This Privacy Notice aims to provide you with information on how we collect and process your personal data.
When you use our services, you share information with us and we wish to advise how we collect, use and with whom we share the information. For the purposes of data protection legislation, we are the data controller of your personal data.
Information collected by us
If you have contacted us directly or indirectly through a third party, we may have obtained your email address, telephone number, postal address and company details. We may have also obtained information about your business, customers and commercial activities.
In addition, our servers, and other technologies automatically retain information. We share personal information with others only as described in this policy, or when we believe that the law requires us to do so.
How we use your personal information
We use your information in several different ways.
Category of personal data
How do we use your information?
How long your personal information will be kept
We will hold on to your information for as long as you are a client or as long as is needed to be able to provide the services to you.
If reasonably necessary or required to meet legal or regulatory requirements, resolve disputes, prevent fraud, or enforce our terms and conditions, we may also keep hold of some of your information as required, even after you have closed your account or it is no longer needed to provide the services to you.
Under the General Data Protection Regulation, you have several important rights available to you for free. In summary, those include rights to:
For further information on each of these rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individual’s rights under the General Data Protection Regulation.
If you would like to exercise any of these rights, please:
Email or call us providing
We will always try to respond to a legitimate request within 28 days.
We have appropriate security measures in place to prevent personal information from being accidentally lost, used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
For further information, please contact us. (See our contact page for full details).
Cookies are small pieces of information stored by your browser on your computer's hard drive. Cookies are not required for you to browse our web site. You can delete cookies if you wish.
The Tavistock Pub
Registered Company: Matrix Leisure Limited
Registered Number: 10833556
Registered Address: 3 Coventry Innovation Village, Cheetah Road, Coventry, West Midlands CV1 2TL
ResDiary is a table reservation system that processes reservations on behalf of thousands of venues across the world. Venues can take bookings through:
Our registered address is: 3rd Floor, 36 Renfield Street, Glasgow, G2 1LU. ResDiary is restaurantdiary.com Limited. (In this document “ResDiary” means restaurantdiary.com Limited).
We collect information related to how you use our Services, including how you interact with our software (including, but not limited to, clicks, page views, searches and steps taken to complete actions).
In connection with your registration, booking, or making a payment to a restaurant on our website, ResDiary collects personal information.
ResDiary collects information such as:
When you make a booking, we do not proactively collect personal information considered as sensitive personal information such as health-related information. However, our Sites include text boxes which are designed for you to provide information you wish on dining preferences.
This refers to when you click Sign Up on any ResDiary Site. ResDiary collects the above information in the “When you make a booking” section and additional information such as:
There is “Device Information” about your computer hardware and software that is automatically collected by ResDiary. This information can include:
If you use our Services, we may receive your generic location (such as city or neighbourhood) or, with your consent, precise geographic location data from your mobile device when the ResDiary Applications are running and when they are not running. We may, for example, receive this information when you select restaurant search locations.
This information is used by ResDiary for the operation of services, to maintain quality of the service, and to provide general statistics regarding use of the ResDiary Sites.
Please keep in mind that if you directly disclose personally identifiable information or personally sensitive data through ResDiary public message boards, this information may be collected and used by others.
Note: ResDiary does not read any of your private online communications.
We may use your information to:
We may combine your Personal Information with Device Information and location information to serve you specifically, such as to deliver a product to you according to your preferences or restrictions, or for advertising or advertising targeting purposes. When we combine Personal Information with Device Information in this way, we treat it as, and apply all of the safeguards in this Policy applicable to, Personal Information.
Consistent with above, we may communicate with you via electronic messages, including email, text message, or mobile push notification to, for example:
With your consent, we may contact you at the mobile phone number that you provide to us by way of direct dial calls and text messages in connection with the above Purposes.
It is important to understand the difference between being a data controller and data processor.
When bookings are made for a restaurant using ResDiary technology on any other digital platforms, via the ResDiary.com portal, or the ResDiary Now app, then the restaurant, or partner, is the data controller. This means they determine how your personal information is processed. This included both how long your data is kept following making a booking (retention period), and maintaining marketing preferences.
When a diner creates a profile on ResDiary.com, ResDiary is the data controller for that personal data.
We are not responsible for any restaurant’s use of information for which it is an owner or controller. To learn more about how a restaurant may use such personal information, you should review its privacy notice.
We review our retention periods on a regular basis. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as it is set out in any relevant contract you hold with us.
ResDiary does not sell, rent or lease its customer lists to third parties.
