Privacy Policy

1. Who we are

Bluepaper Limited ("we", "us", "our") is a company registered in Northern Ireland under company number NI739076, trading as Paper Docket. We operate the hospitality operations software suite available at paperdocket.app.

We are the data controller for personal data collected through Paper Docket. We are in the process of registering with the Information Commissioner's Office (ICO) and will complete registration upon commencement of our first paid subscription.

Contact us about privacy: privacy@paperdocket.app

2. What data we collect and why

2.1 Account data

When you create an account we collect:

• Email address — to authenticate you and communicate with you about your account
• Name — to personalise the interface and identify you within your venue
• Password (hashed, never stored in plain text) — to secure your account

2.2 Venue and operational data

Paper Docket is designed to store your business's operational records. This includes:

• Ingredient names, quantities, costs, and allergen information
• Recipe names, methods, and associated costs
• Stock counts, variance records, and sales data
• Supplier names and associated records
• HACCP records including temperature logs, cleaning schedules, and daily diary entries
• Staff names and rota information (Secretary module)

This data belongs to you. We process it solely to provide the service.

2.3 Usage and activity data

We record actions taken within the platform (for example, stock counts completed, recipes added) in an activity log. This is used to display your recent activity within the interface and to support troubleshooting. We do not sell or share this data.

2.4 Aoife™ — AI reasoning

Paper Docket includes Aoife™, an AI reasoning engine. When you interact with Aoife™, the content of your query and relevant operational data from your venue is sent to Anthropic (the provider of the underlying AI model) for processing. Anthropic processes this data under their own privacy policy and data processing agreement. We do not store raw Aoife™ conversation content beyond the session unless you are on a plan that includes conversation history.

Aoife™ does not make decisions. She surfaces context to help you make your own.

2.5 Point of sale integration

If you connect a point of sale system (currently Square), we receive sales data from that provider via OAuth. We store this data within your venue's account to enable stock deduction and variance reporting. We do not receive payment card data.

2.6 Error and performance monitoring

We use Sentry to capture application errors and Better Stack to monitor service uptime. These tools may collect technical data including browser type, device type, and error stack traces. They do not collect personal data beyond what is incidentally included in error reports.

3. Legal basis for processing

We process your personal data under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 on the following bases:

• Contract — processing account data and operational data is necessary to provide the service you have subscribed to
• Legitimate interests — activity logging and error monitoring are necessary to maintain a secure, reliable service
• Legal obligation — we may process data where required by law

4. Who we share data with

We do not sell your data. We do not share your data with third parties for marketing purposes.

We share data only with the following subprocessors, who process data on our behalf under contractual data processing agreements:

• Supabase (EU-hosted) — database and authentication infrastructure
• Vercel — application hosting and deployment
• Stripe — payment processing (billing data only)
• Anthropic — AI model processing (Aoife™ queries only)
• Sentry — error monitoring
• Better Stack — uptime monitoring
• Square — point of sale integration (only if you connect a Square account)

All subprocessors are bound by contractual obligations to process data only as instructed and to maintain appropriate security measures.

5. International transfers

Your primary operational data is stored on Supabase infrastructure hosted within the European Union. Some subprocessors (including Anthropic, Vercel, Sentry, and Better Stack) operate infrastructure in the United States. Where data is transferred outside the UK or EEA, we ensure appropriate safeguards are in place, including standard contractual clauses approved by the ICO or equivalent.

6. How long we keep your data

We retain your account and operational data for five years from the date of your last active subscription or, if you have never subscribed, five years from the date of account creation.

If you request deletion of your account, we will permanently delete your account and all associated data within 30 days of receiving your request. See section 8 for how to make a deletion request.

Error logs and monitoring data are retained for a shorter period as determined by our monitoring providers, typically 30 to 90 days.

7. Security

We take security seriously. Our measures include:

• All data transmitted between your browser and our servers is encrypted using TLS
• Database access is restricted by row-level security policies scoped to authenticated users and their venues
• Authentication tokens are short-lived and scoped
• We do not use service-role database access for user-facing operations
• Our security posture is reviewed periodically

No method of transmission or storage is completely secure. We will notify you without undue delay if we become aware of a breach affecting your personal data, as required under UK GDPR.

8. Your rights

Under UK GDPR you have the following rights:

• Right of access — you can request a copy of the personal data we hold about you
• Right to rectification — you can ask us to correct inaccurate data
• Right to erasure — you can request permanent deletion of your account and data
• Right to restriction — you can ask us to restrict processing in certain circumstances
• Right to data portability — you can request your data in a commonly used machine-readable format
• Right to object — you can object to processing based on legitimate interests

To exercise any of these rights, email us at privacy@paperdocket.app. We will respond within one calendar month. Account deletion requests will be completed within 30 days.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe we have not handled your data lawfully.

9. Cookies

Paper Docket uses only technically necessary cookies for authentication (session tokens issued by our authentication provider). We do not currently use analytics, advertising, or tracking cookies. We will update this policy and implement an appropriate consent mechanism before introducing any non-essential cookies.

10. Children

Paper Docket is a business-to-business service intended for use by adults operating hospitality venues. We do not knowingly collect personal data from anyone under the age of 18.

11. Changes to this policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes by email with at least 14 days' notice before the change takes effect. The current version will always be available at paperdocket.app/privacy.

12. Contact