Furonto — Privacy Notice
Last updated: May 18, 2026 Effective date: May 18, 2026
This Privacy Notice describes how Tecnia Labs LLC ("Furonto", "we", "our", or "us"), the company behind the Furonto platform and its product lines (including Furonto Gastro), collects, uses, shares, and retains personal data, and the choices and rights you have over that data.
This Notice forms part of, and is incorporated by reference into, the Furonto Terms of Service. Capitalized terms not defined here have the meaning given in the Terms.
If you have questions about this Notice or want to exercise a privacy right, see Section 12 (How to contact us).
1. Who this Notice applies to
This Notice applies to:
- Customers — individuals who use the Service to discover Businesses and place Reservations as end consumers.
- Businesses and their team members — business entities that subscribe to the Service, and the individuals who use a Business account.
- Visitors — people who browse our public website, marketing pages, or help content without signing in.
This Notice covers personal data we handle when you use the Service. It does not cover personal data that a Business handles independently as its own controller (for example, the way a Business uses your contact details to communicate with you about your Reservation after we share them with the Business). Each Business is independently responsible for its own privacy practices.
2. The personal data we collect
We collect personal data in three ways: (a) directly from you, (b) automatically when you use the Service, and (c) from third parties such as identity providers and payment processors.
2.1 Information you provide
Customers may provide:
- Name, email address, phone number, locale (language and country setting);
- Optional profile data such as gender and a profile photo;
- Reservation details (date, time, party size, special requests, notes);
- Payment information when placing a Reservation that requires a deposit or guarantee (handled by our payment processors — we receive a tokenized reference, not your full card number);
- Communications you send us through support or in-app messaging.
Businesses and their team members may provide:
- Company name, address, contact details, and an identifying slug;
- Tax identifiers, billing address, and other accounting data;
- Names, emails, phone numbers, and roles of team members;
- Operational data about the business (layouts, schedules, policies, service types, images, prices, cancellation rules);
- Payment-method references (tokenized) for the subscription;
- Communications you send us through support or in-app messaging.
2.2 Information collected automatically
When you use the Service, we automatically collect:
- Device and connection data: IP address, browser type, operating system, device identifiers, language preference, and time zone.
- Usage data: pages and screens viewed, features used, links clicked, search queries, and time-stamped events related to your interactions with the Service.
- Approximate location: derived from your IP address. If you grant the relevant permission on your device, we may also use more precise location to sort Businesses by distance and to power address autocomplete.
- Cookies, SDKs, and similar technologies: see Section 8.
2.3 Information from third parties
- Identity providers: if you sign in with Google, Apple, or Facebook, we receive the basic profile information that provider supplies (such as your email, name, and a stable account identifier).
- Payment processors: when you pay through Stripe or MercadoPago, we receive transaction status, masked card details (such as the last four digits and card brand), and authorization/capture/refund events. We do not receive or store your full card number, expiry, or CVV.
- Businesses: when you contact a Business directly (e.g., by phone for a Reservation) and the Business records the interaction in the Service, we receive that information.
- Fraud-prevention and analytics vendors: we may receive risk signals associated with sign-ins, payments, or device fingerprints.
3. How we use personal data
We use personal data to:
- Provide the Service: create and authenticate your account; show available Businesses; process Reservations and any related authorizations, captures, refunds, or chargebacks; send transactional notifications (Reservation confirmations, status changes, payment receipts, security and account notices, subscription invoices); and operate the Business portal and helpdesk.
- Operate Business subscriptions: process Subscription Plan purchases, renewals, upgrades, downgrades, invoices, and provisioning of the corresponding application instance.
- Provide customer support: triage, route, respond to, and document support requests; gather satisfaction feedback.
- Secure the Service: detect, prevent, and respond to fraud, abuse, security incidents, and violations of our Terms or applicable law.
- Improve and develop the Service: analyze usage, debug issues, test new features, measure performance, and conduct internal research.
- Communicate with you: send transactional messages (which you cannot opt out of while you have an active account), and, with the choices described in Section 9, send marketing or product-update messages.
- Comply with law: meet tax, accounting, anti-money-laundering, consumer-protection, and other legal obligations; respond to lawful requests from authorities; enforce our agreements; and protect our rights and the rights of others.
Where required by law, we will identify a specific lawful basis (such as performance of a contract, our legitimate interests in operating and securing the Service, your consent, or compliance with a legal obligation) for each use.
4. How we share personal data
We share personal data only in the circumstances below. We do not sell personal data, and we do not share personal data for cross-context behavioral advertising. See Section 7.4 for how this maps to California-specific terminology.
