Last updated: 25 June 2026
BarOps ("we", "us", "our") is operated by Tommy Poole. This policy explains what personal data we collect, why, and how we protect it.
BarOps is a stock management platform for bars and restaurants, operated as a sole trader / small business by Tommy Poole (contact: tommyvpoole@hotmail.com). We are based in the European Union and all data is stored in EU infrastructure.
We collect:
β’ Account data β your name and email address when you sign up.
β’ Venue data β your bar name, address, and business details you enter.
β’ Staff data β names and email addresses of staff members you invite.
β’ Stock & inventory data β product names, weights, counts, deliveries.
β’ Usage data β page visits and feature usage (no third-party tracking analytics).
β’ Cookies β we use one essential session cookie to keep you logged in. No advertising or tracking cookies.
β’ Contract performance β processing your account and venue data to deliver the service you signed up for.
β’ Legitimate interests β aggregate usage statistics to improve the product.
β’ Consent β where you explicitly opt in (e.g. email status notifications).
We use the following services to operate BarOps. Each is covered by a Data Processing Agreement:
β’ Supabase (EU West region) β database and authentication.
β’ Vercel β hosting. Data may pass through US servers; covered by Standard Contractual Clauses (SCCs).
β’ Resend β transactional email (low-stock alerts, invitations).
β’ Anthropic (Claude AI) β AI assistant features. Prompts and replies are sent to US servers; covered by Anthropic's DPA and SCCs.
β’ OpenAI β AI-assisted features (e.g. delivery receipt reading). US servers; covered by SCCs.
β’ Telegram (optional) β if you connect Telegram notifications, messages pass through Telegram's servers.
We do not sell your data to any third party.
You have the right to:
β’ Access β request a copy of the data we hold about you.
β’ Rectification β correct inaccurate data.
β’ Erasure β delete your account and all associated data (see below).
β’ Portability β receive your data in a machine-readable format.
β’ Restriction β ask us to pause processing while a dispute is resolved.
β’ Object β object to processing based on legitimate interests.
To exercise any right, email tommyvpoole@hotmail.com. We will respond within 30 days.
You can delete your account and all associated data at any time from Settings β Account β Delete account. Deletion removes your personal data, venue data, and staff records from our live systems within 30 days. Backups are purged within 90 days.
We retain your data for as long as your account is active. When an account is deleted, personal data is erased within 30 days. Anonymised aggregate statistics (total count numbers, no names or identifiers) may be retained indefinitely.
BarOps uses a single essential cookie (`sb-auth-token`) to maintain your login session. We do not use advertising, tracking, or analytics cookies. No cookie consent banner is required for essential cookies under GDPR Recital 30, but we disclose this use clearly here.
We may update this policy. If changes are material we will notify you by email. The current version is always at barops-azure.vercel.app/privacy.
Contact: tommyvpoole@hotmail.com
If you are unhappy with how we handle your data you have the right to lodge a complaint with your national data protection authority. In the Czech Republic: ΓΕad pro ochranu osobnΓch ΓΊdajΕ― (ΓOOΓ), www.uoou.cz.