
• To meet legal obligations (tax records, lawful requests).

We do not sell personal data. We do not share it with third parties for advertising.

5. Service providers

We use the following processors. They are bound by data protection agreements and may only process data on our instructions.

• Google Firebase (Authentication, Cloud Messaging, hosting) — sign-in, push notifications, crash reports.
• Apple Push Notification service — push notifications on iOS devices.
• Stripe — payment processing for the web portal.
• Cloud hosting provider — running our backend servers.
• Email delivery provider — transactional emails (invites, password resets).

6. Where data is stored

Personal data may be processed in the European Union, the United Kingdom, the United States, and Turkey, depending on the service provider. When data is transferred outside your country, we rely on Standard Contractual Clauses or an equivalent mechanism.

7. How long we keep data

• Account data: while your business is an active customer, plus 90 days after cancellation for reactivation.
• Invoices and tax records: retained for the period required by applicable tax law (typically up to 10 years).
• Crash and diagnostic data: up to 90 days.
• Audit and security logs: up to 1 year.

8. Your rights

Depending on where you live (EEA, UK, Turkey, California, etc.), you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Delete your data (subject to legal retention)
• Export your data in a portable format
• Object to or restrict certain processing
• Withdraw consent where processing is based on consent
• Lodge a complaint with your local data protection authority

To exercise these rights, email privacy@halobutton.com from the address on your account. We respond within 30 days.

9. Account deletion

You can delete your account in two ways:

• In the mobile app: Profile → Delete account.
• By email: send a request from the address on your account to privacy@halobutton.com.

Deletion disables sign-in immediately and queues a 30-day purge of personal data. Records required for legal retention are anonymized rather than deleted.

10. Children

Halo Button is intended for adult staff and operators of hospitality businesses. We do not knowingly collect personal data from anyone under 18. If you believe a minor has provided data, contact us and we will remove it.

11. Security

We use industry-standard safeguards: TLS in transit, encryption at rest for sensitive fields, scoped access controls, audit logging, and routine security review. No system is perfectly secure; please use a strong, unique password and enable biometric sign-in in the app.

12. Changes to this policy

We may update this policy. Material changes will be announced inside the app and by email at least 14 days before they take effect.

13. Contact

Privacy questions: privacy@halobutton.com
General support: support@halobutton.com