4.1 With Businesses, to fulfill Reservations
When you place a Reservation, we share with the relevant Business the data the Business needs to fulfill it — typically your name, party size, contact details, notes, add-ons, and payment status. Once shared, the Business is an independent controller of that data and must use it only as permitted by our Terms and applicable law.
4.2 With service providers (processors)
We engage third-party vendors to host, secure, operate, and improve the Service. They process personal data on our behalf, under contract, and only for the purposes we instruct. See Section 5 for the categories and examples.
4.3 With payment processors
When you make a payment, the payment processor receives the data it needs to authorize, capture, refund, or dispute the charge. The payment processor acts as an independent controller for fraud prevention and regulatory purposes under its own privacy policy.
4.4 With identity providers
If you sign in with Google, Apple, or Facebook, that provider learns that you signed in to Furonto. Your relationship with that provider is governed by its own privacy policy.
4.5 For legal reasons
We may disclose personal data if we believe in good faith that disclosure is necessary to (a) comply with a law, regulation, subpoena, court order, or other lawful request; (b) enforce our Terms; (c) detect, prevent, or address fraud or security or technical issues; or (d) protect against harm to the rights, property, or safety of Furonto, our Users, or the public.
4.6 In a corporate transaction
If Furonto is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or part of our assets, personal data may be transferred as part of that transaction, subject to standard confidentiality protections.
4.7 With your consent or at your direction
We may share personal data for any other purpose disclosed to you at the time of collection or with your separate consent.
5. Third parties that process personal data on our behalf
We engage the following categories of third parties to help us operate the Service. The non-exhaustive examples in italics are current vendors as of the date of this Notice and may change over time. We update this list when material changes occur.
- Cloud hosting and infrastructure — to run our applications, databases, file storage, and content delivery.
- Email and transactional messaging — to send Reservation confirmations, password resets, invoices, and other operational messages.
- Identity providers — to support sign-in with third-party accounts (Google, Apple, Facebook).
- Payment processors — to process Customer deposits and guarantees and Subscriber subscription payments (Stripe, MercadoPago).
- Maps and address services — to power address search and geolocation features.
- Helpdesk and support tooling — to route and respond to support requests.
- Analytics, product telemetry, and error monitoring — to measure usage, diagnose bugs, and improve the Service.
- Conversion-tracking and advertising-measurement vendors — only where a Business chooses to enable a third-party tag on its listing, and only on those pages.
- Fraud-prevention and security vendors — to flag suspicious sign-ins, payments, or content.
- Professional advisors — legal, accounting, and tax advisors, where engaging them requires access to data.
A current detailed list of named subprocessors is available on request via the contact in Section 12.
6. How long we keep personal data
We retain personal data for as long as your account is active and as needed to provide the Service, and then for additional periods to:
- comply with legal, tax, accounting, and audit obligations (typically several years, as required by applicable law);
- enforce our agreements;
- resolve disputes and defend legal claims; and
- maintain backup, archival, and security records.
Specific categories of data may be retained for shorter or longer periods based on the type of data and the purpose. For example:
- Reservation records may be retained for a period that allows us to handle disputes and chargebacks.
- Subscription and invoice records are retained for the periods required by accounting law.
- Account data is deleted or anonymized after account closure, subject to the periods above.
- Provisioned application instances for churned subscriptions are soft-deleted on churn and then deleted or anonymized after a reasonable retention period.
If you ask us to delete your data, we will do so to the extent required and consistent with the retention requirements above.
7. Your privacy rights
7.1 Rights available to most Users
Depending on where you live, you may have some or all of the following rights:
- Access the personal data we hold about you.
- Correct inaccurate or incomplete data.
- Delete your data, subject to legal and contractual exceptions.
- Portability — receive your data in a structured, commonly used, machine-readable format.
- Restriction or objection — limit or object to certain uses.
- Withdraw consent for processing that is based on consent (without affecting prior processing).
To exercise these rights, use the contact in Section 12. We will verify your identity (typically by confirming control of the account email) before responding. We will respond within the time required by applicable law. We will not discriminate against you for exercising a privacy right.
7.2 California residents (CCPA / CPRA)
If you are a California resident, you have the following rights with respect to personal information we collect about you:
- Right to know the categories and specific pieces of personal information we have collected, the categories of sources, the business or commercial purposes for collecting, and the categories of third parties with whom we share it.
- Right to delete personal information we have collected, subject to legal exceptions.
- Right to correct inaccurate personal information.
- Right to opt out of "sale" or "sharing" of personal information.
