Delightree Privacy Policy

Effective Date: 1 April 2022
Last Updated: 5 December 2024

Delightree (“we,” “our,” or “us”) values your privacy and is committed to safeguarding your data in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant privacy laws. This Privacy Policy outlines how we collect, use, and protect personal data, as well as your rights as a user.

1. Scope of This Policy

This Privacy Policy applies to all users of Delightree’s services, including franchisors, franchisees, and their employees. It governs the processing of data on our platform and related services.

2. Data We Collect

Account Information

Names, email addresses, phone numbers, and similar details provided by users.

Operational Data

Task progress, training completions, and activity logs necessary for service delivery.

Technical Data

Device information, IP addresses, and system usage logs for optimization and troubleshooting.

Sensitive Data

We do not process sensitive personal data (e.g., health, biometric, or financial data) unless explicitly requested by customers.

3. How We Use Your Data

We use personal data for:

  • Delivering, maintaining, and improving our services.
  • Communicating about accounts, support, and updates.
  • Ensuring security and preventing unauthorized access.
  • Compliance with legal obligations.

Note: Delightree does not sell personal data to third parties.

4. Data Security Measures

We take the security of your personal data seriously and implement industry-leading measures to protect it against unauthorized access, loss, or misuse. Our security framework includes:

Encryption

  • All personal data is encrypted both in transit and at rest using AES-256 encryption and TLS 1.2/1.3 protocols to ensure data confidentiality.
  • Data backups are also encrypted to maintain their integrity and prevent unauthorized access.

Access Controls

  • Access to data is restricted to authorized personnel only, following a strict role-based access control (RBAC) model.
  • Multi-factor authentication (MFA) is mandatory for all internal and administrative access to sensitive systems.

Continuous Monitoring

  • We utilize intrusion detection systems (IDS) and regularly monitor our environment for potential security threats.
  • Audit logs are maintained and reviewed to detect and address suspicious activities promptly.

Penetration Testing and Vulnerability Assessments

  • Regular third-party penetration tests are conducted to identify and mitigate potential vulnerabilities.
  • Vulnerabilities are remediated based on criticality, with timelines defined in our internal policies.

Incident Response Plan

  • In the event of a data breach, we follow a documented incident response plan to minimize the impact and notify affected individuals and authorities in compliance with GDPR and CCPA requirements.

Employee Training

  • All employees undergo regular security awareness training to ensure compliance with best practices and protect against phishing and other threats.

5. Legal Basis for Processing

We process personal data based on:

Contractual Necessity

To deliver services as agreed with customers.

Legitimate Interests

Enhancing the platform and ensuring security.

Consent

For purposes requiring explicit user approval.

6. Your Rights

As a user of Delightree’s services, you have robust rights regarding your personal data, ensuring transparency, control, and accountability in how we handle your information. Below are your rights under GDPR and CCPA:

Access Your Data

You can request a copy of the personal data we hold about you, free of charge, and understand how it is being processed.

Rectify Data

You have the right to request corrections to any inaccurate or incomplete data we hold.

Request Deletion

Known as the "right to be forgotten," you can request that your personal data be deleted when:

  • It is no longer necessary for the purposes it was collected.
  • You withdraw your consent.
  • The data has been unlawfully processed.

Data Portability

You can request to receive your personal data in a structured, commonly used, and machine-readable format or have it transferred directly to another data controller.

Restrict or Object to Processing

You can object to data processing based on legitimate interests or restrict its use under specific circumstances.

Opt-Out of Data Sales (CCPA)

Delightree does not sell personal data. However, California residents have the right to formally opt-out of such activities.

Withdraw Consent

If processing is based on your consent, you can withdraw it at any time without affecting the lawfulness of prior processing.

Exercising Your Rights


To exercise your rights, please contact us at madhulika@delightree.com. We will respond to all requests within 30 days or as required by applicable laws.

7. Data Retention

We retain personal data only as long as necessary for service delivery or legal compliance. Upon request, data can be deleted within 30 days.

8. Third-Party Processors

We engage trusted third-party providers, ensuring compliance through strict contractual agreements.

9. International Data Transfers

For transfers outside jurisdictions with stringent data laws, we employ safeguards like standard contractual clauses.

10. Cookies and Tracking Technologies

Delightree uses cookies and similar tracking technologies to enhance your experience, improve our platform, and provide personalized content. Below is a breakdown of how we use cookies:

Types of Cookies We Use

Essential Cookies

Necessary for the operation of the platform, such as maintaining secure sessions and user authentication.

Performance Cookies

Help us understand how users interact with our services to improve functionality and user experience.

Functional Cookies

Remember your preferences, such as language settings, to enhance usability.

Analytics and Tracking Cookies

Allow us to collect aggregated usage data to understand trends and optimize performance.

Third-Party Tracking Technologies

We partner with trusted third-party service providers (e.g., Google Analytics) to analyze user behavior. These providers are contractually obligated to adhere to strict data protection standards.

Your Control Over Cookies

Manage Preferences

You can adjust your cookie preferences through the platform settings or your browser.

Opt-Out Options

Tools like the Network Advertising Initiative’s (NAI) opt-out tool or browser extensions can help block certain cookies.

Do Not Track Signals

We honor browser-initiated "Do Not Track" signals where technically feasible.

Transparency and Consent


When required, we obtain your explicit consent before deploying non-essential cookies. You can review and modify your consent at any time via our cookie settings interface.

11. Updates to This Policy

We may update this policy periodically. Changes will be communicated before implementation.

12. Contact Us

For privacy concerns or data-related inquiries, contact:

  • Email: madhulika@delightree.com
  • Address: 4100 E Mississippi Ave, Suite 925, Denver, CO 80246
We simplify your f*ing life.

*franchising

Solutions
Audits
Forms and
Checklists
Knowledge
Base
Location
Launcher
Reports and
Analytics
Task
Management
Training
Resources
Blog
Case Studies
Change Log
Other
Pricing
About
Contact
Help
Support
User Guide
delightree franchise management software logo
© 2024 Delightree Technologies, LLC. All rights reserved. Various trademarks held by their respective owners.
Privacy Policy
Terms & Conditions