Finitless Logo

Privacy Policy

Last updated: February 17, 2026

This Privacy Policy explains how Finitless, Inc. ("Finitless," "we," "us," or "our") collects, uses, stores, shares, and protects personal information when you use our website, applications, AI-powered services, messaging tools, and related products (collectively, the "Services").

By using the Services, you agree to the collection and use of information in accordance with this Privacy Policy. This Privacy Policy is part of our

Terms of Service: https://www.finitless.com/en/terms-of-service

1. Information We Collect

We collect information you provide directly, information collected automatically, and information from third parties:

Information You Provide

  • Account information (name, email address, phone number)
  • Business information (restaurant name, location, website)
  • Communications you send to us or through our platform
  • Payment and billing information
  • Any other information you choose to provide

Information Collected Automatically

  • Device information (device type, operating system, browser type)
  • Usage data (pages visited, features used, interaction patterns)
  • Log data (IP address, access times, referring URLs)
  • Location information (country, region based on IP address)
  • Cookies and similar tracking technologies

Information from Third Parties

  • Information from business partners and service providers
  • Publicly available business information
  • Information from analytics providers

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Services
  • Process transactions and manage your account
  • Enable AI-powered features and automations for your business
  • Send you service-related communications and support
  • Send marketing communications (with your consent)
  • Analyze usage patterns and improve user experience
  • Detect, prevent, and address fraud, abuse, and security issues
  • Comply with legal obligations

3. Messaging Services & Consent

Our Services include messaging capabilities through various channels, including WhatsApp Business. By using our messaging features:

Consent Requirements

  • We only send messages to users who have provided their phone number and opted in to receive communications
  • You may opt out of receiving messages at any time by replying "STOP" or contacting us directly
  • We honor all opt-out requests promptly and remove you from our messaging lists

Data Usage for Messaging

  • Information obtained through messaging is used only to support communications with you
  • We do not share message content between different customers
  • We do not request or collect full payment card numbers, financial account numbers, or government ID numbers through messaging channels

WhatsApp Business

When you communicate with us via WhatsApp, your messages are subject to

WhatsApp's Privacy Policy

. Message content is end-to-end encrypted and not shared with Meta for advertising purposes.

SMS/Text Messaging (OTP Verification)

Program: Finitless OTP Verification

We use SMS text messaging to send one-time passwords (OTP) for secure login and account verification. When you opt in to receive SMS messages:

  • We collect your phone number solely for authentication and security purposes
  • SMS messages are used exclusively for sending one-time passcodes and security notifications
  • We do not share your phone number or SMS data with third parties for marketing purposes
  • Your phone number is stored securely and retained only as long as your account is active
  • Message frequency varies based on your login activity (typically 1-5 messages per month)
  • Message and data rates may apply depending on your mobile carrier and plan

Opt-Out Instructions

You can opt out of SMS messages at any time by replying

STOP

to any message. You will receive a confirmation message and no further SMS messages will be sent. Note that opting out may affect your ability to use certain security features.

Help

For help with SMS messaging, reply

HELP

to any message or contact us at support@finitless.com.

Carrier Disclaimer

Carriers are not liable for delayed or undelivered messages. SMS delivery is subject to effective transmission from your network operator.

SMS Order Assistance Program

Program: Finitless Order Assistance SMS

Finitless provides messaging infrastructure for participating restaurant brands to help customers place orders. When you interact with our IVR (Interactive Voice Response) system and consent to receive SMS messages:

  • SMS is sent only after you provide explicit consent through the IVR system (by pressing the designated key)
  • We collect your phone number solely for delivering a transactional message with an ordering link
  • Your phone number is not sold or shared with third parties for marketing purposes
  • Message frequency varies based on your interaction (typically one message per request)
  • Message and data rates may apply depending on your mobile carrier and plan
  • Mobile information will not be shared with third parties/affiliates for marketing/promotional purposes

Opt-Out Instructions

You can opt out of SMS messages at any time by replying

STOP

to any message. You will receive a confirmation and no further messages will be sent.

Help

For assistance with SMS messaging, reply

HELP

to any message or contact us at support@finitless.com.

