Legal
Privacy Policy
Effective date: 17 June 2026
Reservable is operated by Jomadic OÜ ("5 Tornimäe tänav, 10145, Tallinn, Harju maakond, Estonia"). This Privacy Policy explains how we collect, use, disclose, and protect information when you use our restaurant reservation management platform and related services (collectively, the "Service"). By using the Service, you agree to the practices described in this policy.
1. Who We Are
Jomadic OÜ is the data controller for personal data processed through the Reservable platform. We are a digital solutions company providing online reservation management software to restaurants and hospitality businesses.
Registered address: 5 Tornimäe tänav, 10145, Tallinn, Harju maakond, Estonia.
Contact: info@reservable.app
2. Information We Collect
We collect the following categories of personal data:
- Restaurant accounts: business name, owner name, email address, phone number, Google Maps URL, logo, and restaurant branding assets.
- Guest reservations: guest name, email address, phone number, party size, date and time of reservation, and any special requests or notes provided at booking.
- Billing information: subscription plan details. Payment card data is handled directly by Stripe and is never stored on our servers.
- Usage data: IP address, browser type, device information, pages visited, and interaction logs for security and service improvement.
- Demo requests: name, restaurant name, Google Maps URL, and email address submitted via the Request Demo form.
3. How We Use Your Information
We use collected information to:
- Provide, operate, and maintain the Reservable platform.
- Process and manage restaurant reservations on behalf of our restaurant clients.
- Send reservation confirmation, reminder, and management emails to guests.
- Process subscription billing and manage restaurant accounts.
- Respond to support enquiries and demo requests.
- Improve, personalise, and expand our Service.
- Detect, prevent, and address technical issues or fraudulent activity.
- Comply with applicable legal obligations.
4. Legal Basis for Processing (GDPR)
For users in the European Economic Area (EEA), we process personal data under the following legal bases:
- Contract performance: to provide the Service to restaurant subscribers and to process reservations for their guests.
- Legitimate interests: for security, fraud prevention, and improving our platform.
- Legal obligation: where required to comply with applicable laws.
- Consent: where you have explicitly opted in, such as for marketing communications.
5. Sharing Your Information
We do not sell your personal data. We may share data with trusted third-party service providers who assist us in operating the Service, subject to confidentiality agreements:
- Stripe: payment processing and subscription billing.
- Firebase / Google Cloud: authentication, database, and file storage.
- Resend: transactional email delivery (reservation confirmations, reminders).
- Vercel: cloud hosting and infrastructure.
We may also disclose data where required by law or to protect the rights, property, or safety of Jomadic OÜ, our clients, their guests, or the public.
6. Data Retention
We retain personal data for as long as necessary to fulfil the purposes described in this policy or as required by law. Specifically:
- Restaurant account data is retained for the duration of the subscription and up to 90 days after cancellation.
- Reservation records are retained for up to 2 years to support operational and support needs.
- Billing records are retained for 7 years for tax and accounting compliance.
7. Cookies and Tracking
We use cookies and similar technologies for authentication, session management, and basic analytics. Essential cookies are required for the Service to function and cannot be disabled. We do not use third-party advertising or tracking cookies.
8. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. All data is transmitted over HTTPS. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.
9. International Transfers
Jomadic OÜ is registered in Estonia (EU). Data may be processed by our sub-processors in jurisdictions outside the EEA (e.g. the United States). Where such transfers occur, we rely on standard contractual clauses or other lawful transfer mechanisms under the GDPR.
10. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access: request a copy of the data we hold about you.
- Rectification: request correction of inaccurate data.
- Erasure: request deletion of your data under certain conditions.
- Restriction: request that we limit processing of your data.
- Portability: receive your data in a structured, machine-readable format.
- Objection: object to processing based on legitimate interests.
To exercise any of these rights, contact us at info@reservable.app. We will respond within 30 days.
11. Children's Privacy
The Service is intended for use by business operators (restaurants) and adults making reservations. We do not knowingly collect personal data from children under the age of 16. If we become aware that a child has provided personal data, we will delete it promptly.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify restaurant account holders of material changes by email or by posting a notice on the dashboard. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.
13. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact:
Jomadic OÜ5 Tornimäe tänav, 10145, Tallinn, Harju maakond, Estonia
Email: info@reservable.app