Legal

Privacy Policy

Effective date: May 22, 2026

SeatedIQ ("we", "us", or "our") operates the SeatedIQ restaurant guest management platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service. Please read it carefully.

Contents
  1. 1. Information We Collect
  2. 2. How We Use Your Information
  3. 3. Restaurant Guest Data
  4. 4. How We Share Information
  5. 5. SMS & Marketing Communications
  6. 6. Data Retention
  7. 7. Security
  8. 8. Your Rights
  9. 9. Children's Privacy
  10. 10. Changes to This Policy
  11. 11. Contact Us

1. Information We Collect

We collect information in three ways:

Information you provide directly

  • Account data: name, email address, password, restaurant name, address, phone number, and website when you register.
  • Billing data: payment method details processed by Stripe. We never store raw card numbers.
  • Communications: messages you send us via the contact form or email.

Guest data you manage through the platform

As a restaurant operator, you may upload or collect guest names, email addresses, phone numbers, reservation history, dietary notes, and spend data. You are the data controller for this information; SeatedIQ processes it on your behalf as a data processor.

Automatically collected data

  • Usage data: pages visited, features used, session duration, and click patterns.
  • Device & log data: IP address, browser type, operating system, and referring URLs.
  • Cookies: session cookies required for authentication and optional analytics cookies.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the SeatedIQ platform.
  • Process subscription payments and send billing receipts.
  • Send transactional emails (password reset, trial reminders, usage alerts).
  • Send our newsletter and product updates — only if you opted in. You may unsubscribe at any time.
  • Respond to your support requests and feedback.
  • Monitor for security incidents, abuse, and fraudulent activity.
  • Comply with legal obligations.

We do not use your data or your guests' data to train AI models or sell advertising.

3. Restaurant Guest Data

SeatedIQ provides tools for restaurants to manage their guest relationships. When you use these tools, you act as the data controller for your guests' personal information, and SeatedIQ acts as your data processor.

As a restaurant operator you are responsible for:

  • Obtaining necessary consents from your guests before collecting their data.
  • Complying with applicable laws including GDPR, CCPA, TCPA, and CAN-SPAM when sending marketing messages.
  • Honoring your guests' requests to access, correct, or delete their personal data.

We process guest data only as directed by you and will not use it for any other purpose.

4. How We Share Information

We do not sell your personal data or your guests' personal data. We share data only in these limited circumstances:

  • Service providers: vendors who help operate the platform under confidentiality obligations — Stripe (billing), Twilio and Telnyx (SMS/voice), Resend (transactional email), and cloud infrastructure providers.
  • Third-party integrations you enable: when you connect to reservation platforms, data is exchanged according to those platforms' terms.
  • Legal requirements: when required by law, court order, or governmental authority.
  • Business transfers: in the event of a merger or acquisition, we will notify you before data is transferred.

5. SMS & Marketing Communications

When you use SeatedIQ to send SMS messages to your guests, you are responsible for compliance with the Telephone Consumer Protection Act (TCPA) and all applicable messaging laws. You must have proper consent from each recipient before sending automated messages.

For marketing messages we send to you (product updates, newsletters), we obtain your explicit consent at signup. You may opt out at any time by clicking the unsubscribe link in any email or by emailing privacy@seatediq.com.

6. Data Retention

We retain your account data for as long as your account is active. When your subscription ends:

  • Your data remains accessible for 30 days after cancellation.
  • After 30 days, data enters a deactivated state and is retained for a further 60 days to allow reactivation or export.
  • After 90 days total, all data is permanently deleted, except records required for legal or accounting purposes.

You may export your guest list, reservation history, and message logs at any time from your account settings.

7. Security

We implement industry-standard security measures including TLS encryption for data in transit, encryption at rest for sensitive fields, hashed and salted passwords, and role-based access controls. If you believe your account has been compromised, contact us immediately at security@seatediq.com.

8. Your Rights

Depending on your location, you may have rights to access, correct, delete, or port your personal data; to object to processing; or to withdraw consent. To exercise these rights, email privacy@seatediq.com. We will respond within 30 days.

9. Children's Privacy

SeatedIQ is a business-to-business service intended for restaurant operators. We do not knowingly collect personal information from anyone under 18. If we become aware that a minor has provided us data, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and by posting a notice on our platform at least 14 days before the changes take effect.

11. Contact Us

Questions about this Privacy Policy? Contact us:

  • Email: privacy@seatediq.com
  • Mailing address: SeatedIQ, Privacy Team, [Address on file]