We use cookies to remember: language, login session, your preferences

Privacy

Privacy Policy

Last updated: January 9, 2025

Data CollectionHow We Use DataData SharingYour RightsTransfers

Legal Framework

This Privacy Policy complies with the Law of Georgia on Personal Data Protection (2023), which entered into force on March 1, 2024. This law aligns with EU GDPR standards and is overseen by the Personal Data Protection Service of Georgia (PDPS).

1. Introduction

Tablify LLC ("we," "our," or "us") operates the tablify.ge website and mobile applications. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use our platform.

We are committed to protecting your privacy and processing your data lawfully, fairly, and transparently in accordance with Georgian data protection law.

2. Data Controller

Tablify LLC is the data controller responsible for your personal data. If you have questions about how we process your data, contact us at:

Tablify LLC

privacy@tablify.ge

Tbilisi, Georgia

3. Data We Collect

Information You Provide

  • Account Information: Name, email address, phone number when you create an account
  • Reservation Details: Date, time, party size, special requests, dietary requirements, and contact information
  • Payment Information: Credit card details for deposits (processed securely by certified payment partners, not stored by us)
  • Communications: Messages you send through our platform, AI assistant, or customer support

Information Collected Automatically

  • Usage Data: Pages visited, search queries, restaurants viewed, reservations made, and interaction patterns
  • Device Information: Browser type, operating system, IP address, device identifiers, and language settings
  • Location Data: With your explicit consent, approximate location to show nearby restaurants

4. Legal Basis for Processing

Under Georgian law, we must have a valid legal basis to process your personal data. We rely on the following:

  • Contract Performance: Processing necessary to provide our reservation services to you
  • Consent: For marketing communications, location data, and cookies (you can withdraw anytime)
  • Legitimate Interests: For fraud prevention, security, analytics, and platform improvement
  • Legal Obligation: When required by Georgian law or court order

5. How We Use Your Data

We use your personal data for the following purposes:

  • Process and manage your restaurant reservations
  • Send reservation confirmations, reminders, and updates
  • Provide customer support and respond to inquiries
  • Personalize your experience and recommend restaurants
  • Improve our platform, develop new features, and conduct analytics
  • Prevent fraud, ensure security, and detect misuse
  • Comply with legal obligations under Georgian law

6. Data Sharing

We share your data only when necessary:

  • Restaurants: We share reservation details (name, phone, party size, special requests) with restaurants where you book
  • Service Providers: We use third-party services for payment processing (TBC Bank, BOG), SMS delivery, email, and cloud hosting
  • Legal Requirements: We may disclose data when required by Georgian law, court order, or to protect our legal rights

We never sell your personal data to third parties for marketing or any other purpose.

7. Your Rights

Under the Law of Georgia on Personal Data Protection (2023), you have the following rights. We must respond to your requests within 10 working days.

  • Right to Access

    Obtain confirmation of whether we process your data, access your data, and receive information about processing purposes, categories, and recipients.

  • Right to Correction

    Request correction of inaccurate data or completion of incomplete data.

  • Right to Deletion

    Request deletion of your data. We will delete or anonymize your data within 10 working days unless we have a legal obligation to retain it.

  • Right to Restrict Processing

    Request that we limit how we use your data in certain circumstances.

  • Right to Data Portability

    Receive your data in a structured, commonly used format and transfer it to another controller.

  • Right to Object

    Object to processing based on legitimate interests, including profiling and direct marketing.

  • Right Against Automated Decisions

    Not be subject to decisions based solely on automated processing that significantly affect you.

To exercise your rights, contact us at privacy@tablify.ge. We will verify your identity and respond within 10 working days.

8. Consent and Withdrawal

Where we rely on your consent to process data (such as for marketing), you may withdraw consent at any time without giving a reason. Withdrawal does not affect the lawfulness of processing before withdrawal.

Georgian law requires: Withdrawal must be as easy as giving consent. We must stop processing and delete data within 10 working days of withdrawal. We will inform you of any consequences of withdrawal.

9. Direct Marketing

We only send marketing communications with your explicit consent. Under Georgian law, we may only use your name, email, phone, and address for direct marketing without additional consent.

You can opt out of marketing at any time by clicking "unsubscribe" in any email, replying STOP to SMS, or contacting us. We will stop marketing within 10 working days.

10. Data Security

We implement appropriate technical and organizational measures to protect your data, as required by Georgian law:

  • Encryption of data in transit (HTTPS/TLS) and at rest
  • Access controls limiting data access to authorized personnel only
  • Regular security assessments and penetration testing
  • Employee confidentiality obligations that continue after employment ends
  • Logging and monitoring of all data processing activities

11. Data Retention

We keep your data only as long as necessary for the purposes collected:

  • Account data: Until you delete your account, plus 30 days for backup recovery
  • Reservation history: 3 years for service improvement and legal compliance
  • Marketing consent records: 3 years after consent withdrawal for legal compliance

12. International Data Transfers

Your data is primarily stored and processed in Georgia. Some service providers may process data in other countries (e.g., cloud hosting, email services).

When data is transferred outside Georgia, we ensure appropriate safeguards are in place as required by Georgian law, including contracts with data protection clauses.

13. Cookies and Tracking

We use cookies and similar technologies to improve your experience:

  • Essential Cookies: Required for the platform to function (login, language preferences)
  • Analytics Cookies: Help us understand how you use the platform (with your consent)
  • Marketing Cookies: Used for personalized recommendations (with your consent)

14. Children's Privacy

Our platform is not intended for children under 16. We do not knowingly collect personal data from children under 16. Under Georgian law, a minor's consent to data processing is not valid if it harms their interests. If we discover we have collected data from a child, we will delete it immediately.

15. Complaints and Supervisory Authority

If you believe your data protection rights have been violated, you have the right to file a complaint with the Personal Data Protection Service of Georgia (PDPS):

Personal Data Protection Service of Georgia

pdps.ge

Tbilisi, Georgia

16. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will notify you of material changes by email and by posting the updated policy on our platform at least 14 days before changes take effect.

17. Contact Us

For questions about this Privacy Policy or to exercise your data rights, contact our Data Protection contact:

Data Protection Contact

privacy@tablify.ge

+995 32 505 0500

Tbilisi, Georgia

Related Documents

Terms of ServiceContact Us