Brand

Smart Dining

Skip to policy content

LegalTrust & data

Privacy Policy

How Smart Dining handles personal information across our websites, mobile experiences, and restaurant software—written for operators, staff, and guests.

Effective April 5, 2026 Version 2.0

Document summary

We process data to run hospitality software for restaurants. We do not sell personal information. Restaurants remain responsible for their guest relationships and lawful use of the platform.

Last updated: April 5, 2026

On this page

Important

This policy is provided for transparency and usability. It is not personalized legal advice. Depending on your role (guest, restaurant staff, or account owner), different parts of Smart Dining apply—and restaurants may have their own notices for their guests.

Introduction & scope

Smart Dining (“Smart Dining,” “we,” “us,” or “our”) provides software and related services that help restaurants operate—reservations, waitlists, orders, menus, guest engagement, reporting, and integrations with tools restaurants already use.

This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit our marketing websites, use our applications, communicate with us, or interact with services we host on behalf of a restaurant customer.

If you are an end guest of a restaurant, that restaurant is often the primary decision-maker for how your reservation or order data is used. We process guest information as a service provider to the restaurant, subject to our agreement with them and applicable law.

Definitions

  • Services — our websites, cloud software, APIs, and related support.
  • Restaurant customer — the business entity that subscribes to or licenses Smart Dining.
  • Personal information — information that identifies or relates to an identifiable individual.
  • You — visitors, restaurant personnel, account administrators, or guests where this policy applies.

Information we process

Depending on how you use Smart Dining, we may process the following categories:

CategoryExamples
Account & businessCompany name, billing contacts, plan details, tax identifiers where required.
Identity & accessName, work email, phone, role, credentials, security logs, MFA signals.
Operational & guestReservations, waitlists, seating, orders, menu interactions, notes entered by the restaurant, marketing consents captured by the restaurant.
PaymentLimited payment-related data as needed to process transactions (often handled by payment partners).
Device & usageIP address, device type, browser, approximate location, diagnostics, product analytics.
Support & communicationsMessages you send us, call recordings if offered and permitted, feedback.

Sources

We collect personal information from:

  • You, when you register, use the Services, or contact us
  • Restaurant customers and their authorized users who enter data into Smart Dining
  • Integrated third-party systems where the restaurant enables a connection
  • Automatic technologies such as cookies and similar tools on our sites

Purposes & legal bases

We use personal information to:

  • Provide, secure, and improve the Services (contract / legitimate interests)
  • Authenticate users, prevent fraud, and protect the platform (legitimate interests / legal obligation)
  • Communicate about service, security, and policy updates (contract / legitimate interests)
  • Analyze usage in aggregate or de-identified form to improve reliability and UX (legitimate interests)
  • Comply with law and respond to lawful requests (legal obligation)
  • Send marketing where permitted and with appropriate consent or opt-out rights

Where GDPR or similar frameworks apply, we rely on the bases noted in parentheses above, as appropriate for the specific processing activity.

Sharing & subprocessors

We do not sell personal information. We may disclose information to:

  • Service providers that host infrastructure, deliver email/SMS, process payments, provide analytics, or assist security monitoring—under contractual confidentiality and data protection terms
  • Restaurant customers and their authorized users, as part of operating their account
  • Professional advisors where legally necessary
  • Authorities when required by law or to protect rights, safety, and integrity
  • Business transfers in connection with a merger, acquisition, or asset sale, subject to appropriate safeguards

An up-to-date list of critical subprocessor categories is available on request for enterprise customers and may be referenced in your order form or data processing addendum.

International transfers

We may process and store information in the United States and other countries where we or our service providers operate. Where required, we use appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.

Security

We implement administrative, technical, and organizational measures designed to protect personal information, including access controls, encryption in transit where appropriate, monitoring, and vendor reviews. No method of transmission or storage is completely secure; we encourage strong passwords, MFA where available, and prompt reporting of suspected incidents.

Retention

We retain personal information for as long as necessary to provide the Services, meet legal, tax, and accounting requirements, resolve disputes, and enforce agreements. Retention schedules may differ by data category; restaurant customers may have tools to delete or export certain operational data subject to their policies and applicable law.

Your privacy rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing, and to data portability. You may also withdraw consent where processing is consent-based.

To exercise rights related to data held by a restaurant (for example, a reservation you made as a diner), please contact that restaurant directly. We will assist our customers as required by law.

EU/UK residents may lodge a complaint with a supervisory authority. We welcome the chance to resolve issues with you first—see Contact below.

U.S. state privacy notices

Several U.S. states provide residents with additional rights regarding personal information (for example, access, deletion, correction, opt-out of certain “sales” or “sharing,” and appeal processes). Smart Dining does not sell personal information for money. Where targeted advertising or analytics cookies could constitute “sharing” under state law, we work to offer appropriate controls and honor recognized opt-out signals where required.

If you are a California resident, you may have rights under the CCPA/CPRA, including the right to know, delete, and correct certain information, and to limit use of sensitive personal information where applicable. Authorized agents may submit requests in line with verification requirements.

Cookies & similar technologies

We use cookies and similar technologies for essential operation, preferences, analytics, and—where allowed—marketing measurement. You can control many cookies through your browser settings and, where provided, our cookie preference tools.

  • Strictly necessary — security, load balancing, session integrity
  • Functional — remember choices such as language
  • Analytics — understand usage and improve performance
  • Marketing — measure campaigns where enabled

Marketing communications

We may send product updates and event invitations where permitted. You can opt out of promotional emails via the unsubscribe link or by contacting us. Transactional and security messages may continue as needed to operate your account.

Children

The Services are not directed to children under 16, and we do not knowingly collect personal information from children for marketing. If you believe we have collected information from a child in error, contact us and we will take appropriate steps.

Restaurant responsibilities

Restaurant customers are responsible for lawful collection and use of guest data, including notices, consents, staff training, and responding to guest rights requests for data they control. Smart Dining provides tools and documentation to support those obligations but does not replace independent legal counsel.

Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised version on this page and update the “Last updated” date. Where changes are material, we will provide additional notice as appropriate (for example, email or in-product message).

Contact us

For privacy questions, data protection requests, or security reports:

General inquiries
info@smartdining.com
Company
Smart Dining

For the fastest response on guest-specific requests, please contact the restaurant where you dined or booked—they are often the data controller for reservation and order details.

See also our Terms of Use for contractual terms governing use of the Services.

px