Finitless provides messaging infrastructure on behalf of participating restaurant brands. Each restaurant remains responsible for their customer relationships.

4. AI & Automated Processing

Our Services use artificial intelligence and automated processing to provide features such as:

  • Automated order processing and customer service
  • Message analysis and response suggestions
  • Business analytics and insights
  • Workflow optimization and automation

We do not use personal data to make solely automated decisions that produce legal or similarly significant effects without human oversight. You may request human review of any automated decision by contacting us.

5. Payment Processing

We use Stripe, Inc. ("Stripe") for payment processing, analytics, and other business services. When you make a payment through our Services:

  • Stripe collects and processes your payment information directly
  • Stripe may collect personal data including via cookies and similar technologies
  • Payment information is transmitted securely and we do not store full credit card numbers on our servers
  • Stripe uses collected information to operate its services, detect fraud, and improve their products

For more information about how Stripe handles your data, please review

Stripe's Privacy Policy

6. Data Sharing & Third Parties

We do not sell your personal data.

We may share information with:

Service Providers

Trusted third-party companies that help us operate the Services, including:

  • Cloud hosting and infrastructure providers
  • Payment processors (Stripe)
  • Analytics and performance monitoring services
  • Communication platforms (WhatsApp Business, email providers)
  • Customer support tools

All service providers are contractually required to protect your data and use it only for authorized purposes.

Legal Requirements

We may disclose information if required by law, legal process, or government request, or to protect our rights, property, or safety.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

7. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Keep you logged in and remember your preferences
  • Analyze how the Services are used
  • Personalize your experience
  • Deliver relevant marketing (with consent where required)

You can control or disable cookies through your browser settings. Note that disabling cookies may affect the functionality of the Services.

Our service providers, including Stripe and analytics platforms, may also use cookies and similar technologies when you interact with the Services.

8. Data Retention

We retain personal data only for as long as necessary to:

  • Fulfill the purposes described in this Privacy Policy
  • Comply with legal, regulatory, and tax obligations
  • Resolve disputes and enforce agreements
  • Support legitimate business operations

When data is no longer needed, we securely delete or anonymize it.

9. Data Security

We implement commercially reasonable administrative, technical, and physical safeguards designed to protect personal data against unauthorized access, loss, alteration, and misuse. These measures include:

  • Encryption of data in transit and at rest
  • Access controls and authentication measures
  • Regular security assessments and monitoring
  • Employee training on data protection

However, no system can be guaranteed to be 100% secure. If you believe your data has been compromised, please contact us immediately.

10. International Data Transfers

Your data may be transferred to, processed, and stored in countries other than your own, including the United States. These countries may have data protection laws that differ from your jurisdiction.

When we transfer data internationally, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by relevant authorities, or other legally recognized transfer mechanisms.

11. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Rights

Access

Access:

Request a copy of the personal data we hold about you

Correction

Correction:

Request correction of inaccurate or incomplete data

Deletion

Deletion:

Request deletion of your personal data

Restriction

Restriction:

Request restriction of processing in certain circumstances

Portability

Portability:

Request transfer of your data to another service

Objection

Objection:

Object to processing based on legitimate interests

Withdraw Consent

Withdraw Consent:

Withdraw consent where processing is based on consent

Opt Out Marketing

Opt-Out of Marketing:

Unsubscribe from marketing communications at any time

To exercise these rights, please contact us at

. We will respond to your request within the timeframes required by applicable law.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we collect, use, and disclose
  • Right to request deletion of your personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your privacy rights

To exercise these rights, contact us at

13. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR) and similar laws:

  • We process your data based on lawful bases including consent, contract performance, legitimate interests, and legal obligations
  • You have the right to lodge a complaint with your local data protection authority
  • You may request information about the safeguards we use for international data transfers

14. Children's Privacy

The Services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we learn that we have collected personal information from a child under 16, we will take steps to delete that information promptly.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by posting the updated policy on our website with a new "Last updated" date. Your continued use of the Services after any changes indicates your acceptance of the updated Privacy Policy.

16. Contact Us

If you have questions about this Privacy Policy or how your data is handled, please contact us:

Finitless, Inc.

Email:

Back to Home