PRIVACY POLICY & COOKIE POLICY  This Privacy Policy governs all use of the thetablemenu.co.uk website and all content, services, and products available through the website (collectively referred to as the “Site”). The Site is owned and operated by SMART HUB TECH LTD a company registered in England and Wales under number 12746773 whose registered office is at Colmore 605 65 Shadwell Street, Birmingham, England, B4 6LS (collectively referred to as the Operator, “We” and “Us” or “Our”).  SMART HUB TECH LTD respect your privacy. This Privacy Policy describes the types of Personal Data we collect through products and services (“Services”) and via our online presence, which include our website at thetablemenu.co.uk. This policy also describes how we use Personal Data, with whom we share it, your rights and choices, and how you can contact us about our privacy practices. This policy does not apply to third-party websites, products, or services, even if they link to our Services or Sites, and you should consider the privacy practices of those third-parties carefully.

1. Overview

Stripe obtains Personal Data about you from various sources to provide our Services and to manage our Sites. “You” may be a visitor to our websites, a user of one or more of our Services (“User” or “The Table Menu User”), or a customer of a User (“Customer”). If you are a Customer, We will generally not collect your Personal Data directly from you. 

2. Personal Data We Collect

2.1 Personal Data is any information that relates to an identified or identifiable individual. 2.2 The Personal Data that you provide directly to us through our Sites and Services will be apparent from the context in which you provide the data. In particular:

1. When you register for a The Table Menu account we collect your full name, email address, and account log-in credentials.
2. When you fill-in our online form to contact our support team, we collect your full name, email, country, phone and anything else you tell us about your project, needs and timeline.

2.3 When you respond to Our emails or surveys we collect your email address, name and any other information you choose to include in the body of your email or responses. 2.4 If you contact us by phone, we will collect the phone number you use to call Us.  2.5 If you contact us by phone as a User, we may collect additional information in order to verify your identity. 2.6 You may also choose to submit information to us via other methods, including: 

1. in response to marketing or other communications;
2. through social media or online forums;
3. through participation in an offer, program or promotion; 
4. in connection with an actual or potential business relationship with us;
5. by giving us your business card or contact details at trade shows or other events;

2.7 Our Site uses cookies and other technologies to function effectively. These technologies record information about your use of our Site, including:

1. Browser and device data, such as IP address, device type, operating system and Internet browser type, screen resolution, operating system name and version, device manufacturer and model, language, plug-ins, add-ons and the language version of the Sites you are visiting;
2. Usage data, such as time spent on the Sites, pages visited, links clicked, language preferences, and the pages that led or referred you to our Sites.

2.8 We use Google Analytics on our Site to help us analyze Your use of our Sites and diagnose technical issues. 2.9 To learn more about the cookies that may be served through our Site and how you can control our use of cookies and third-party analytics, please see our Cookie Policy.

3. How We Use Personal Data

3.1 We rely upon a number of legal grounds to ensure that our use of your Personal Data is compliant with applicable law. 

3.2 We use Personal Data to facilitate the business relationships we have with our Users, to comply with our financial regulatory and other legal obligations, and to pursue our legitimate business interests.

3.3 We also use Personal Data to complete payment transactions and to provide payment-related services to our Users.

3.4 We may send you email marketing communications about Our products and services, invite you to participate in our events or surveys, or otherwise communicate with you for marketing purposes, provided that we do so in accordance with the consent requirements that are imposed by applicable law. 

3.5 We may use the information to follow-up with you, send you information that you have requested on our products and services and include you on our marketing information campaigns.  

4. How do We Store Personal Data.

4.1 We securely store your Personal Data on our web hosting servers provided and secured by GoDaddy Europe. For more information please refer to our service provider Privacy Policy. 

4.2 We will keep your Personal Data in accordance to local regulations . Once this time period has expired we will delete your Personal Data in accordance to local regulations.   

