Privacy

Privacy Policy — Day of Week

How we collect, use, and protect personal data across our agrifood and hospitality products.

Data protection
Transparency
Compliance

Effective date: 12 February 2026

Introduction

Day of Week (“we”, “us”, “our”) provides AI-driven products for agrifood and hospitality. We respect your privacy and are committed to protecting personal data in line with applicable law. This policy explains what information we collect, how we use it, with whom we share it and your rights.

Data controller

Day of Week AS (the “Company”), Odderøyveien 5, 4610 Kristiansand, Norway — contact: hello@dayofweek.com.

What data we collect

  • Contact data: name, email, company, role, phone (if provided).
  • Transactional & business data: company profile, farm or business operational metrics used to run pilot projects or integrations.
  • Operational data: data from devices, ERP or POS systems required to provide BackYard, Creator, Designer, Fusion, or FoodFriends services.
  • Usage data: logs, diagnostics and performance metrics.
  • Cookies & tracking: website cookies and analytics identifiers.

How we use data

  • Provide and operate our products and services.
  • Run pilots and produce recommendations and reports.
  • Improve and personalize the service, models and functionality.
  • Communicate with users, respond to inquiries and provide support.
  • Comply with legal obligations and for security and fraud prevention.

Legal basis for processing (EU/EEA)

Where applicable, we rely on: consent, contractual necessity, legitimate interests and compliance with legal obligations. For more details, contact hello@dayofweek.com.

Sharing & recipients

  • Service providers and sub-processors who support the platform (hosting, analytics, email).
  • Partners engaged for pilots or integrations (with your permission or contractually required).
  • Legal authorities when required by law.

International transfers

Data may be transferred outside your jurisdiction where necessary. We protect transfers using appropriate safeguards (standard contractual clauses, where applicable).

Data retention

We retain personal data as long as necessary to provide services, for legal and compliance purposes, or as otherwise stated in related contracts. For operational data used to train models, retention is governed by contractual terms and privacy-preserving practices. Contact us for specific retention details.

Security

We implement administrative, technical and physical measures to protect data. This includes encryption in transit and at rest, access controls and auditing. Despite reasonable safeguards, no system is perfectly secure.

AI & model training

Operational and anonymized data may be used to improve models. We take steps to minimize personal data exposure in model training (pseudonymization, aggregation and domain-aware safeguards). We provide explainability and audit logs for recommendations.

Your rights

Depending on your jurisdiction, you may have rights to access, correct, delete or restrict processing of your personal data, or to object to processing. To exercise rights, contact hello@dayofweek.com.

GDPR compliance

Day of Week AS is established in Norway, which is part of the European Economic Area, so the EU General Data Protection Regulation (GDPR) applies to our processing of personal data. Day of Week AS is the data controller for the personal data described in this policy.

Where your data is processed.By default your data stays within the EEA: our database runs in Ireland (Convex), our application servers are pinned to Dublin (Vercel), and AI processing runs in Sweden (Azure OpenAI). A small number of providers — authentication (Clerk), payments (Stripe) and email (Resend) — process data in or from the United States; for these we rely on the EU–U.S. Data Privacy Framework and/or Standard Contractual Clauses. Signed-in users can see the full, per-service list — with the data each receives and its legal safeguard — on the in-app Data & transparency page.

Legal basis (GDPR Art. 6). We process personal data on the basis of contractual necessity (delivering the service), our legitimate interests (operating, securing and improving the platform), your consent where we ask for it (e.g. marketing email), and compliance with legal obligations.

Your rights as a data subject. Under the GDPR you have the right to:

  • Access — get confirmation of and a copy of the personal data we hold about you.
  • Rectification — have inaccurate or incomplete data corrected.
  • Erasure — ask us to delete your personal data (the “right to be forgotten”).
  • Restriction — ask us to limit how we process your data.
  • Portability — receive your data in a structured, machine-readable format, or have it sent on.
  • Objection — object to processing based on our legitimate interests, including direct marketing.
  • Withdraw consent — where processing relies on consent, withdraw it at any time without affecting earlier processing.

To exercise any of these rights, email hello@dayofweek.com. We respond without undue delay and within one month, as required by GDPR Article 12. Because some identity and billing data is held by our authentication and payment providers, an access or erasure request is carried out across all of our systems.

Right to lodge a complaint (GDPR Art. 77). If you believe we have handled your personal data unlawfully, you have the right to complain to your national data protection authority. In Norway this is Datatilsynet, the Norwegian Data Protection Authority.

Cookies

Some of our applications use cookies and similar technologies for functionality. Where applicable, you can manage cookie preferences from your browser or from within the application.

Children

Our services are not directed at children. We do not intentionally collect data from minors.

Changes to this policy

We may update this policy. Material changes will be communicated on our website. The current policy’s effective date is shown at the top.

Contact

For privacy questions or data subject requests: hello@dayofweek.com.