Your data, handled with care.

Puffer ("we", "us", or "our") provides a point-of-sale, inventory, and business analytics platform for cafes and commercial workspaces. This Privacy Policy describes how we collect, process, store, and protect the information you and your organization provide when using our services.

By using Puffer, you agree to the collection and use of information as described in this policy. If you do not agree, please discontinue use of the service.

We collect the following categories of information:

Your data is used for the following purposes:

• ✓Providing, operating, and maintaining the Puffer platform
• ✓Processing payments and managing your subscription
• ✓Sending transactional communications (receipts, alerts, system updates)
• ✓Detecting and preventing fraud, abuse, and security incidents
• ✓Improving platform stability and fixing bugs
• ✓Generating your own analytics dashboards and reports
• ✓Complying with applicable laws and regulations

We do not use your business data for targeted advertising. We do not sell your data to third parties.

We intend to introduce optional benchmark features that help business owners understand how their performance compares to industry trends - for example, average order value across similar businesses, typical peak hours for a café, or common product pricing patterns.

To power these features, Puffer may use anonymized, aggregated versions of your business data (orders, sales, pricing, product categories). Here is exactly what that means:

Your organization's data is only ever a small, indistinguishable contribution to a much larger statistical pool. No other business can identify your data within any benchmark result.

Participation in the Aggregated Insights Program is optional. You may opt out at any time from your organization's Settings panel, under Settings → Data & Privacy.

When you opt out:

• →Your data is excluded from all future aggregation runs immediately
• →Historical contributions are removed from aggregate pools on the next scheduled refresh
• →You lose access to industry benchmark features (future) that require aggregated data
• →No other features are affected

We do not sell, rent, or trade your data. We share data only in the following limited circumstances:

We implement industry-standard security measures to protect your data:

• ✓All data is encrypted in transit using TLS 1.2+
• ✓Passwords are hashed - never stored in plain text
• ✓Firestore Security Rules enforce strict per-organization data isolation
• ✓JWT tokens with short expiry windows for session management
• ✓Firebase Authentication for identity management
• ✓Role-based access control (RBAC) limits staff access to appropriate data
• ✓Multi-tenant architecture ensures your data cannot be accessed by other organizations

No method of electronic storage or internet transmission is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. In the event of a data breach that affects your rights, we will notify you within 72 hours of becoming aware.

Depending on your jurisdiction, you may have the following rights regarding your personal data:

To exercise any of these rights, contact us at privacy@puffer.app. We will respond within 30 days.

We retain your data for as long as your account is active. When you cancel your subscription or delete your organization, we will delete your business data within 90 days, except where retention is required by law (e.g., financial records may be retained for up to 7 years).

Aggregated, anonymized data derived from your account (if you have not opted out) may be retained indefinitely as it contains no personally identifiable information.

If you have questions about this Privacy Policy or how we handle your data: