This privacy policy describes how Tableflo ("we", "us", "our") collects, uses, and protects information when you use our restaurant automation services. We take privacy seriously, both for our restaurant clients and for the guests they serve.
We collect three categories of information:
We use this information solely to operate the Tableflo service: to handle calls, take reservations, send confirmations, process deposits, generate proposals, and provide reporting to authorised users at the restaurant.
Calls handled by the Tableflo AI host may be recorded for quality assurance and dispute resolution. Recordings are retained for a limited period and accessible only to authorised restaurant staff and Tableflo personnel.
We share data with the limited subprocessors required to deliver the service: hosting (Railway, Netlify), database (Supabase), email delivery (Resend), payments (Stripe), telephony and voice (Retell), and SMS providers. Each is bound by data processing agreements.
We use industry-standard practices: TLS in transit, encrypted databases, role-based access controls, and audit logging. Despite our efforts, no system is perfectly secure — we will notify affected parties promptly in the event of a breach.
You may request access to, correction of, or deletion of personal information held about you by contacting us at the email below. Restaurant clients may export their guest database at any time from the dashboard.
Tableflo is operated from Canada. Data may be processed by our subprocessors in other jurisdictions, including the United States and the European Union, with appropriate safeguards in place.
Tableflo is not intended for use by individuals under the age of 16. We do not knowingly collect data from minors.
We may update this policy from time to time. Material changes will be communicated to active customers by email.
Questions or requests? Email us at tableflo.ai@gmail.com.