Tideloc Orders

Privacy Policy

Last updated: 7 June 2026

Who we are

Tideloc Orders is operated by Tideloc Pty Limited (ABN 68 698 706 115, ACN 698 706 115), trading as Tideloc Orders (the “platform”, “we”, “us”), based in Wollongong, New South Wales, Australia. We provide white-label online ordering software to cafe operators (each a “cafe”).

This policy describes how we handle personal information for two groups: cafe operators who sign up for our service, and end customers who place orders through a cafe's Tideloc-powered ordering page.

Information we collect

From cafe operators: business name, contact email, contact phone, business address, ABN if provided, bank details (handled by Stripe — we do not store them), uploaded brand assets (logos, photos), and account preferences.

From staff users invited by a cafe operator:email address (used for magic-link sign-in and to identify the user in the admin's team list). Permissions granted to each staff user are stored against their account in our database. Staff users do not have a password — they sign in via single-use magic links we email on-demand.

From customers placing an order: name, email address, phone number (if provided), order contents, pickup time, payment confirmation metadata (we never see card numbers — Stripe handles them), and — if the customer ticks the optional checkbox at checkout — an explicit opt-in to receive marketing emails from that cafe, stamped with the timestamp and source order.

Automatically: standard server logs (IP address, user agent, request paths) for security and rate limiting. We do not run third-party analytics or advertising trackers.

How we use it

  • To process orders and route them to the correct cafe.
  • To send transactional emails (order confirmations, status updates, refunds).
  • To prepare end-of-day reconciliation reports for the cafe operator.
  • To prevent abuse (rate limiting, signup fraud detection).
  • To support cafes when they request help.
  • To administer a money-back performance guarantee, where a cafe has been offered one — we measure the total value of orders that cafe processes through Tideloc Orders (our own platform data) to check it against the guarantee threshold. This does not involve the cafe's point-of-sale, books, or other sales channels. (DRAFT — pending legal review.)

We do not sell personal information. We do not use customer information for marketing on our own behalf. Each cafe owns its customer relationship — we process customer data on the cafe's behalf. (Separately, we do use anonymous, aggregated statistics — see “De-identified and aggregated data” below.)

De-identified and aggregated data

Separately from the personal information described above, we create de-identified, aggregated statistics about activity across the platform — for example, the total value of orders processed through Tideloc-powered ordering pages, and the estimated fees a cafe would have paid had those same orders gone through a commission-charging delivery or ordering platform. These statistics are stripped of anything that identifies an individual customer or cafe.

Aggregated, de-identified statistics are not personal information under the Privacy Act 1988 (Cth). We may use them to operate and improve the platform, to publish industry benchmarks, and in our own marketing and advertising about Tideloc (including case studies and regional or category comparisons).

We only publish these statistics at a level of aggregation — whether platform-wide or grouped by region, segment, or time period — at which no individual customer or cafe can be identified. Where a grouping (such as a region) is too small to protect anonymity, we suppress it or combine it into a larger one. Any marketing that names or specifically identifies a cafe, or that discloses a single cafe's own figures, is done only with that cafe's separate prior consent, which the cafe may withhold or later withdraw.

Marketing communications

We do not send marketing emails to customers on our own behalf. When a customer ticks the marketing opt-in box at checkout, we store the consent against the customer record for the specific cafe they ordered from. That cafe is the data controller for those communications; we are the data processor — we host the list and provide an export tool but we do not author or send marketing on the cafe's behalf.

Unsubscribe.If you no longer want to receive marketing from a cafe, you can unsubscribe via any link in the cafe's emails, or contact us at admin@tideloc.com.au and we will mark you unsubscribed for that cafe within 5 business days. Each cafe is handled separately — unsubscribing from one cafe does not affect other cafes you may have ordered from on the platform.

Consent records.When you opt in we keep the timestamp and the source order so the cafe can demonstrate the basis on which you were contacted, if asked. These records are retained for as long as the cafe operates on the platform plus the tax-record retention period (see “Data retention” below).

Third parties we share with

  • Stripe (Australia) Pty Ltd — payment processing. Card data never touches our servers.
  • Supabase — managed Postgres database hosting. Data is stored in the Sydney (ap-southeast-2) region.
  • Resend — transactional email delivery (order confirmations, receipts, daily reconciliation).
  • Vercel — application hosting and edge networking.

Each provider has its own privacy commitments. We choose providers that we believe meet Australian Privacy Principles (APP) standards and limit data sharing to what is required to deliver the service. Some of these providers are located overseas (an APP 8 disclosure); our database provider, Supabase, stores personal information onshore in Sydney, Australia. See our full subprocessor list for each provider's purpose, the data it handles, and where it is hosted.

Data retention

Order records are retained for at least seven years to satisfy Australian tax and accounting record-keeping requirements. Customer email and phone are retained while the cafe operator chooses to keep them. Support correspondence is retained for two years. Server logs are retained for 30 days.

Your rights

Under the Australian Privacy Principles you can request access to or correction of personal information we hold about you. Email admin@tideloc.com.au and we will respond within 30 days. If you place an order at a cafe, you can also ask the cafe directly — they control their customer data.

You can unsubscribe from a cafe's marketing emails at any time (see “Marketing communications” above). You can request deletion of your personal information by emailing us; we will action the request unless we are required to retain certain records for tax / accounting purposes.

Security

All traffic is encrypted in transit (TLS). Sensitive credentials (Stripe keys, printer tokens) are stored with restricted access. Database access is authenticated and row-level security separates each cafe's data.

Complaints

If you believe we have mishandled your information, contact us first at the email above. If you are not satisfied with our response, you can lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

Changes

We may update this policy as the service evolves. Material changes will be communicated by email to active cafe operators.

Questions? admin@tideloc.com.au. See also our Terms of Service.