EEA / UK / CH Data Rights Addendum

Controllers and processors

Smart Dining LLC acts as a controller for platform account data, security logs, and cross-venue analytics that we determine. For certain processing on documented Restaurant instructions (for example, transmitting guest details to a venue’s inbox), we may act as a processor; Restaurants act as controllers for their operational use of guest data.

When we transfer personal data from the EEA, UK, or Switzerland to the United States or other countries, we rely on appropriate safeguards such as the EU Standard Contractual Clauses, UK Addendum, or other mechanisms approved by regulators.

Your GDPR rights

You may request access, rectification, erasure, restriction, portability, and objection under conditions set out in Articles 15–22 GDPR. You may withdraw consent without affecting the lawfulness of processing based on consent before withdrawal.

You may lodge a complaint with your local supervisory authority. We prefer you contact us first so we can resolve issues quickly.

Legal bases reference

Contract: account creation, reservations, orders, and payments. Legitimate interests: fraud prevention, product analytics with minimization, and network security. Consent: optional marketing and non-essential cookies where required. Legal obligation: tax, financial crime, and lawful requests.

Automated decision-making

We do not use solely automated decision-making that produces legal or similarly significant effects without human review, except where authorized by law and disclosed in advance. Fraud systems may trigger manual review.

Contact (EEA/UK/CH)

privacy@gosmartdining.com. You may also contact our EU/UK representative if one is appointed on our website for your region.