ResDiary may share your information with other third parties for marketing purposes with your consent. More details can be seen in the Your Choices section below. In such cases, please note that you are subject to the separate privacy policies of such third parties.
When you make a dining request through our Sites, such as a restaurant reservation or making a payment to a restaurant through our Sites, all details pertaining to the reservation is delivered to the restaurant’s ResDiary system.
The notifications sent by email or SMS via ResDiary systems are to confirm your booking details and to send a survey out after dining.
We or the restaurant may share your information (such as meal or seating preferences and special occasions) with other restaurants in the same restaurant group. This is to enhance the hospitality experience that the restaurant group provides you when you dine with them (such as, trying to seat you by a window, if you previously expressed a preference for window seating) (“customized service”) and to improve the restaurant’s table and shift planning.
In addition to providing you with more customized service, we or the restaurant may, as permitted by applicable law, share your information with such restaurant’s restaurant affiliates to support operations, such as to perform analytics, tailor marketing to you, support a loyalty program that you have chosen to participate in, and improve their services.
For more information, please feel free to contact the restaurants at which you dine or book, or ResDiary as detailed in the Contact Information section below.
To learn more about your choices related to how we share your information with restaurants, restaurant groups, and/or restaurant affiliates under our programs, please see the Your Choices section below.
We may pass on your information to our third party service providers, agent subcontractors and other associated organisations for the purposes of completing tasks and providing services to you on our behalf. When we use third party service providers, we disclose only the information that is necessary to deliver the service. Please be reassured that we will not release your information to third parties beyond ResDiary for them to use for their own direct marketing purposes, unless you have requested us to do so.
ResDiary websites will disclose your personal information, without notice, only if required to do so by law or in the good faith belief that such action is necessary to:
(a) comply with the law or comply with legal process served on ResDiary or the site
(b) protect and defend the rights or property of ResDiary
(c) act under exigent circumstances to protect the personal safety of users of ResDiary, or the public.
We may transfer your personal information to a third party:
However, we will take steps with the aim of ensuring that your privacy rights continue to be protected.
To use certain services on our Sites and Applications we may require credit or debit card account information in order to:
By submitting your credit or debit card account information through our Sites, to the extent permitted by applicable law, you expressly consent to the sharing of your information with restaurants, third-party payment processors (e.g Stripe), and other third-party service providers, and you further agree to the following terms.
When you use a credit or debit card to secure a reservation through our Sites, we provide your credit or debit card account information (including card number and expiration date, but excluding the CVV number) to our third-party payment service providers and the applicable restaurant.
If you would like access to your data then please contact us at firstname.lastname@example.org
You can choose whether or not you wish to receive information from us. If you do not want to receive direct marketing communications from us, you can opt out by not ticking the relevant boxes on the forms where we collect your personal information.
We will not contact you for marketing purposes by email, phone or text message unless you have given your prior consent. We will not contact you for marketing purposes by post unless you have given your prior consent. You can change your marketing preferences at any time by contacting us by email at email@example.com.
If you would like to delete personal information relating to a booking, please contact the restaurant where the reservation was made. Please allow five working days from the date of your request for your information to be removed from the ResDiary software.
When you give us personal information, we take steps to ensure that it’s treated securely. Any sensitive information (such as credit or debit card details) is encrypted and protected with the following software, the Secure Socket Layer (SSL). When you are on a secure page, a lock icon will appear on the bottom of web browsers such as Microsoft Internet Explorer. Stripe never stores any card details.
Non-sensitive details (your email address etc.) are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems. Where we have given (or where you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.
The point of contact from ResDiary is the Chief Operating Officer, Mike Breewood, who is also our Data Protection Officer. He will invoke the data control procedure with the Chief Technical Officer, Colin Winning, as required. Then we will report the breach to the relevant supervisory authority within 72 hours of the organisation becoming aware of it.
We will notify affected venues within 48 hours of becoming aware of the breach.
Data is stored securely in data centres managed by Rackspace in the UK. They are one of the leading Managed Security Service Providers in the world. Thousands of organisations, including global enterprises, use this company.
We may analyse your personal information to create a profile of your interests and preferences so that we can contact you with information relevant to you. We may make use of additional information about you when it is available from external sources to help us do this effectively.
Opting Out: You can set your browser to not accept cookies, but this may limit your ability to use the Services.
ResDiary encourages you to review the privacy statements of websites you choose to link to from ResDiary so that you can understand how those websites collect, use and share your information. ResDiary is not responsible for the privacy statements or other content on websites outside of those websites owned and/or controlled by ResDiary or its affiliate companies.