Privacy Policy

This privacy policy (this “Policy”) explains how Tablelist, Inc. (“Tablelist” or “we”) collects, uses, processes, stores, and discloses Personal Data in connection with your access to or our provision of the Sites. This Policy applies to consumer users (individually referred to as “you”) of Tablelist’s websites, applications, and other online services (collectively, our “Sites”).

Other third parties, including without limitation, such venues at which you make reservations through our Sites, and social networks that you use in connection with our Sites, may also collect, use, and share information about you. This Policy does not cover such third parties or their services, but does cover our disclosure of your Personal Data to our service providers or the venues with whom we engage in connection with providing the services. For information about third-party privacy practices, please consult with them directly.

INFORMATION WE COLLECT

We collect information about you in various ways when you use our Sites. We use this information to, among other things, provide the functionality and improve the quality of our Sites, personalize your experience, directly market our Sites and other service or product offerings to you, communicate with you regarding our Sites and other service or product offerings, ensure the safety and security of the Sites, and monitor for fraudulent or other illegal activity. For example, we may collect your name, email address, postal address, phone number (including your mobile phone number), billing and payment information, survey responses, demographics, primary dining city, current and prior reservation details, favorite venues, special venue requests, passwords, contact information of people you add to, or notify of, your venue reservations through our Sites, and other information you provide on our Sites. If you use our mobile application, either to make reservations or to pay a venue, we may also collect your mobile device ID, your precise location data, and the venue search locations you select. For certain services on our Sites, credit or debit card account information are required, as further described in the section called “Payment Card Information” below. We may also obtain information from other sources, such as third-party websites, applications, and services (each, a “Third-Party Platform”), through which you connect with our Sites and combine that with information we collect on our Sites. The foregoing information, as well as information such as your name, identification number, location data, or an online identifier, and information specific to your physical, physiological, genetic, mental, economic, cultural, or social identity, is referred to in this Policy as “Personal Data”.

When you visit our Sites, some information is automatically collected. For example, when you visit our Sites, we may automatically collect your location, computer operating system, Internet Protocol (IP) address, access times, browser type and language, and the website you visited before our Sites. We also collect information about your usage and activity on our Sites using certain technologies, such as:

Cookies. We may automatically collect information using “cookies” and similar technology. Cookies are small data files that may have unique identifiers and reside, among other places, on your computer or mobile device, in emails we send to you, and on our web pages. Among other things, cookies help us improve our Sites and your experience. We use cookies to see which areas and features of our Sites are popular and to count visits to our Sites. We may access information contained in cookies placed on your device by a Third-Party Platform as permitted by the terms of your agreement and privacy settings with such Third-Party Platform. We may share this information with the Third-Party Platform for its use as permitted by the terms of your agreement and privacy settings with such Third-Party Platform.

Web Beacons. We may collect information using web beacons. Web beacons are electronic images that may be used on our Sites or in our emails. We use web beacons to deliver cookies, count visits, understand usage and campaign effectiveness, and tell whether you open an email and act upon it.

Do-Not-Track Signals. We currently do not employ technology that recognizes “do-not-track” signals from your browser. We may engage third parties, such as marketing or analytics partners, who may collect information about your online activities over time and across different websites when you use our Sites.

HOW WE USE INFORMATION WE COLLECT

We use Personal Data collected through our Sites for the purposes described in this Policy. For example, we may use your information to:

make and change your venue reservations made through our Sites;
offer you, or provide you with, other products and services through our Sites;
operate and improve our Sites, products, and services;
understand you and your preferences to enhance, personalize, and customize your experience and enjoyment using our Sites, products, and services, such as understanding your dining history to make recommendations about other venues you may like. In connection with such collection we may use automated processing techniques, in combination with manual decision making, to make certain determinations about you and your preferences. If you have any questions pertaining to our use of automated processing techniques, please contact us at help@tablelist.com;
process and deliver contest entries and rewards;
display relevant advertising;
respond to your comments and questions and provide customer service;
send you information relating to our products and services, including reservation confirmations, receipts, technical notices, updates, security alerts, and support and administrative messages;
communicate with you about contests, offers, promotions, rewards, upcoming events, and other news about products and services offered by Tablelist, our subsidiaries, and affiliates; select venues; and our other selected partners;
link or combine with other Personal Data we get from third parties to help understand your needs and provide you with better service;
authenticate your credit or debit card account information; and
protect, investigate, and deter against fraudulent, unauthorized, or illegal activity.

By providing your mobile phone number, you expressly consent to receive direct dial calls, autodialed and prerecorded message calls, and text messages from us relating to our product and services at that number.

