Register Log in

Privacy Policy

Last updated

OpenEats is a restaurant reservation and food ordering platform. This policy explains what personal information we collect, why we collect it, and how you can manage it.

Information we collect

When you create an account, we collect:

  • Your name, email address, and password (stored as a secure hash)
  • Language preference detected from your browser
  • Display preferences such as color scheme and reduced motion settings

When you make a reservation, we collect:

  • Your name, email address, and phone number
  • Reservation details including date, time, and party size
  • Optional information you choose to provide, such as the occasion and special requests (e.g., dietary needs or allergies)

We also collect technical data automatically:

  • IP address and browser information included in server logs
  • Session identifiers stored in cookies to keep you logged in

How we use your information

  • To process and manage your restaurant reservations
  • To send you transactional emails: reservation confirmations, updates, cancellations, and login links
  • To share your reservation details with the restaurant you booked
  • To authenticate your account and protect against unauthorized access

Special requests and dietary information

If you provide dietary needs, allergies, or other special requests, this information may be considered health-related data. We only use it to communicate your needs to the restaurant for your specific reservation. It is shared solely with the restaurant where you booked and is subject to the same retention and deletion policies as your other reservation data.

Cookies and local storage

We use the following to operate the platform:

  • Session cookie — keeps you logged in during your visit (essential)
  • Remember-me cookie — keeps you logged in for up to 14 days if you opt in (functional)
  • Local storage — stores your color scheme and reduced motion preferences so they apply instantly on page load (functional)

We do not use any advertising or analytics tracking cookies.

Third-party services

  • Google Fonts — we load typefaces from Google's servers, which may receive your IP address
  • Email delivery provider — transactional emails are sent through a third-party service that processes your email address
  • Reserve table — if you book through Google, your reservation data is shared between Google and OpenEats

Data retention

Each restaurant configures its own reservation data retention period. After this period, completed, cancelled, and no-show reservation records are anonymized: your name, email, phone number, and special requests are permanently removed.

Authentication tokens (login links, session tokens) are automatically deleted once they expire.

Your account data is retained until you delete your account.

Your rights

You can exercise the following rights from your account settings:

  • Access and correction — view and update your name, email, and preferences from your account settings at any time
  • Data export — download a copy of your personal data in a machine-readable format
  • Account settings — permanently delete your account and associated data. Existing reservation records held by restaurants will be unlinked from your account.

Data security

We protect your data with HTTPS encryption in transit, secure password hashing, CSRF protection, signed session tokens, and strict access controls. Staff at each restaurant can only view reservations at their own locations.

Contact

If you have questions about this privacy policy or want to exercise your rights, contact us at support@getopeneats.com.