Privacy Policy

Last updated: March 2026

1. Introduction

Cateros ("we," "us," or "our") operates the Cateros platform, an event operations platform for catering businesses and event professionals. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our website and services (collectively, the "Service").

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Account Information

When you register for an account, we collect your name, email address, and password. You may also provide optional business information such as your company name, phone number, and branding details.

2.2 Event & Business Data

We collect information you enter into the platform, including event details, guest counts, recipes, proposals, schedules, and other operational data related to your catering business.

2.3 Payment Information

Payment processing is handled by Stripe. We do not store your full credit card number or payment credentials on our servers. Stripe may collect and store payment information in accordance with their own privacy policy.

2.4 Usage & Technical Data

We automatically collect certain technical information when you use the Service, including your IP address, browser type, operating system, device information, pages visited, and referring URLs. This data helps us improve the Service and diagnose technical issues.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service.
  • Process transactions and manage your subscription.
  • Send you account-related communications, including billing and support emails.
  • Improve the Service, including developing new features and fixing bugs.
  • Monitor usage patterns and analyze trends to enhance user experience.
  • Enforce our Terms of Service and protect against fraud or abuse.
  • Comply with legal obligations.

We do not sell your personal information to third parties. We do not use your event or business data for advertising purposes.

4. Third-Party Services

We use the following third-party services to operate the platform. Each service has its own privacy policy governing how it handles your data:

  • Supabase — Database hosting, authentication, and backend services.
  • Stripe — Payment processing and subscription billing.
  • Vercel — Application hosting and deployment.
  • Resend — Transactional email delivery.

We only share the minimum amount of data necessary for these services to function. We do not share your data with third parties for their own marketing purposes.

5. Cookies & Tracking

We use cookies and similar technologies to maintain your session, remember your preferences, and understand how you use the Service. These include:

  • Essential cookies — Required for authentication and core functionality.
  • Analytics cookies — Help us understand usage patterns and improve the Service.

You can configure your browser to refuse cookies, but some features of the Service may not function properly without them.

6. Data Retention

We retain your account information and business data for as long as your account is active or as needed to provide the Service. If you delete your account, we will remove your personal information and business data within 30 days, unless we are required by law to retain it for a longer period.

Aggregated, anonymized data that cannot be used to identify you may be retained indefinitely for analytical purposes.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access — Request a copy of the personal data we hold about you.
  • Correction — Request correction of inaccurate or incomplete data.
  • Deletion — Request deletion of your personal data, subject to legal obligations.
  • Portability — Request your data in a structured, machine-readable format.
  • Objection — Object to certain processing of your personal data.

To exercise any of these rights, please contact us at support@cateros.com. We will respond to your request within 30 days.

8. Security

We take reasonable technical and organizational measures to protect your data, including encryption in transit (TLS/SSL), encryption at rest, secure authentication via Supabase Auth, and regular security reviews. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

9. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us so we can promptly delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by posting a notice on the Service at least 30 days before the changes take effect. Your continued use of the Service after the effective date constitutes your acceptance of the updated policy.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at support@cateros.com.