HOW WE SHARE INFORMATION

Information Shared With Venues. When you make a venue reservation through our Sites, portions of your Personal Data is provided to us and to the venues at which you choose to reserve tables. In order to facilitate your reservation, portions of your Personal Data is provided to that venue, just as it would if you made a reservation by calling the venue, emailing the venue, or using the venue’s website, including your name, phone number, address, e-mail address, and dining preferences. If you provide a mobile phone number, venues may send you text messages regarding your reservation. When you make a venue reservation through our Sites and make a payment to a venue through our Sites, we may also share with the venues additional information, such as information about your dining preferences and history or information that we collect via Third-Party Platforms. You also have the option of indicating special preferences or providing comments about your reservation that Tablelist will pass on to that venue. We may share with venues summary reports of feedback from users. Information you choose to share with a venue when you make a reservation and/or pay a venue through our Sites may be used by the venue for its own purposes. Tablelist does not control the privacy practices of venues. Please contact the venue directly for more information about its privacy practices. We contractually obligate the venues with which we share your Personal Data to use such information for the sole purpose of the venue providing services to you.

Payment Card Information. To use certain services on our Sites, we require credit or debit card account information. By submitting your credit or debit card account information through our Sites, you expressly consent to the sharing of your information with venues, third-party payment processors, and other third-party service providers that we engaged to provide the Sites and monitor and maintain the Sites (including but not limited to vendors who provide fraud detection services to us and other third parties), and you further agree to the following terms.

When you use a credit or debit card to secure a reservation through our Sites, we provide your credit or debit card account information (including card number and expiration date, but excluding the CVV number) to our third-party payment service providers and the applicable venue.

When you initially provide your credit or debit card account information through our Sites in order to use our venue payment services, we provide your credit or debit card account information to our third-party payment service providers. As explained in the Tablelist Terms of Use, these third parties may store your credit or debit card account information so you can use our venue payment services through our Sites in the future.

For information about the security of your credit or debit card account information, see Section called “Security of Your Personal Data” below.

Information You Share Socially. Our Sites may allow you to connect and share your actions, comments, content, and information publicly or with friends. Our Sites may also allow you to connect with us on, share on, and use Third-Party Platforms, including those on which Tablelist has a presence.

Please be mindful of your personal privacy needs and the privacy needs of others as you choose whom to connect with and what to share and make public. We cannot control the privacy or security of information you choose to make public or share with others. Tablelist also does not control the privacy practices of Third-Party Platforms. Please contact those sites and services directly if you want to learn about their privacy practices.

Sharing with Others. We do not share your Personal Data with third parties other than as described above and as follows:

We may share Personal Data when you authorize us to share your information with other third parties (such as the venues at which you make reservations through our Sites) for their own marketing purposes, which are subject to the separate privacy policies of such third parties.

We may share Personal Data with affiliates, third-party vendors, consultants, and other service providers who work for us. Such third-party vendors may include vendors who provide fraud detection services to us and other third parties.

We may share your credit or debit card account information with third parties as described in the section called “Payment Card Information” above.

We may share aggregate statistical data for the improvement of services offered by our Sites.

We share Personal Data with third parties who provide services to us, such as data collection, reporting, ad response measurement, and site analytics, as well as assistance with delivery of relevant marketing messages and advertisements. These third parties may view, edit, or set their own cookies. We and our third-party service providers, advertisers, and/or partners may also place web beacons for these third parties. The use of these technologies by these third parties is subject to their own privacy policies and is not covered by this Policy.

We may disclose your Personal Data (i) to comply with laws and to respond to lawful requests and legal process, (ii) to protect the rights and property of Tablelist, our agents and customers, and others, including to enforce our agreements, policies, and terms of use, and (iii) in an emergency to protect the personal safety of Tablelist, its customers, or any person.

We may disclose or transfer your Personal Data to a third party if we sell, transfer, divest, or disclose all or a portion of our business or assets to another company in connection with or during negotiation of any merger, financing, acquisition, bankruptcy, dissolution, transaction, or proceeding.We may also share aggregated or de-identified information with third parties in our discretion.

SECURITY OF YOUR PERSONAL DATA

Tablelist employs appropriate technical and organizational measures to help protect your Personal Data in an effort to prevent loss, misuse, unauthorized access, disclosure, alteration, and destruction. When your credit or debit card account information is being transmitted to our Sites or through our Sites, it will be protected by encryption technology, such as Secure Sockets Layer (SSL). To be clear, Tablelist does not itself store your credit or debit card account information, and we do not have direct control over or responsibility for your credit or debit card account information. Our contracts with third parties that receive your credit or debit card account information require them to keep it secure and confidential and to use such information solely to provide the services for which we engage them.

Nonetheless, we cannot guarantee that transmissions of your credit or debit card account information or Personal Data will always be secure or that unauthorized third parties will never be able to defeat the security measures taken by Tablelist or our third-party service providers. We assume no liability or responsibility for disclosure of your information due to errors in transmission, unauthorized third-party access, or other causes beyond our control. You play an important role in keeping your Personal Data secure. You should not share your user name, password, or other security information for your Tablelist account with anyone. If we receive instructions using your user name and password, we will consider that you have authorized the instructions.

