Privacy Policy

This Privacy Policy explains how orbitalvexae Ltd ("we", "us", or "our") collects, uses, and protects your personal information when you use our website and services. We are committed to protecting your privacy and ensuring transparency in our data handling practices.

Last updated: 15th January 2026

Data Controller Information

orbitalvexae Ltd is the data controller responsible for your personal information. We are registered in Cyprus with registration number HE745896 and our registered office is located at Poseidonos Avenue 3, Limassol 3099, Cyprus.

Data Collection

We collect various types of information when you interact with our website and services. The data we collect includes personal information that you voluntarily provide to us, such as your name, email address, phone number, and company details when you contact us or request our services. We also collect technical information automatically when you visit our website, including your IP address, browser type, device information, and usage patterns to improve our services and user experience.

Information You Provide Directly

• Contact information (name, email address, phone number)
• Company information (business name, industry, size)
• Communication preferences and consent settings
• Messages and inquiries sent through our contact forms
• Account information if you register for our services

Information We Collect Automatically

• Device and browser information
• IP address and location data
• Website usage patterns and analytics data
• Cookie and tracking technology data

How We Use Your Information

We use the personal data we collect for specific, legitimate purposes. How we use your information depends on how you interact with our services and the legal basis for processing. We use your information to provide and improve our restaurant inventory analytics services, respond to your inquiries and support requests, send you relevant information about our products and services, and ensure the security and proper functioning of our website and systems.

Service Delivery

We use your personal information to deliver our restaurant analytics services, process your requests, provide customer support, and maintain your account if you are a registered user.

Communication

We may contact you to respond to your inquiries, provide updates about our services, send important notices about changes to our terms or policies, and share relevant industry insights if you have consented to marketing communications.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you have given clear consent for specific processing activities
• Contract: To fulfil our contractual obligations to provide services
• Legitimate interests: For business operations, security, and service improvement
• Legal obligation: To comply with applicable laws and regulations

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about the cookies we use, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in limited circumstances, including with trusted service providers who assist us in operating our website and delivering our services, with legal authorities when required by law or to protect our rights, and in the event of a business transfer such as a merger or acquisition, subject to appropriate confidentiality agreements.

Third-Party Service Providers

We work with carefully selected third-party providers who help us deliver our services, including:

• Website hosting and technical infrastructure providers
• Analytics and performance monitoring services
• Customer communication and support platforms
• Payment processing and financial services

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. Our security measures include encryption of data in transit and at rest, regular security assessments and updates, access controls and authentication procedures, and staff training on data protection practices.

Your Rights

Under GDPR and applicable data protection laws, you have several rights regarding your personal information. You have the right to access your personal data and receive a copy of the information we hold about you, request correction of any inaccurate or incomplete personal data, request deletion of your personal data in certain circumstances, object to or restrict the processing of your personal data, and request data portability in certain situations.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided in the contact section below. We will respond to your request within one month, though this may be extended in complex cases. You also have the right to lodge a complaint with your local data protection authority if you believe we have not handled your personal data appropriately.

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this privacy policy, comply with legal obligations, resolve disputes, and enforce our agreements. The specific retention periods depend on the type of information and the purpose for which it was collected. Contact information and inquiries are typically retained for up to three years after your last interaction with us, while account information for active users is retained for the duration of the service relationship plus any required legal retention period.

International Data Transfers

As we operate across Europe, your personal information may be transferred to and processed in countries other than your country of residence. When we transfer data outside the European Economic Area, we ensure appropriate safeguards are in place, such as standard contractual clauses or adequacy decisions by the European Commission.

Children's Privacy

Our services are not intended for children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "last updated" date. We encourage you to review this policy periodically to stay informed about how we protect your information.

Contact Information

If you have any questions about this privacy policy, wish to exercise your data protection rights, or need to contact us regarding your personal information, please reach out to us through the following channels:

We are committed to addressing your privacy concerns and will respond to your inquiries as promptly as possible, typically within one business day for initial acknowledgement and within 30 days for full resolution of data protection requests.