Privacy Policy

Tabletabb is a restaurant order management platform. The data controller is Tabletabb ("we", "our platform"). You can reach us at privacy@tabletabb.com.

We collect data from two types of users:

Restaurant administrators

• Name and email address (when creating an account)
• Restaurant data: name, logo, address, phone number, website
• Menu: item names, descriptions, prices, images
• Settings: currency, brand color, language preference
• Team information: emails and roles of invited members

Restaurant customers (diners)

• Name or nickname entered when joining a table
• Orders placed during a session: items, quantities and prices
• Messages sent to restaurant staff
• Table session data (access code, session duration)

• To provide and operate the platform (table management, real-time orders, dashboard)
• To authenticate users and protect access to each restaurant
• To generate sales statistics and reports for administrators
• To send team invitations and operational notifications
• To improve the platform through aggregated, anonymized usage analysis
• To respond to support requests

We do not sell, rent or share personal data with third parties for commercial or advertising purposes.

Data is stored in Supabase, a managed database platform with encryption in transit (TLS) and at rest. The infrastructure runs on AWS servers in the US-East-1 region. Images are stored in Supabase Storage with access controlled by security policies.

The platform is served through Vercel, which provides a global CDN with HTTPS enforced on all routes.

• Account data: retained while the account is active. Upon account deletion, data is erased within 30 days.
• Order and session data: retained for 12 months from the session date for history and billing purposes.
• Diner data:the name entered in a session is retained only during the active session. Once the table is closed, it remains linked to the restaurant's order history.

We use the following providers to operate the service:

• Supabase — database, authentication and file storage
• Vercel — application hosting and delivery

These providers act as data processors and are bound by data processing agreements compatible with international data protection standards.

You have the right to:

• Access the data we hold about you
• Rectify incorrect or outdated data
• Delete your account and associated data
• Export your data in a portable format
• Object to certain uses of your data

To exercise any of these rights, contact us at privacy@tabletabb.com. We respond within 30 business days.

We use a cookie called localeto remember the administrator's language preference. We do not use tracking or third-party advertising cookies. The interface theme (light/dark) is saved in the browser's localStorage, without sending data to our servers.

We may update this policy from time to time. When we do, we will update the date at the top of this page and, if the changes are significant, we will notify you by email or through a prominent notice on the platform.

For any privacy or data protection questions, contact us at privacy@tabletabb.com.