Privacy & Data Practices

Who we are

AIO Vend provides vending operations guidance, technical manuals, remote repair sessions, and consulting/implementation services (web, CRM, software). This policy explains how we handle personal information across our website (aiovend.com), live chat, consultation forms, marketplace features, and any payment pages powered by Stripe.

Website: aiovend.com
Support: support@aiovend.com
Controller: AIO Vend

Data we collect

Information you provide

Contact & account: name, email, phone, password (hashed if applicable).
Consultation & support: messages, context, booking preferences, uploaded files you share.
Orders & billing: business name, billing email, addresses, tax info (if provided).

Information we get automatically

Device & usage: IP address, browser type, pages viewed, referral, timestamps.
Analytics: Google Analytics 4 with IP anonymization and event metrics.
Service performance: error logs, load metrics, and basic diagnostics.

Payment information

We use Stripe to process payments. We do not store full card numbers or CVC codes on our servers. Stripe may provide us with limited details like the last four digits, card brand, expiration month/year, and transaction outcome.

How & why we use data

Provide services: run consultations, remote repair sessions, deliver documents, and manage bookings.
Process payments & invoices: via Stripe; manage refunds and dispute evidence when necessary.
Communicate: respond to messages, send service updates, transactional notices, and critical policy changes.
Improve: debug, secure, and enhance site features, manuals search, and marketplace listings.
Legal: comply with laws, tax/accounting, and enforce terms.

Legal bases (where applicable): performance of a contract, legitimate interests (product improvement, security), consent (where required), and legal obligation.

Payments (Stripe compliance)

Payments are handled by Stripe, a PCI DSS Level 1 validated service provider. When you pay, information is transmitted directly to Stripe or collected via Stripe components (e.g., Stripe Checkout, Elements). We receive transaction metadata but do not receive or store your full card details.

What Stripe processes: payment method details, billing info, device/anti-fraud signals, and transaction data.
What we keep: limited payment metadata (e.g., last4, brand), invoice IDs, receipt URLs, and status for accounting.
Disputes/chargebacks: we may submit receipts, logs, or communication as evidence to Stripe and card networks.

Learn more: Stripe Privacy Policy • Stripe Legal • Stripe Security

Cookies & tracking

We use essential cookies to operate the site and optional cookies for analytics and improvements. You can control cookies in your browser and via the choices below.

Category	Purpose	Examples	Retention
Essential	Login/session, form submissions, service worker caching, maintenance preview.	auth session tokens; `maintenance-preview`; CSRF tokens.	Session to 1 year (varies).
Analytics	Understand site usage and improve content; GA4 with IP anonymization.	Google Analytics (`_ga`, `_ga_*`).	2–24 months (per provider).
Payments	Fraud prevention and checkout experience through Stripe.	Stripe cookies/Local Storage as defined by Stripe.	Per provider policy.
Live chat / community	Provide support and community links (e.g., Discord banner).	Dismissal state, message preferences.	Session to 12 months.
Advertising (limited)	We may show simple banners; we do not sell personal information.	Banner dismissal state.	Up to 12 months.

Respects “Do Not Track” if your browser sets it.

Clears localStorage/sessionStorage and attempts to remove cookies set by this site.

Sharing & processors

We share personal data with service providers who help us operate our services. They must follow our instructions and protect your information.

Stripe (payments, anti-fraud, receipts).
Google (Analytics, Tag Manager; anonymized IP).
Hosting & infrastructure (static hosting, content delivery, uptime).
Email & support (contact replies, transactional mail).

We may disclose data to comply with law, enforce our terms, or protect rights, safety, and security.

We do not sell your personal information.

Retention

We keep information only as long as needed for the purposes above, including accounting and legal obligations. For example, invoice records may be retained for tax compliance. If you request deletion, we will anonymize or delete data unless we must keep it (e.g., fraud prevention, legal obligations).

Security

HTTPS everywhere; HSTS at the edge where supported.
Principle of least privilege for internal tools.
Vendor due diligence for processors like Stripe and Google.
Regular updates and patching for site dependencies.

No method of transmission is 100% secure. We work hard to protect your data but cannot guarantee absolute security.

International transfers

We may process and store information in the United States and other regions where our providers operate. Where required, we rely on appropriate safeguards (e.g., Standard Contractual Clauses) offered by our processors.

Your rights & choices

Depending on your location, you may have rights to access, correct, delete, or port your data, and to object or restrict certain processing.

Access / export: request a copy of your data.
Correction: update inaccurate information.
Deletion: request deletion where permitted.
Opt-out: adjust analytics and cookies; set your browser’s Do Not Track.
Marketing: unsubscribe via email footer where applicable.

To exercise these rights, email support@aiovend.com. We may need to verify your identity.

Children

Our services are intended for business users and are not directed to children under 13 (or the relevant age in your jurisdiction). We do not knowingly collect personal information from children.

Changes to this policy

We’ll post updates on this page and revise the “Last updated” date. For significant changes, we may provide additional notice (e.g., email or prominent banner).

Contact us

Questions about this policy or our data practices?