YOUR INFORMATION CHOICES AND CHANGES

You may opt out of receiving promotional emails from Tablelist by following the instructions in those emails. If you opt out, we may still send you non-promotional emails, such as emails about your Tablelist account or our ongoing business relations. You may also send requests about your contact preferences or changes to your information, including requests to opt out of sharing your Personal Data with third parties, or requests to update, change, or alter any Personal Data or other information that we have about you, to our contact information below.

Cookie choices. Most web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove cookies and to reject cookies. If you choose to remove cookies or reject cookies, this could affect certain features or services of our Sites.

Application location choices. Most mobile devices allow you to turn off location services. For more information about how to do this, please contact your mobile service carrier or your device manufacturer. If you choose to turn off location services, this could affect certain features or services of our Sites.

Deleting your Personal Data. You have the right to request, at any time, Tablelist to delete or erase your account or any information contained in your account, or any other Personal Data that you have provided to us or that we have obtained from or about you.

CONTACTING TABLELIST

For questions about accessing, changing, updating, or deleting your Personal Data or other information, please  contact customer support at 617-340-8791 or send an email to hello@tablelist.com.

For questions or opinions on this Policy, please contact Tablelist via email at hello@tablelist.com or by postal mail at: Tablelist, Attn: Legal Department, 745 Atlantic Ave., Boston, MA 02110.

NOTICE TO CALIFORNIA RESIDENTS

Your California Privacy Rights (As Provided by California Civil Code Section 1798.83) A California resident who has provided personal information to a business with whom he/she has established a business relationship for personal, family, or household purposes (a “California Customer”) may request information about whether the business has disclosed personal information to any third parties for the third parties’ direct marketing purposes, subject to certain exceptions. In general, again, subject to certain exceptions, if the business has made such a disclosure of personal information, upon receipt of a request by a California Customer, the business is required to provide a list of all third parties to whom it disclosed personal information in the preceding calendar year, as well as a list of the categories of personal information that were disclosed. One of the exceptions allows Tablelist to provide California Customers a cost-free means to opt out of these disclosures instead of providing such list. Any customer may request to opt out of these disclosures by contacting Tablelist as described above. California Customers may also request further information about our compliance with this law by contacting us at our address above.

NOTICE TO RESIDENTS OF THE EUROPEAN UNION AND THE UNITED KINGDOM

If you are a resident of the European Union (“EU”) or the United Kingdom (“UK”), you may have additional rights, as detailed in this section. To process your Personal Data, we rely on the following legal bases: (i) pursuant to your consent, which is provided by acknowledging your agreement with our Terms of Service and this Privacy Policy when you sign up for our Sites (note that such consent is affirmatively given by clicking the applicable check boxes; we will never presume that you have provided consent); (ii) to perform the contract we have with you to provide the Sites; (iii) for compliance with legal obligations to which we are or to which we may become subject (including tax obligations, and requests from law enforcement agencies or other competent authorities with jurisdiction over us and our Sites); and (iv) for the purposes of our legitimate interests in providing the Sites to you, making suggestions to you regarding service offerings, venues, and other offerings, monitoring the Sites for fraud or misuse, and ensuring the functionality of our Sites.

To the extent that you have provided consent for us to process certain of your Personal Data, you may withdraw your consent at any time. To withdraw your consent, please follow the contact instructions set forth under the Section of this Privacy Policy titled “Contact”. You may also contact us at any time to request that we cease some or all of the processing of your Personal Data, whether or not such processing was the result of your specific consent or some other identified legal basis. It is your choice whether you share Personal Data with us, and it is your choice whether you revoke consent at any time or otherwise request us to cease processing your information. There is no legal consequence to you if your refrain from providing or otherwise revoke consent to our processing of your Personal Data. However, please note that our ability to provide the Sites and other services to you may be impacted if you do not share certain Personal Data with us in connection with your use of the Sites or other services.

You may request that we confirm whether or not we are processing your Personal Data, and you may request access at any time to your Personal Data over which we have control. You may also request information about our processing of Personal Data, including the type of Personal Data processed and the reasons for such processing. There are no costs to you associated with these requests; however we may charge reasonable fees for administrative costs for excessive or repetitive requests. You may request that we change, alter, amend, or update your Personal Data and you may request that we refrain from processing certain information if it is inaccurate or unlawfully held. You may request a copy of your Personal Data for transfer to another entity. You may also, at any time, request that we delete or erase your Personal Data, unless we are required by applicable law to retain such information or have other legitimate grounds for continuing to process your Personal Data. You may also object at any time to our use of your Personal Data to provide direct marketing. To exercise any of the rights described above, please follow the contact instructions under the Section of this Privacy Policy titled “Contact”.

CHANGES TO THIS POLICY

Tablelist may update or revise this Policy from time to time. You agree that you will review this Policy periodically. If we make any changes to this Policy, we will change the “Last Updated” date above. You are free to decide whether or not to accept a modified version of this Policy, but accepting this Policy, as modified, is required for you to continue using our Sites. If you do not agree to the terms of this Policy or any modified version of this Policy, your sole recourse is to terminate your use of our Sites.