5. How We Disclose Personal Data.

5.1 We do not sell or rent Personal Data to marketers or unaffiliated third parties. 

5.2 We share your Personal Data with trusted entities, as outlined below.

5.3 We share Personal Data with a limited number of our service providers. We have service providers that provide services on our behalf, such as website hosting, data analysis, information technology and related infrastructure, customer service and email delivery. These service providers may need to access Personal Data to perform their services. We authorize such service providers to use or disclose the Personal Data only as necessary to perform services on our behalf or comply with legal requirements. We require such service providers to contractually commit to protect the security and confidentiality of Personal Data they process on our behalf. Our service providers are predominantly located in the European Union and the United States of America. 5.4 We share Personal Data as we believe necessary: 

1. to comply with applicable law, or payment method rules; 
2. to enforce our contractual rights;
3. to protect the rights, privacy, safety and property of SMART HUB TECH LTD, you or others; and 
4. to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, which may include authorities outside your country of residence.

6. Your Rights and Choices.

6.1 You have choices regarding our use and disclosure of your Personal Data. According to the General Data Protection Regulation (GDPR) you have the following rights with regard to the Personal Data we control about you:

1. a) The right to be informed of whether we collect Personal Data relating to you, how it’s being used, how long it will be kept and whether it will be shared with third parties. 
2. b) The right of access to your personal data by requesting a copy of the information we hold on you. 
3. c) The right to request that we rectifies or updates your Personal Data that is inaccurate, incomplete or outdated;
4. c) The right to request that we erase your Personal Data in certain circumstances provided by law;
5. d) The right to request that we export to another company, where technically feasible, your Personal Data that we hold in order to provide Services to you.
6. e) The right to withdraw your consent at any time, where the processing of your Personal Data is based on your previously given consent; 
7. f) The right to object to the processing of your Personal Data on grounds relating to your particular situation.
8. g) The right to opt-out of receiving electronic communications from us. If you no longer want to receive marketing-related emails from us, you may opt-out via the unsubscribe link included in such emails. We will try to comply with your request(s) as soon as reasonably practicable. Please note that if you opt-out of receiving marketing-related emails from us, we may still send you important administrative messages that are required to provide you with our Services.
9. h) The right to see or change your account Personal Data, if You would like to review, correct, or update Personal Data that you have previously disclosed to us;

6.2 In order to exercise your data protection rights, you may contact Us as described in the Contact Us section below. We take each request seriously. We will comply with your request to the extent required by applicable law. We will not be able to respond to a request if we no longer hold your Personal Data. If you feel that you have not received a satisfactory response from us, you may consult with the data protection authority. For your protection, we may need to verify your identity before responding to your request, such as verifying that the email address from which you send the request matches your email address that we have on file. If we no longer need to process Personal Data about you in order to provide our Services or our Sites, we will not maintain, acquire or process additional information in order to identify you for the purpose of responding to your request.

7. What are cookies? 

7.1 A “cookie” is a string of information which assigns you a unique identifier that we store on your computer. Your browser then provides that unique identifier to use each time you submit a query to the Site. 

8. How do we use cookies? 

8.1 We use cookies on the Site to:

1. keep track of services you have used;
2. record registration information;
3. record your user preferences;
4. keep you logged into the Site;
5. facilitate purchase procedures;
6. track the pages you visit; 

8.2 Cookies help us understand how the Site is being used and improve your user experience. 

9. What types of cookies do we use? 

9.1 Functionality Cookies. We use Functionality Cookies to recognize you on our website and remember your previously selected preferences. These could include what language you prefer and location you are in. A mix of first party and third-party cookies are used. 

9.2 Advertising Cookies. Advertising cookies are placed on your computer by advertisers and ad servers in order to display advertisements that are most likely to be of interest to you. These cookies allow advertisers and ad servers to gather information about your visits to the Site and other websites, alternate the ads sent to a specific computer, and track how often an ad has been viewed and by whom. These cookies are linked to a computer and do not gather any personal information about you. 

9.3 Analytics Cookies. Analytics cookies monitor how users reached the Site, and how they interact with and move around once on the Site. These cookies let us know what features on the Site are working the best and what features on the Site can be improved. 

10. How to manage cookies. 

10.1 If You prefer to avoid the use of Cookies on the Website, first You must disable the use of Cookies in your browser and then delete the Cookies saved in your browser associated with this website. You may use this option for preventing the use of Cookies at any time.