- Right to limit use of sensitive personal information to specific permitted purposes.
- Right to non-discrimination for exercising these rights.
7.3 Categories of personal information collected (California disclosure)
In the prior 12 months, we have collected the following categories of personal information, as defined in the California Consumer Privacy Act:
| Category (CCPA) | Examples | Sources | Purposes (see Section 3) | Disclosed to (see Section 4) |
|---|---|---|---|---|
| Identifiers | Name, email, phone, account ID, IP address | You, identity providers, automatic | 1, 2, 3, 4, 6, 7 | 4.1, 4.2, 4.3, 4.4, 4.5 |
| Customer-records info | Billing address, tax ID, payment-method reference (tokenized) | You, payment processors | 1, 2, 7 | 4.2, 4.3, 4.5 |
| Commercial information | Reservations, subscription history, add-on selections | You, automatic | 1, 2, 5, 7 | 4.1, 4.2, 4.5 |
| Internet/network activity | Pages viewed, clicks, device data, cookies | Automatic | 1, 4, 5 | 4.2 |
| Geolocation data | Approximate location (IP-derived); precise location with permission | Automatic, you | 1, 5 | 4.2 |
| Inferences | Engagement signals (e.g., feature preferences) | Automatic | 1, 5 | 4.2 |
| Sensitive personal information (limited) | Account credentials; precise geolocation (with permission) | You, automatic | 1, 4 | 4.2 |
We use sensitive personal information only for purposes permitted by California law without an opt-out (such as providing the Service you requested, security, and fraud prevention). You may still ask us to limit use beyond those purposes.
7.4 "Sale" and "Sharing" of personal information
We do not sell personal information for money, and we do not share personal information for cross-context behavioral advertising, as those terms are defined under California law. If we ever change this practice, we will update this Notice and provide the required opt-out mechanism.
7.5 How to exercise California rights
Use the contact details in Section 12. You may also authorize an agent to make a request on your behalf, in which case we will require proof of authorization and verify your identity.
7.6 Other U.S. states
Residents of other U.S. states with comprehensive privacy laws (such as Colorado, Connecticut, Virginia, Utah, Texas, Oregon, and others as enacted) may have similar rights. We honor those rights to the extent required by the applicable state law. Use the contact in Section 12.
8. Cookies and similar technologies
We use cookies, local storage, mobile SDKs, and similar technologies to:
- Keep you signed in and remember your preferences (strictly necessary).
- Remember settings such as language and recently viewed Businesses (functional).
- Measure performance and how the Service is used (analytics).
- Diagnose errors and monitor uptime (operational telemetry).
- When a Business has enabled a third-party tag on its listing, support the Business's own analytics or conversion tracking on the pages associated with that Business.
You can control cookies through your browser or device settings. Blocking strictly necessary cookies may break parts of the Service.
9. Your communication choices
- Transactional messages (Reservation confirmations, status changes, payment receipts, security and account notices, subscription invoices) are part of the Service. You cannot opt out of these while you have an active account.
- Marketing and product-update messages are sent only where permitted by law. You can opt out via the unsubscribe link in those messages or through your account settings.
- Push notifications can be controlled through your device's notification settings.
- Precise location permissions can be revoked through your device's settings.
10. Children
The Service is not directed to children under 13 (or such higher age as may be required by applicable law in your jurisdiction, such as 16 in some contexts). We do not knowingly collect personal data from children. If you believe a child has provided us personal data, contact us at the address in Section 12 and we will delete it.
11. International transfers
We are based in the United States, and we process personal data in the United States and in other countries where our service providers operate. If you access the Service from outside the United States, you understand that your personal data may be transferred to, stored in, and processed in jurisdictions whose data-protection laws may differ from those of your home jurisdiction. Where required, we rely on appropriate safeguards for international transfers.
12. How to contact us
Tecnia Labs LLC 1600 Van Lennen Avenue, Suite 101 Cheyenne, Wyoming 82001, U.S.A.
- Privacy requests and questions: privacy@furonto.com
- General support: through the Business portal at "/my" or via the helpdesk form on our website, or support@furonto.com
- Legal notices: legal@furonto.com
If you have an unresolved concern, you may also contact your local data-protection authority, where applicable.
13. Changes to this Notice
We may update this Notice from time to time. If we make material changes, we will notify you by email or through an in-app or portal notice and update the "Last updated" date above. Your continued use of the Service after the effective date of an updated Notice constitutes your acknowledgement of it.
This Privacy Notice is written in English. Any translation is provided for convenience only; the English version controls in case of conflict.
