Effective date: April 17, 2026
Budy ("we", "our", or "us") operates the Budy POS mobile application, the Budy Admin web dashboard, and the Budy web shop platform (collectively, the "Services"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services.
When you create an account, we collect your name, email address, and authentication credentials. If you sign in via Google, we receive your Google profile information (name, email, profile photo) as authorized by you.
When using Budy POS, you may enter business-related data including products, categories, pricing, inventory, customer (member) information, and order history. This data is stored locally on your device and synchronized to our cloud servers.
We collect device identifiers, operating system version, app version, and device type for diagnostics, push notification delivery, and service improvement.
The POS app connects to Bluetooth peripherals such as scales (Acaia), label printers (Niimbot), and barcode scanners (SUNMI) for point-of-sale operations. All Bluetooth data is processed locally on your device and is not transmitted to our servers.
The app uses your device camera for barcode scanning and product photography. Product images may be uploaded to our servers for AI-powered product information extraction. Barcode scans are processed locally.
We may collect approximate location data when you use delivery or store-related features. Location data is only collected during active use of these features and is not tracked in the background.
We collect anonymous usage analytics including screen views, feature usage patterns, and performance metrics to improve our services. This analytics data is not linked to your identity and is not used to track you across other apps or websites owned by other companies.
Budy does not track you across apps or websites owned by other companies. We do not use the iOS Advertising Identifier (IDFA) and do not share any data with third parties for advertising or cross-app tracking purposes. As a result, the App Tracking Transparency prompt is not shown in the Budy POS app.
Budy uses an offline-first architecture. Your business data is stored locally on your device using ObjectBox and synchronized to our cloud servers (MongoDB hosted on AWS) when connectivity is available. This ensures your POS system works without interruption even when offline.
Data is strictly isolated per tenant — your business data is never accessible to other businesses or users outside your organization.
We use the following third-party services to operate our platform:
Each third-party service has its own privacy policy governing data handling.
We do not sell, rent, or trade your personal information. We may share data only in the following circumstances:
We retain your data for as long as your account is active or as needed to provide our services. Local data on your device remains under your control and can be deleted by uninstalling the application.
You can initiate account deletion at any time through either of the following methods:
Once requested, we will permanently delete your personal data and business data from our servers within 30 days, except where retention is required by law (e.g., tax records, anti-fraud obligations). You will receive email confirmation when deletion is complete.
For multi-user business accounts, only account owners or designated administrators can delete the business tenant. Individual staff members can remove their personal profile without affecting the business data.
We implement industry-standard security measures to protect your information:
While we strive to protect your data, no method of electronic transmission or storage is 100% secure.
Depending on your jurisdiction, you may have the right to:
To exercise any of these rights, contact us at privacy@budy.app.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
Budy does not sell personal information and does not share personal information for cross-context behavioral advertising. To exercise any California privacy right, email privacy@budy.app with the subject line "California Privacy Request". We will verify your identity before processing the request and respond within 45 days.
If you are located in the European Economic Area, United Kingdom, or Switzerland, our lawful bases for processing your personal data are: (a) performance of a contract with you, (b) your consent, (c) compliance with legal obligations, and (d) our legitimate interests in providing and improving our services. You have the right to lodge a complaint with your local data protection authority.
Our services are intended for users aged 18 and older. We do not knowingly collect personal information from children under 18. If we become aware that we have collected data from a child under 18, we will take steps to delete that information.
Your data may be transferred to and processed in countries other than your country of residence, including the European Union and the United States. We ensure appropriate safeguards are in place for such transfers.
We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Effective date" above and, where appropriate, through in-app notifications. Continued use of our services after changes constitutes acceptance of the updated policy.
If you downloaded Budy POS from the Apple App Store, the following additional terms apply:
In the unlikely event of a data breach that may affect your personal information, we will notify affected users without undue delay and in accordance with applicable laws (including within 72 hours where required by GDPR).
If you have questions or concerns about this Privacy Policy or our data practices, contact us at: