Privacy Policy

This policy applies to guests and other end users of BOE consumer apps, visitors to our sites, and individuals who interact with BOE on behalf of restaurants or platform operators (for example, staff accounts in the admin experience).

Restaurants remain responsible for their own guest interactions in-venue and for information they collect outside BOE unless otherwise agreed.

Account and contact data: such as username, email address, phone number, country and dial codes, password (stored using industry-standard hashing—we do not store your password in plain text), profile image if you upload one, account status, and role (for example, guest user versus restaurant staff).

Authentication and security: session identifiers tied to your login, one-time verification codes sent to email or SMS for sign-in or password flows, device and request metadata commonly found in server logs (such as IP address, approximate location derived from IP, user agent, and timestamps), and fraud-prevention signals where enabled.

Taste profile and preferences: dietary preferences, preferred cuisines, optional budget range, favorites, and similar fields used to personalize discovery.

Bookings and dine-in experience: reservation identifiers, restaurant, date and time, party size, seating preference, special requests, occasions, menu items attached to a booking when pre-order is used, order and discount amounts, coupon codes applied, QR code data associated with check-in, and booking status history.

Payments: when you pay with a card, payment details are processed by Stripe; BOE typically receives limited payment metadata (such as payment identifiers, amounts, and status) rather than full card numbers. Wallet balances, wallet transactions linked to bookings or Stripe top-ups, and invoice or settlement fields visible to authorized operators may also be recorded to operate your account and partner payouts.

Communications and notifications: messages we send or surface in-product (for example booking confirmations, reminders, membership tier changes, coupon delivery, or review prompts) and your notification preference where the product exposes a toggle.

Support and inquiries: information you provide when you contact us, including through forms or email.

Admin and operations: restaurant profile content, menus, media, capacity configuration, and operational records created by authorized managers and platform administrators in the web admin.

We use personal information to provide and improve BOE: creating and securing accounts, authenticating you, personalizing restaurant discovery, processing and documenting bookings and pre-orders, generating booking QR codes, processing payments and wallet activity, applying coupons and loyalty tiers, sending service-related notifications, operating fraud prevention and security monitoring, troubleshooting, analytics in aggregate or de-identified form where appropriate, and complying with law.

Where required by law, we rely on an appropriate legal basis such as performance of a contract, legitimate interests that are not overridden by your rights, or consent for specific optional uses (for example certain marketing communications if separately consented).

With the restaurant you select: fulfilling a booking inherently requires sharing reservation details, pre-order contents, special requests, and payment status information with that venue and its authorized staff accounts.

With service providers: payment processing through Stripe; email and SMS delivery providers for authentication and transactional messages; cloud hosting, logging, and security vendors; and other subprocessors who process data on our instructions under contractual safeguards.

With platform operators: authorized BOE administrators may access operational data needed to configure restaurants, oversee bookings, manage users, and run invoicing or settlement workflows supported by the product.

For legal reasons: to comply with applicable law, respond to lawful requests, protect rights and safety, and enforce our agreements.

Business transfers: information may be transferred as part of a merger, acquisition, financing, or sale of assets, subject to standard confidentiality arrangements.

We do not sell your personal information as commonly understood under U.S. “sale” frameworks. We may use analytics tools that collect device or usage data according to their terms and your device settings.

We retain information for as long as needed to provide the Services, meet legal, tax, and accounting obligations, resolve disputes, and enforce agreements. Retention periods can vary by data category and jurisdiction; some records (such as invoices or payment-related logs) may be kept longer where required.

We implement administrative, technical, and organizational measures designed to protect personal information. No method of transmission or storage is completely secure; please use a strong, unique password and protect access to your devices.

BOE may process data in countries other than where you live, including where our servers or vendors operate. Where required, we use appropriate safeguards (such as standard contractual clauses) in addition to vendor agreements.

Depending on your location, you may have rights to access, correct, delete, or export certain information, to object to or restrict certain processing, to withdraw consent where processing is consent-based, and to lodge a complaint with a supervisory authority. You can manage some information directly in the app (for example profile or taste preferences) where supported.

To exercise privacy rights, contact us using the details on this site’s contact section. We may need to verify your request and will respond consistent with applicable law.

BOE is not directed to children under the age where parental consent is required in your region, and we do not knowingly collect personal information from those children. If you believe we have collected such information, contact us and we will take appropriate steps to delete it.

BOE may link to third-party sites or allow you to interact with restaurants that maintain their own policies. Their practices are governed by their notices, not this one.

We may update this Privacy Policy from time to time. We will post the revised version with a new effective date and, where appropriate, provide additional notice (such as an in-app message or email).

Questions about this Privacy Policy or BOE’s privacy practices can be sent through the contact options published on this website (replace placeholder contact details with your production addresses before launch).