10.2 If You do not accept Our Cookies, You may experience some inconvenience in your use of the Website and some features may not function properly.

10.3 If You’d like to delete Cookies or instruct your web browser to delete or refuse Cookies, please visit the help pages of your web browser.

11. Check-in App 

11.1 Each customer of our platform is able to customise the type of data captured. 11.2 This can include but, is not limited to:

1. Date and Time customer entered a venue
2. The venue customer visited
3. Name
4. Email
5. Phone Number

11.3 Customer Data for each location is securely stored and only used if required for rapid contact tracing.

11.4 We provide services to assist venues in meeting government compliance and will not sell or use data for any purpose other than as required to operate this platform.

11.5 Data collected is anonymised removing personal identifiers, both direct and indirect, that may lead to an individual being identified.

11.6 Data will only be disclosed to the venue after a disclosure request has been filled in and sent at the following email address: dpo@thetablemenu.co.uk

11.7 Disclosure of data will only be accepted if the venue submits a formal request that requires them to provide data to NHS Test and Trace.

12. Security and Retention.

12.1 We make reasonable efforts to ensure a level of security appropriate to the risk associated with the processing of Personal Data. 

12.2 We maintain organizational, technical and administrative measures designed to protect Personal Data within our organization against unauthorized access, destruction, loss, alteration or misuse. 

12.3 Your Personal Data is only accessible to a limited number of personnel who need access to the information to perform their duties. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of your account has been compromised), please contact us immediately.

12.4 We retain your Personal Data as long as we are providing the Services to you.

12.5 We retain Personal Data after we cease providing Services directly or indirectly to you, even if you close your Account to the extent necessary to comply with our legal and regulatory obligations, and for the purpose of fraud monitoring, detection and prevention. 

12.6 We also retain Personal Data to comply with our tax, accounting, and financial reporting obligations, where we are required to retain the data by our contractual commitments to our financial partners, and where data retention is mandated by the payment methods that we support. 

12.7 Where we retain data, we do so in accordance with any limitation periods and records retention obligations that are imposed by applicable law.

13. Use by Minors.

13.1 The Services are not directed to individuals under the age of thirteen (13), and we request that they not provide Personal Data through the Services.

14. Updates To this Privacy Policy and Notifications.

14.1 We may change this Privacy Policy from time to time to reflect new services, changes in our Personal Data practices or relevant laws. The “Last updated” legend at the top of this Privacy Policy indicates when this Privacy Policy was last revised.  14.2 Any changes are effective when we post the revised Privacy Policy on the Services.  14.3 We may provide you with disclosures and alerts regarding the Privacy Policy or Personal Data collected by posting them on our website and, if you are a User, by contacting you through your Account, email address and/or the physical address listed in your Account.

15. Links To Other Websites.

15.1 The Services may provide the ability to connect to other websites. These websites may operate independently from us and may have their own privacy notices or policies, which we strongly suggest you review. If any linked website is not owned or controlled by us, we are not responsible for its content, any use of the website or the privacy practices of the operator of the website.

16. Jurisdiction-specific Provisions.

16.1 The entity responsible for the collection and processing of Personal Data for residents of the EEA, the UK and Switzerland is SMART HUB TECH LTD a company registered in England and Wales under number 12746773 whose registered office is at Colmore 605 65 Shadwell Street, Birmingham, England, B4 6LS.  16.2 To exercise your rights, the Data Protection Officer may be contacted via dpo@thetablemenu.co.uk.  16.3 If you are a resident of the EEA and believe we process your information in scope of the General Data Protection Regulation (GDPR), you may direct your questions or complaints to the Office of the Data Protection Commissioner. If you are a resident of the UK and the UK is no longer a Member State of the EU, you may direct your questions or concerns to the UK Information Commissioner’s Office.

17. Contact Us

If you have any questions or complaints about this Privacy Policy, please contact us electronically or send physical mail to: SMART HUB TECH LTD  Colmore 605 65 Shadwell Street, Birmingham, West Midlands, B4 6LS dpo@thetablemenu.co.uk 

This Policy was last reviewed and updated on: 01.10.2023