centic

Privacy Policy

Effective date: April 6, 2026

1. Introduction

Centic ("we," "us," or "our") operates the Centic platform, which connects restaurant data systems into a unified data lake and provides AI-powered analytics. This Privacy Policy explains how we collect, use, disclose, and protect information when you use our website and services (collectively, the "Service").

2. Information We Collect

Account information

When you create an account or request a demo, we collect your name, email address, company name, and the number of locations you operate.

Restaurant & operational data

Once connected, we ingest data from your point-of-sale, labour scheduling, loyalty, KDS, and other integrated systems. This may include transaction records, employee scheduling data, menu data, and related operational metrics.

Guest & customer data

Through your connected systems (e.g., loyalty programs, reservations, POS), we may process information about your restaurant guests, such as names, email addresses, phone numbers, visit history, order history, and loyalty program activity. This data is ingested solely because it resides in systems you connect to the Service. You are responsible for ensuring you have the appropriate rights and consents to share guest data with Centic through your connected systems.

Usage & device data

We automatically collect information about how you interact with the Service, including IP address, browser type, pages visited, and queries submitted.

Cookies

We use essential cookies to maintain sessions and authentication. We do not use third-party advertising cookies.

3. How We Use Your Information

  • Provide, operate, and improve the Service.
  • Process and respond to your queries and support requests.
  • Authenticate users and maintain account security.
  • Send transactional communications (e.g., account verification, service updates).
  • Generate aggregated and anonymized data sets. We may aggregate and de-identify data collected across client accounts to create benchmarks, analytics, trend reports, and other data products. These aggregated data sets do not identify any individual or individual business and may be used by Centic for its own business purposes, including product improvement, research, and commercial offerings.
  • Comply with legal obligations and enforce our terms.

4. Aggregated & De-Identified Data

We may create aggregated, anonymized, or de-identified data derived from the information we collect ("Aggregated Data"). Aggregated Data is not considered personal information or client-identifiable data. We own all Aggregated Data and may use and disclose it for any lawful business purpose, including analytics, benchmarking, product development, marketing, and commercial data products, without restriction or obligation to you.

5. How We Share Your Information

We do not sell your personal information. We may share information with:

  • Service providers — third-party vendors that help us operate the Service (hosting, analytics, email delivery), bound by confidentiality obligations.
  • AI model providers — when you submit natural-language queries, the query and relevant data context may be sent to third-party AI providers to generate responses. We do not permit these providers to use your data for training purposes.
  • Legal & safety — when required by law, or to protect the rights, property, or safety of Centic, our users, or others.
  • Business transfers — in connection with a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

6. Data Retention

We retain your account information and connected data for as long as your account is active or as needed to provide the Service. Upon account termination, we will delete or de-identify your data within 90 days, except where retention is required by law. Aggregated Data may be retained indefinitely.

7. Data Security

We implement industry-standard technical and organizational measures to protect your data, including encryption in transit and at rest, access controls, and regular security reviews. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

8. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal information, or to object to or restrict certain processing. To exercise these rights, contact us at privacy@centic.ai.

9. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised effective date.

11. Contact Us

If you have questions about this Privacy Policy, contact us at privacy@centic.ai.