Privacy Policy

Last updated: 20 April 2026

1. Introduction

TablesTap ("we", "our", or "us") is committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our restaurant management platform. This policy is in compliance with the Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 of India.

2. Information We Collect

We collect information that you provide directly to us when you use our Services:

  • Google Account Information: When you sign in with Google, we receive your name, email address, and profile picture from Google OAuth 2.0.
  • Booking Information: Name, mobile number, and booking preferences when you make a table reservation.
  • Payment Information: Transaction IDs and payment status through Razorpay (we do not store your card or UPI details).
  • Restaurant Data: For restaurant owners — restaurant name, GST number, FSSAI licence number, address, and location coordinates.
  • Usage Data: Order history, table preferences, and interaction logs for improving our services.

3. How We Use Your Information

  • To provide, operate, and maintain our platform
  • To process table bookings and payments through Razorpay
  • To send booking confirmations and order updates
  • To generate GST-compliant bills and reports
  • To authenticate users and maintain account security
  • To comply with legal obligations under Indian law including GST regulations

4. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share data with:

  • Razorpay: For processing payments. Subject to Razorpay's privacy policy.
  • Google: Authentication is handled via Google OAuth. Subject to Google's privacy policy.
  • Restaurant Owners: Your booking name and mobile number are shared with the restaurant for reservation management.
  • Legal Authorities: As required by Indian law, court orders, or government regulations including GST authorities.

5. Data Security

We implement industry-standard security measures including encrypted connections (HTTPS/TLS), secure session management, and access controls. However, no method of transmission over the internet is 100% secure. We comply with the IT Act 2000 security standards for protecting sensitive personal data.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. GST-related billing records are retained for a minimum of 7 years as required under the CGST Act, 2017. You may request deletion of your account data by contacting us.

7. Your Rights

Under Indian law and our policy, you have the right to:

  • Access your personal data we hold
  • Correct inaccurate personal data
  • Request deletion of your account and associated data
  • Withdraw consent for data processing (may limit service functionality)

8. Cookies

We use essential cookies for authentication session management (via NextAuth.js) and preference storage. We do not use advertising cookies or tracking cookies.

9. Contact Us

For privacy-related queries or to exercise your rights, contact us at: mailtortcal@gmail.com