Privacy Policy
How we handle your information

Effective Date: January 1, 2026  ·  Last Updated: July 1, 2026

1. Introduction

Bakeri ("we," "our," or "us") operates the Bakeri mobile application (the "App"), a business management tool for bakery operators. This Privacy Policy explains what personal information we collect, how we use and protect it, and the rights and choices available to you.

This policy is designed to comply with applicable privacy laws in the regions we serve, including Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy legislation, and the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA) and other US state privacy laws where they apply.

By using Bakeri, you consent to the collection and use of your information as described here.

2. Information We Collect

Information you provide directly:

Information collected automatically:

We do not collect payment card information, use advertising SDKs, track your location, or build advertising or marketing profiles.

Sensitive information: We do not collect sensitive personal information as defined under the CPRA (such as government IDs, precise geolocation, or health or biometric data).

Note on customer data: Some business data you enter — such as customer names — is personal information about other people. You are responsible for handling that information lawfully, including providing any notices or obtaining any consents your own customers are entitled to. We process it only to provide the App to you.

3. How We Use Your Information

Under PIPEDA, we rely on your consent to collect and use personal information. Where the CCPA/CPRA or other US state laws apply, we process information for the business purposes described above.

4. How We Share Your Information

We do not sell your personal information, and we do not share it with third parties for their own marketing purposes.

5. International Data Transfers

Your data is stored and processed on cloud infrastructure that may be located outside your province, state, or country, including in the United States and or Canada. Where data is transferred across borders, it may be subject to the laws of the jurisdiction where it is stored, including lawful access requests by courts, law enforcement, or government authorities. We take reasonable steps to ensure your information receives a comparable level of protection wherever it is processed.

6. Data Storage and Security

Your data is stored on your device and synced to secure cloud servers. All data transmitted between the App and our servers is encrypted using TLS/HTTPS. We implement commercially reasonable administrative, technical, and physical safeguards to protect your information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

7. Data Breach Notification

If we become aware of a security breach that creates a real risk of significant harm to you, we will notify you and the relevant authorities as required by applicable law, including PIPEDA's breach-reporting and record-keeping requirements.

8. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete your associated data from our servers within 30 days, except where retention is required by law. Data stored locally on your device is removed when you delete the App. Anonymized or aggregated data that can no longer identify you may be retained.

9. Your Privacy Rights

All users have the right to:

California residents (CCPA/CPRA) also have the right to: know what personal information we collect and how we use it; opt out of the sale or sharing of personal information (we do not sell or share personal information); limit the use of sensitive personal information (we do not collect it); and receive non-discriminatory treatment for exercising these rights. We honor recognized opt-out preference signals such as Global Privacy Control (GPC) where applicable. You may use an authorized agent to submit a request on your behalf, subject to verification.

Canadian residents (PIPEDA) have the right to access their personal information, challenge its accuracy, and file a complaint with the Office of the Privacy Commissioner of Canada.

To exercise any right, contact us at hello@bakeri.app. We will verify your request and respond within the timeframe required by law (generally within 30 days under PIPEDA and 45 days under the CCPA/CPRA).

10. Children's Privacy

Bakeri is intended for business use by adults and is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, contact us at hello@bakeri.app and we will delete it.

11. Third-Party Links and Services

The App may link to third-party services, such as the Apple App Store. We are not responsible for the privacy practices of those third parties and encourage you to review their privacy policies.

12. Privacy Contact

To ask questions, exercise your rights, or raise a concern about how we handle personal information, contact the individual responsible for our privacy practices:

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the date at the top of this policy and, where appropriate, through in-app notice or email. Your continued use of the App after changes take effect constitutes acceptance.