Legal

Privacy Policy

Last updated: 22 May 2026 · HUBLAUNCH TECHNOLOGIES (PTY) LTD

Yield is operational intelligence software for food and beverage businesses. This policy explains what data we collect, why we collect it, and how we protect it. We keep this plain. If you have questions, email xavier@yieldapp.co.

01

Who we are

Yield is operated by HUBLAUNCH TECHNOLOGIES (PTY) LTD, registered in South Africa. We provide stock intelligence software for food and beverage operators.

Registered address: 1 Both Road, Claremont, Cape Town, Western Cape, 7708, South Africa. Data enquiries: xavier@yieldapp.co.

02

What data we collect

  • Account and workspace data — your name, email address, business name, role, team invites, and workspace configuration details.
  • Operational uploads — invoices, sales exports, stock-count files, recipe files, and related CSV, PDF, or email-based uploads you send to Yield.
  • Structured operational records — extracted invoice lines, stock movements, count history, recipe records, variance records, supplier details, and related notes created through the service.
  • Billing, usage, and security data — subscription metadata, page and feature usage, audit events, support records, and error logs.
  • Voice and transcription data — limited audio or transcript payloads where voice-enabled features are used.

Yield is not designed to process your end-customer personal data. We do process limited employee, supplier, or team contact details where those appear in operational documents you provide.

03

Why we collect it

  • To provide the Yield service and calculate variance, reporting, and workflow outputs.
  • To process invoices, sales files, recipe files, and stock-count data you send to Yield.
  • To send service, billing, and operational alert notifications.
  • To detect and prevent abuse, maintain security, and support the service.

We do not use your data to train third-party AI models. We do not sell your data to third parties. Yield may retain limited structural ingestion signals — such as column or header patterns — to improve import reliability. We do not reuse your private operational history as third-party model-training data. The core product still works without AI features enabled.

04

Ownership and processing role

Your organisation retains ownership of its underlying business data. Yield processes that data as a service provider to host, store, secure, analyse, transmit, back up, and support the service. We use only the limited rights needed to operate the product, provide support, prevent abuse, recover from incidents, and meet legal obligations.

05

Who we share it with

  • Supabase — database and file storage. Data is stored on EU-hosted managed infrastructure and encrypted in transit and at rest.
  • Anthropic — AI processing for column mapping, invoice extraction, and assistant workflows. Only the limited content needed for the specific workflow is sent.
  • OpenAI — limited voice and transcription workflows where those features are enabled.
  • Postmark — email delivery and inbound email handling for alerts, notifications, and file-routing workflows.
  • Sentry — error monitoring. Error payloads may include file paths and operational metadata, but not intentionally your invoice or purchase payloads.
  • Paystack — payment processing. We share only what is required to process your subscription.

06

Where your data is stored

Your data is stored on servers located in the European Union and operated through Supabase-managed infrastructure. Data is encrypted in transit and at rest at the provider layer.

07

How long we keep it

  • While your account is active, we retain the structured business records needed to provide the service and maintain auditability — including extracted invoice data, stock movements, count history, and delivery history.
  • Invoice source PDFs may be retained while your workspace is active where needed for verification and audit support.
  • Other raw uploaded source files are not kept indefinitely. Successfully processed files are purged after 30 days; failed or needs-review files after up to 90 days.
  • After cancellation or an approved deletion request, we delete the organisation and associated data within the applicable operational window, subject to lawful retention requirements.

You can request export or deletion support through the owner privacy settings flow or by emailing xavier@yieldapp.co.

08

Your rights under POPIA

South Africa's Protection of Personal Information Act (POPIA) gives you the right to access, correct, delete, or object to processing of your personal information. To exercise any of these rights, email xavier@yieldapp.co. We aim to respond to validated requests within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Information Regulator of South Africa at inforegulator.org.za.

09

Security and internal access

Access to your data is restricted to authenticated users within your organisation. We use row-level security to enforce tenant isolation at the database level. All API endpoints are authenticated. Authorised Yield personnel may access limited customer data only where reasonably necessary to operate the service, respond to support requests, investigate incidents, maintain backups, prevent abuse, or comply with legal obligations.

10

Changes to this policy

We will notify you by email if we make material changes to this policy. Continued use of Yield after notice constitutes acceptance of the updated policy.

11

Contact

Privacy contact: Xavier Muvuti, HUBLAUNCH TECHNOLOGIES (PTY) LTD
1 Both Road, Claremont, Cape Town, Western Cape, 7708, South Africa
Email: xavier@yieldapp.co

Terms of ServiceSecurity OverviewRefund PolicySign in