Get a free demo
Grow online discovery
Restaurant Website Modern websites that attract more diners. Restaurant SEO Rank higher and get discovered by local customers. Online Menu Beautiful digital menus that convert. Reviews Engine Get more reviews and build customer trust. Listings Management Stay consistent across all major directories.
Grow repeat orders
Branded Restaurant App Build loyalty with your own mobile app. Marketing Campaigns Run targeted campaigns that drive results. Email & SMS Marketing Stay top of mind and bring customers back. Push Notifications Marketing Re-engage customers with timely notifications. Loyalty & Rewards Reward customers and keep them coming back.
Grow online sales
Online Ordering Let customers order directly from you. Smart Upsells Increase order value with smart recommendations. Delivery Streamline delivery and reach more customers. Catering Manage catering inquiries and orders. Voice AI Ordering Never miss a phone order during rush.
Run your restaurant
Tilvo Owner App Manage your restaurant on the go. Reporting & Analytics Track performance and make data-driven decisions. Kitchen Tablet Streamline kitchen operations and reduce errors. POS Integrations Seamlessly connect with your favorite POS.

Privacy

Privacy Policy

Effective date: May 28, 2026

This Privacy Policy explains how Tilvo collects, uses, shares, retains, and protects personal data across our websites, software, communications tools, integrations, and restaurant-powered ordering experiences.

1. Scope

This Privacy Policy applies to Tilvo, Bestorant AI, and our affiliated products and services ("Tilvo", "we", "us", or "our"). It covers our public websites, dashboards, APIs, restaurant websites and mobile apps powered by Tilvo, online ordering, loyalty, reservations, catering, gift cards, Voice AI, SMS, email, push messaging, POS integrations, analytics, and support workflows (collectively, the "Services").

2. Our Role

Tilvo provides technology to restaurants and other merchants ("Merchants"). For Merchant customer data, Tilvo often acts as a service provider or processor on behalf of the Merchant. Merchants remain responsible for their own customer-facing notices, food operations, marketing consent, and legal compliance. For Tilvo account, website, demo, sales, billing, and support data, Tilvo may act as a business or controller.

3. Personal Data We Collect

  • Identifiers and contact details, including name, email, phone number, business name, address, login credentials, IP address, and device identifiers.
  • Merchant account and business data, including restaurant locations, team users, onboarding details, billing details, plan information, tax or compliance information, and support history.
  • Guest transaction data, including orders, reservations, catering requests, gift cards, loyalty activity, refunds, delivery details, special instructions, and customer support messages.
  • Payment-related records, including payment status, processor tokens, invoices, receipts, chargeback details, and billing metadata. Full card numbers are handled by payment processors.
  • Communications data, including emails, SMS messages, push notifications, phone numbers, call metadata, recordings, transcripts, voicemails, and support interactions where enabled or provided.
  • Device, internet, and usage data, including browser type, operating system, request logs, pages viewed, clicks, referring URLs, approximate location, cookies, and analytics events.
  • Integration data from authorized providers, including POS menus, catalog items, modifiers, taxes, order events, store settings, payment configuration, webhooks, and sync logs.
  • Inferences and preferences, such as favorite items, ordering patterns, campaign segments, product usage patterns, and likely interests.

4. Sources

We collect data directly from you, from Merchants and their team members, from restaurant guests, from devices and browsers, from POS and payment providers authorized by Merchants, from communications providers such as telecom and messaging vendors, including Telnyx where enabled, from analytics and advertising providers, from public sources, and from business partners that refer or support customers.

5. How We Use Personal Data

  • Provide, operate, secure, troubleshoot, and improve the Services.
  • Process orders, reservations, catering, delivery, payments, refunds, loyalty, gift cards, and customer accounts.
  • Build, host, maintain, and personalize Merchant websites, apps, menus, campaigns, and analytics.
  • Provision and operate voice, SIP trunking, SMS, push, email, and other communications features.
  • Connect to Clover, Square, and other POS or third-party integrations authorized by Merchants.
  • Send transactional notices, service updates, product messages, support responses, and marketing where permitted.
  • Detect fraud, abuse, outages, errors, duplicate events, security incidents, and unauthorized access.
  • Comply with law, enforce contracts, resolve disputes, and protect rights, safety, and property.

6. Cookies, Tracking, and Advertising

We use cookies, pixels, SDKs, local storage, and similar technologies for essential functionality, cart/session management, security, analytics, performance, personalization, attribution, and advertising. Some disclosures to analytics or advertising partners may be considered "sale", "sharing", or targeted advertising under certain U.S. state laws. Where required, we provide opt-out controls or honor applicable browser-based opt-out signals.

7. Voice, SMS, and Telephony Data

Tilvo may use communications providers, including Telnyx, to provision phone numbers, route calls, operate SIP trunking, send or receive SMS/MMS, and support Voice AI workflows. Tilvo may process phone numbers, call routing configuration, SIP signaling, call detail records, recordings, transcripts, voicemail content, SMS content, delivery metadata, opt-in and opt-out records, HELP/STOP events, carrier registration data, and execution logs for voice agents and messaging workflows. This data is used for service delivery, consent compliance, quality assurance, troubleshooting, fraud prevention, reporting, and product improvement.

SMS opt-in data and consent are not sold or shared with third parties for their own marketing purposes.

8. How We Disclose Personal Data

  • To Merchants and their authorized users for restaurant operations and guest support.
  • To service providers and subprocessors for hosting, payments, telecom, messaging, analytics, support, security, delivery, POS integration, authentication, and infrastructure.
  • To POS platforms, payment processors, delivery partners, loyalty providers, and other third parties when a Merchant or guest requests or authorizes the integration.
  • To advertising and analytics partners for measurement, attribution, and targeted advertising where permitted.
  • To professional advisors, regulators, law enforcement, courts, or others when required or permitted by law.
  • To successors or prospective successors in a merger, acquisition, financing, reorganization, bankruptcy, or asset transfer.

9. Data Retention

We retain personal data for as long as needed for the purposes described in this policy, including account administration, service delivery, Merchant instructions, tax and accounting, security, fraud prevention, compliance, legal claims, dispute resolution, backups, and audit records. Retention periods vary by data type, Merchant configuration, product settings, and legal obligations.

10. Privacy Rights

Depending on your location, you may have rights to access, correct, delete, or receive a portable copy of personal data; opt out of targeted advertising, sale, or sharing; limit certain sensitive data uses; withdraw consent; object to or restrict processing; and appeal a denied request. Submit requests to privacy@tilvo.ai. If your data is controlled by a Merchant, we may direct your request to that Merchant or process it on the Merchant's instructions.

11. Security, Children, and International Transfers

We use reasonable technical, administrative, and organizational safeguards designed to protect personal data. The Services are not directed to children under 13. Tilvo is based in the United States, and data may be processed in the United States or other jurisdictions used by our providers.

12. Changes and Contact

We may update this Privacy Policy by posting a revised version with a new effective date. For questions or privacy requests, contact privacy@tilvo.ai or legal@tilvo.ai.