Rescom Technologies Ltd ("Rescom") is committed to protecting the privacy of the users of this website ("Website") and the Rescom platform ("Platform"), together referred to as the "Services." This Privacy Policy has been written to allow you to understand Rescom's approach to your privacy, and how your personal information will be handled when using the Services.
Any information and data which you provide to Rescom through the Website or Platform, or which is otherwise gathered by Rescom in the context of the use of the Services, will be processed in a lawful, fair, and transparent manner. Rescom takes into consideration internationally recognised principles governing the processing of personal data, including purpose limitation, storage limitation, data minimisation, data quality, and confidentiality.
Effective Date: July 26, 2025
DATA CONTROLLER
Rescom Technologies Ltd, a company registered in the Dubai International Financial Centre (DIFC), Dubai, United Arab Emirates, is the data controller regarding all personal data processing carried out through the Website or the Platform.
For any privacy-related questions or requests, contact us at info@rescom.com.
PERSONAL DATA PROCESSED
When you use the Services, Rescom will collect and process information regarding you as an individual which allows you to be identified either by itself or together with other information collected.
Information you provide directly:
Name, email address, phone number, and company details when you register, book a demo, or contact us.
Payment information — processed securely through Stripe. Rescom never stores card details on our servers. Card data never touches our systems.
Restaurant and business information you input into the Platform as part of using the Services.
Communications you send us including support requests, feedback, and enquiries.
Information collected automatically:
Usage data — how you interact with the Platform, which features you use, and when.
Device and browser information including device model, operating system version, screen resolution, network connection type, and language.
IP address and general location data.
Log data including pages visited, time of requests, and error reports.
Cookies and similar tracking technologies — see our Cookie Policy for full details.
Location data:
When using GPS-based attendance verification, you may be asked to consent to location access. You may revoke this at any time through your device settings.
PURPOSES OF PROCESSING
Service Provision — to provide, operate, and improve the Rescom Platform; to respond to your requests for information; to manage our relationship with you; to manage billing and payments; and to deal with disputes related to the Services.
Support — to respond to support requests, troubleshoot issues, and provide assistance.
Marketing — for marketing and promotional purposes where you have provided consent. Consent may be withdrawn at any time.
Compliance — to comply with applicable laws and legal obligations.
Analytics — to analyse how users interact with the Website and Platform.
Security and Fraud Prevention — to prevent and detect misuse and fraudulent activity.
GROUNDS FOR PROCESSING
Service Provision — necessary for the performance of a contract with you.
Support — based on legitimate interests in providing a reliable service.
Marketing — based on your consent, which may be withdrawn at any time.
Compliance — necessary to comply with legal obligations.
Analytics — based on your consent through cookie preferences.
Security and Fraud Prevention — based on legitimate interests in protecting the Services.
RECIPIENTS OF PERSONAL DATA
Your personal data may be shared with service providers engaged to support the Services, including Stripe for payment processing and cloud infrastructure providers. These providers are contractually bound to protect your data and may only use it for the specific services they provide to Rescom. Rescom does not sell your data. Rescom does not share your data with third parties for marketing purposes.
CROSS-BORDER TRANSFERS
Your personal data may be transferred to recipients in different countries. Rescom implements appropriate safeguards for all such transfers. Data residency options are available for customers who require data to remain within a specific region — EU, US, Middle East, or Asia Pacific. Contact info@rescom.com for details.
RETENTION
Active accounts — data retained for the duration of the account.
Closed accounts — personal data deleted within 90 days of cancellation.
Marketing — retained until consent is withdrawn.
Compliance — retained as required by applicable law.
Security and Fraud Prevention — retained for as long as strictly necessary.
DATA SECURITY
Rescom is SOC 2 Type II compliant — verified by annual third-party audits.
Rescom is PCI DSS compliant — card data never touches our servers.
Rescom is GDPR compliant.
End-to-end encryption — TLS 1.3 in transit, AES-256 at rest.
Role-based access control — granular permissions for every user.
Multi-tenant data isolation — your data is logically isolated.
Automated backups with point-in-time recovery.
DDoS protection.
YOUR RIGHTS
Access — to be informed of and access your personal data.
Rectification — to correct inaccurate or incomplete data.
Erasure — to request deletion of your personal data.
Restriction — to request restriction of processing.
Portability — to obtain your data in a portable format.
Objection — to object to processing based on legitimate interests.
Withdraw consent — for marketing or analytics at any time.
To exercise any right, contact info@rescom.com. We respond within 30 days.
CHILDREN
The Services are not directed at children under 18. Contact info@rescom.com if you believe a child has provided data.
AMENDMENTS
We will notify you of significant changes by email and through the platform at least 30 days before they take effect.