EateryHub

Privacy Policy

Last updated: March 27, 2026

1. Who we are

EateryHub ("we", "our", or "us") provides an online restaurant reservation and form-builder platform. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our website and services.

2. Information we collect

Account information: When you sign up as a restaurant owner or team member, we collect your name, email address, and password (hashed).

Restaurant data: Details you provide about your restaurant — name, address, cuisine type, business hours, menu items, and branding assets.

Guest reservation data: When guests book through your EateryHub booking page, we collect their name, email address, phone number, party size, date/time preference, and any special requests they submit. This data is stored on behalf of the restaurant operator.

Usage data: We collect standard server log data including IP addresses, browser type, pages visited, and timestamps to operate and improve our service.

Cookies: We use session cookies to keep you logged in. We do not use third-party advertising cookies.

3. How we use your information

  • To provide, maintain, and improve our platform
  • To send reservation confirmations, reminders, and transactional emails to guests (on behalf of the restaurant)
  • To notify restaurant owners of new bookings and cancellations
  • To process subscription payments and send invoices
  • To respond to support requests
  • To detect and prevent fraud or abuse

4. Sharing your information

We do not sell your personal data. We may share it with:

  • Supabase — our database and authentication provider (EU/US data centres)
  • Resend — our transactional email provider
  • Stripe — our payment processor (for subscription billing)
  • Vercel — our hosting and edge-function provider
  • Law enforcement or regulators when required by law

5. Data retention

We retain your account data for as long as your account is active. Reservation data is retained for up to 3 years to support analytics and audit logs. You may request deletion of your data at any time by contacting us.

6. Security

All data is encrypted in transit (TLS 1.3) and at rest. We use row-level security (RLS) in our database to ensure each restaurant can only access its own data. Passwords are hashed and never stored in plain text.

7. Your rights

Depending on your location, you may have rights to access, correct, delete, or export your personal data. To exercise these rights, contact us at privacy@eateryhub.io.

If you are in the EEA or UK, you also have the right to lodge a complaint with your local data protection authority.

8. Children's privacy

Our service is not directed to children under 16. We do not knowingly collect personal data from children.

9. Changes to this policy

We may update this policy from time to time. We will notify registered account holders of material changes by email at least 14 days before they take effect.

10. Contact

Questions? Email us at privacy@eateryhub.io.