Last updated July 7, 2026
This policy explains what Wingman collects, how we use it, and the choices you have. We built Wingman for hospitality teams, and we treat your restaurant's data — and your guests' data — as something we're trusted to protect.
Account information you provide — your name, email, restaurant details, locations, and team members you invite.
Operational data you create in Wingman — culture statements, training standards, sign-offs, spot-checks, checklists, and guest visit records.
To provide and improve the service: building your training system, tracking retention, and surfacing accountability insights for your team.
To communicate with you about your account, security, and product updates. We do not sell your data.
Restaurants may log guest visit information to power bounce-back and retention features. That data belongs to the restaurant; Wingman processes it on their behalf and never uses it to advertise to guests.
We share data only with trusted processors that help us run the service (hosting, payments, email), each bound by contract to protect it. We may disclose data if required by law.
We keep your data while your account is active. After cancellation, your data remains available to export for 30 days, then is deleted from active systems.
We use encryption in transit and at rest, role-based access controls, and least-privilege permissions. No system is perfectly secure, but protecting your data is a core priority.
You can access, correct, export, or delete your data from Settings, or by contacting us. Account owners control team access levels and what each role can view.
We may update this policy as the product evolves. We will note the date of the latest change at the top and notify account owners of material updates.