Privacy Policy

Effective date: May 5, 2026. This Privacy Policy describes how Fideliza+ ("Fideliza+", "we", "us" or "our") collects, uses, stores and protects personal information of those who use our platform. By accessing or using Fideliza+ services, you agree to the practices described in this document.

Fideliza+ operates as a multi-tenant loyalty SaaS platform. There are two types of users: businesses that manage their loyalty programs (admin users) and the end customers of those businesses. This policy covers both cases.

1. Data controller

Fideliza+ acts as data controller with respect to admin users' (businesses') data. With respect to end-customer data entered by businesses, Fideliza+ acts as a data processor under the instructions of the respective business, which is the controller.

For privacy inquiries, contact us at: privacy@fideliza.app

2. Data we collect

2.1 Admin user data (businesses)

When registering a business on Fideliza+, we collect:

• Full name of the registering user
• Email address
• Password (stored in encrypted form via Supabase Auth — never in plain text)
• Business name and chosen subdomain (e.g. your-business.fideliza.app)
• Billing information managed by Stripe (we do not store credit card data)
• Account settings: colors, welcome message, custom labels, terms URL

2.2 End-customer data (entered by the business)

Businesses register their customers on the platform. Fideliza+ stores the following information at the business's instruction:

• Customer name
• Phone number (optional)
• Internal notes about the customer (optional, visible to the business only)
• Automatically generated unique access code (alphanumeric, unrelated to personal data)
• Points, stamps and visits balance per program
• Full immutable transaction history
• Issued vouchers and their status (pending, redeemed, expired)

End customers do not create an account on Fideliza+ and do not provide their email address to the platform. Their access is via an alphanumeric code managed by the business.

2.3 Technical and usage data

• IP address of incoming requests (used for rate limiting and security audit logs)
• Timestamp of each operation
• Browser type and version (standard server logs)
• Internal audit events (logins, configuration changes, sensitive operations)

3. How we use your data

We use collected information for the following purposes:

• Service delivery: managing accounts, loyalty programs, points transactions and redemptions
• Authentication and security: verifying identities, preventing unauthorized access and maintaining audit logs
• Billing: processing payments and managing subscriptions via Stripe
• Communications: sending transaction confirmations, account notifications and service updates to the admin's email
• Service improvement: aggregated and anonymized usage analysis to improve features
• Legal compliance: responding to legal obligations, court orders or regulatory requirements

We do not sell, rent or share personal data with third parties for advertising or commercial purposes unrelated to service delivery.

4. Third parties that process data

To operate the service, we share necessary data with the following sub-processors:

• Supabase (supabase.com) — PostgreSQL database, authentication and storage. Acts as sub-processor under a Data Processing Agreement (DPA). Data may be stored on EU or US servers depending on the instance configuration.
• Stripe (stripe.com) — payment processing and subscription management. Stripe is an independent controller for payment data under its own privacy policy. We do not store credit card data.
• Hosting infrastructure providers — to host the web application. Data is transmitted encrypted (TLS 1.2+).

5. Data retention

• Business account data: while the account is active. After account deletion, retained for 30 days before permanent deletion, unless a longer legal retention obligation applies.
• Transaction history: immutable by system design to ensure integrity. Deleted when the business account is deleted.
• End-customer data: remains active while the administering business maintains its account. The business can deactivate or manage their customers at any time.
• Audit and security logs: up to 12 months from creation.
• Billing data: in accordance with applicable tax and accounting obligations (generally 5–7 years).

6. Security

We implement technical and organizational measures to protect data:

• Encryption in transit: TLS/HTTPS on all communications
• Passwords: hashed using secure algorithms managed by Supabase Auth (never stored in plain text)
• Data isolation: each business operates on its own subdomain with Row Level Security (RLS) policies at the database level — cross-tenant data access is architecturally impossible
• HTTP security policies: CSP, HSTS, X-Frame-Options, X-Content-Type-Options applied at server level
• Redemption codes: generated using cryptographically secure random bytes
• Audit log: all sensitive operations are recorded with timestamp and source IP
• PII redaction in logs: personal data (emails, phones, codes) is redacted in system logs before writing

Despite these measures, no system is completely invulnerable. In the event of a security breach affecting your data, we will notify you within the timeframes required by applicable law.

7. Your rights

Under applicable law (including GDPR for users in the European Economic Area and CCPA for California residents), you have the following rights:

• Access: request a copy of the personal data we hold about you
• Rectification: correct inaccurate or incomplete data
• Erasure ("right to be forgotten"): request deletion of your personal data, subject to applicable legal exceptions
• Portability: receive your data in a structured, machine-readable format
• Objection and restriction: object to processing or request its restriction in certain circumstances
• Withdrawal of consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing
• Complaint: lodge a complaint with the supervisory authority in your country

To exercise any of these rights, write to us at privacy@fideliza.app. We will respond within 30 days.

Note for end customers of businesses: if you are a customer of a business that uses Fideliza+ and wish to exercise your rights over the data that business has registered about you, you must contact the business directly (the data controller). Fideliza+ will act on their instructions.

8. Cookies and tracking technologies

Fideliza+ uses strictly necessary cookies for admin user authentication (Supabase session). We do not use third-party tracking, advertising or behavioral analytics cookies.

End customers accessing the portal via their access code do not require cookies to use the platform.

9. Children's privacy

Fideliza+ is intended exclusively for businesses and professionals. We do not intentionally collect data from children under 16. If you are aware that a minor has provided personal data without parental consent, contact us to have it removed.

10. International transfers

Data may be stored and processed on servers located outside your country of residence. When we transfer data from the European Economic Area, we do so under appropriate transfer mechanisms (standard contractual clauses, adequacy decisions or other mechanisms recognized by applicable law).

11. Changes to this policy

We may update this Privacy Policy periodically. We will notify you of any material changes by email or via a prominent notice on the platform at least 15 days before they take effect. Continued use of the service after the effective date constitutes your acceptance of the updated version.

12. Contact

For any questions, requests or complaints related to the privacy of your data, contact us at:

Fideliza+
Email: privacy@fideliza.app