Sivousplate Table Chat
Sivousplate Table Chat
PricingFAQContactGet StartedPrivacy PolicyTerms of Service

Privacy Policy

Last updated: October 6, 2025

1. Scope

This Privacy Policy explains how Sivousplate collects, uses, discloses, and safeguards information in connection with our Services, including restaurant-facing applications, the patron web app, NFC-based table messaging, payment and billing flows, and related websites. It covers:

  • Restaurant client and staff data used for accounts, administration, and billing.
  • Patron interactions via the web app initiated from NFC tags (no patron registration required).

2. Roles and Responsibilities

Restaurant Client/Staff Data: We act as a controller for business contact, authentication, and billing information we collect to operate the Services.

Patron Messages and Session Metadata: We generally act as a processor on behalf of the restaurant. Restaurants determine lawful bases and retention for patron content where applicable. A DPA is available upon request if required by law.

As an interactive service provider, we facilitate communication between patrons and restaurants but do not create or control the content exchanged. Each user is responsible for their own statements and materials. Consistent with 47 U.S.C. § 230 and similar safe-harbor laws where applicable, we are not liable for user-generated content or messages transmitted through the platform.

Visibility of Messages: Chat messages exchanged through the patron web app, connect mobile app, or manager console are visible to all participants in the associated table session (including restaurant staff and managers). While messages are transmitted and stored using secure methods, the chat is not a private or end-to-end encrypted communication channel. Users should not expect message content to remain confidential from other participants or the restaurant. Messages may be accessed or retained by the restaurant or Sivousplate as necessary for delivery, moderation, technical support, compliance, or auditing.

3. Information We Collect

3.1 Information You Provide (Restaurant Clients/Staff)

  • Business contact details (e.g., name, email, phone), role/permissions.
  • Account credentials (authentication via phone or Google sign-in), and staff profile details.
  • Billing and payment details (handled by payment processors such as Stripe).
  • Support communications and configuration data (e.g., restaurant/tables).

3.2 Information Provided by Patrons (No Registration)

  • Message content submitted through the patron web app (free-text or selections).
  • Optional information a patron chooses to include in messages.

Patrons do not create accounts; messages are associated to an NFC/table session.

3.3 Information Collected Automatically

  • Device and network metadata (e.g., IP address, browser or OS version).
  • Service logs and error logs (e.g., component name, error type).
  • Session identifiers tied to NFC/table context and routing.
  • Limited client-side storage (e.g., sessionStorage for secure payment bridging when staff process payments).
  • Cookies or similar technologies for essential site operations and security; we do not use third-party advertising cookies.

3.4 Payment Information

We use third-party payment processors (e.g., Stripe) to handle payment card data. We do not store full payment card numbers on our servers. Stripe processes payments in accordance with its terms and privacy policy.

4. How We Use Information

  • Provide, operate, maintain, and improve the Services (including routing, messaging, session management, NFC assignment).
  • Authenticate and authorize restaurant staff and enforce role-based access.
  • Process subscriptions and one-time hardware charges; maintain billing records.
  • Secure the Services (fraud and abuse prevention, anti-bot measures such as reCAPTCHA).
  • Monitor service health, fix bugs, and improve quality (e.g., through error logs).
  • Provide support and communicate about updates, material changes, and service notices.
  • Comply with legal obligations and enforce our agreements.

5. Disclosures and Sharing

We share information with:

  • Service providers and subprocessors assisting in hosting, messaging, logging, security, analytics, and payments (e.g., Google/Firebase, Stripe).
  • Restaurants receiving patron messages related to their tables/sessions.
  • Professional advisors and authorities where legally required or to protect rights, safety, and security.

We do not sell personal information.

6. Cookies and Local Storage

We use essential cookies and similar technologies strictly for functionality and security. Where the payment flow is used by staff, the app may temporarily store minimal data in sessionStorage to complete payment steps. SessionStorage clears when the browser tab closes. We do not deploy third‑party advertising cookies.

7. Data Retention

We retain information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. Patron messages and session metadata are retained as needed for operations and auditing; where available, restaurants may configure retention. Payment and billing records are retained as required by law and our accounting policies. Message data may be stored in logs or backups for limited periods to ensure delivery, service reliability, or compliance, and such data is not considered private communications between individuals.

8. Security

We implement industry-standard technical and organizational measures to protect information, including platform safeguards (e.g., Firebase protections), application-level controls, and anti-abuse mechanisms. No method of transmission or storage is completely secure.

9. International Transfers

If information is transferred across borders, we implement appropriate safeguards permitted by applicable law.

10. Children's Privacy

The Services are intended for general restaurant use and are not directed to children under 13 (or the age required by local law). We do not knowingly collect personal information from children. If you believe a child has provided information, contact us to request deletion.

11. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of your personal information, or request portability. Restaurant patrons seeking to exercise rights related to patron messages should generally contact the restaurant; we can support requests in our capacity as processor. For staff or direct account data, contact us at support@sivousplate.com.

12. Third-Party Services

Your use of third-party services integrated with the Services (e.g., Stripe payments, Google/Firebase infrastructure, reCAPTCHA anti-abuse) is subject to their terms and privacy policies. We encourage you to review those policies.

13. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted with a new "Last Updated" date and, where required, notified through the Services.

14. Contact

For questions or requests regarding this Policy or data protection, contact us at support@sivousplate.com.