DraftDraft — under review by legal counsel. This page describes our actual current practices but is not yet final legal text.

Privacy Policy

Last updated: 17 July 2026

Who we are

The Dishlane platform (dishlane.com) is operated by Quantum AI WebApps Digital LLC ("Dishlane", "we", "us"). Registered address: [registered address — to be inserted].

You can reach us about anything in this policy at join@quantumaiwebapps.com.

What this policy covers, and the two roles involved

Dishlane is software that restaurants use to run their own websites, online ordering, bookings, loyalty and messaging. That means two distinct things happen with personal data, and it is worth being precise about them.

When you browse dishlane.com itself — this marketing site — you are dealing with us directly, and we collect almost nothing (see the Cookies section: there are no trackers here).

When you order from, book at, or join the loyalty programme of a restaurant that runs on Dishlane, the restaurant is the business you are buying from: it sets the menu, takes the payment on its own payment account, and decides how to use its customer relationships. Dishlane stores and processes that data on the restaurant's behalf, under the restaurant's instructions, to make the software work. Our legal counsel is confirming the formal data-protection categorisation of these roles; this section describes what factually happens.

Data we collect, flow by flow

We collect only what each feature needs to function:

  • Ordering (pickup, delivery, at-table): your name and phone number, an optional email for the receipt, the order contents, and — only for delivery orders — a delivery address.
  • Table bookings: name, phone, email, party size, date and time.
  • Catering enquiries: the same contact details plus your enquiry text.
  • Loyalty: a profile (phone, name, email, points balance) is created only after a paid order and only if you actively ticked the marketing checkbox — it is unticked by default.
  • Gift cards: the purchaser and recipient name, phone and email, so the card can be delivered and redeemed.
  • Review requests: your phone number and a tokenised link inviting you to leave a review.
  • The AI menu assistant: your chat messages are processed to answer you, but no conversation content is stored on our servers — only usage counters. Your chat history lives solely in your own browser tab.
  • Staff and restaurant-owner accounts: name, email and a hashed password.

What we deliberately do not collect

Card numbers never touch Dishlane. Payments are taken on the payment provider's own hosted checkout pages (Stripe, Square or PayPal, on the restaurant's own account); we store only amounts and payment references. This is the SAQ-A card-data posture: the card data goes provider-direct.

There are no analytics, advertising or tracking technologies of any kind on the platform — not on this site and not on restaurant sites. No Google Analytics, no Meta pixel, no fingerprinting, nothing.

Why we are allowed to use this data

In sketch form, pending counsel's final wording: order, booking, gift-card and catering data is processed because it is necessary to deliver the thing you asked for (performance of a contract). Marketing contact happens only with your consent — the checkbox is unticked by default, in line with UK opt-in rules (PECR), and you can withdraw consent at any time. Security measures such as rate limiting rely on our legitimate interest in keeping the platform safe.

Who we share data with

The complete list of third parties that can receive personal data is below — what each one receives and why. There are no others, and none of them are advertising or analytics companies.

WhoWhat they receiveWhy
StripeOrder amounts, currency and payment references, via the restaurant's own Stripe account. Card details are entered on Stripe's hosted checkout page and never touch Dishlane.Card payments (when the restaurant uses Stripe)
SquareOrder amounts, currency and payment references, via the restaurant's own Square account. Card details are entered on Square's hosted checkout page and never touch Dishlane.Card payments (when the restaurant uses Square)
PayPalOrder amounts, currency and payment references, via the restaurant's own PayPal account. Payment credentials are entered on PayPal's hosted pages and never touch Dishlane.Payments (when the restaurant uses PayPal)
PostmarkThe recipient email address and the contents of the receipt or confirmation being sent.Transactional email — order receipts, booking confirmations
TwilioThe customer phone number and the message text, sent through each restaurant's own Twilio account (not a shared Dishlane account).SMS notifications
Meta WhatsApp Cloud APIThe customer phone number and the parameters of the approved message template.WhatsApp notifications
Listmonk (self-hosted)Opted-in marketing email lists. Listmonk runs on Dishlane infrastructure — it is self-hosted software, not a third-party network.Marketing email to people who opted in
Anthropic Claude APIThe customer's chat messages to the menu assistant plus the restaurant's menu and opening-hours context. Conversations are not stored on our servers — only usage counters are kept.The AI menu assistant
Apple WalletPass contents: loyalty points, name and phone, or a gift-card code and balance.Wallet passes the customer chooses to add
Google WalletPass contents: loyalty points, name and phone, or a gift-card code and balance.Wallet passes the customer chooses to add
Odoo POSMenu item names and prices flow out to the POS; sales totals and the staff member name flow back in.Point-of-sale integration (when the restaurant connects Odoo)

Where your data lives

The application runs on Vercel (serverless), the database is PostgreSQL hosted on Railway, and media plus encrypted nightly database backups are stored in Cloudflare R2 (bucket region: Western Europe).

The specific Vercel and Railway compute regions are not something we currently publish, so we will not claim "UK-only" processing here: data is processed in those infrastructure providers' EU/UK-adjacent regions, and the definitive region list is available on request.

Cookies and browser storage

We use only strictly-necessary and functional cookies and browser storage — six items in total, none of them tracking. The full table, including lifetimes, is in the Cookie Policy at /legal/cookies.

How we protect it

Per-restaurant secrets (payment keys, Twilio tokens) are encrypted at rest with AES-256-GCM and are readable only by platform super-admins. Every restaurant's data is strictly isolated from every other's at the access-control layer. All payment, SMS and WhatsApp webhooks are signature-verified before we act on them. Passwords are hashed (PBKDF2-SHA256). Public endpoints are rate-limited. And, as above, card numbers are never stored — ever.

We do not currently hold any formal security certification (no ISO 27001, no SOC 2) and will not pretend otherwise; the measures above are what actually runs.

How long we keep it

Retention, stated plainly:

RecordKept forNotes
Order financial records6 yearsKept as policy for UK statutory bookkeeping. Personal details on an order can be anonymised earlier on request — the money records stay.
Encrypted database backups14 daysNightly encrypted backups in Cloudflare R2 auto-delete after 14 days.
Unpaid checkout attempts2 hoursA checkout that is never paid is automatically cancelled after 2 hours.
Marketing consent and listsUntil you unsubscribe or ask for erasureUnsubscribing or texting STOP removes you from marketing immediately.

Your rights, and exactly how to exercise them

To access, correct, export or erase your data, email join@quantumaiwebapps.com. We handle subject-access requests manually by email — there is currently no self-service data-export endpoint, and we would rather tell you that than imply a button that does not exist.

For erasure, our operators run a purpose-built tool that anonymises your orders (name, phone, email and notes are removed; the money records stay, per the 6-year bookkeeping retention), deletes your loyalty profile, unsubscribes you from all marketing, deletes review-request tokens, and anonymises bookings and catering enquiries.

Two honest gaps in that tool today: gift card purchaser and recipient details, and wallet passes, are not yet covered by the automated erasure tool — we handle those manually on request, and they are on the roadmap to automate. If you are unhappy with how we handle your data you can complain to the UK Information Commissioner's Office (ico.org.uk).

Marketing messages

You only receive marketing if you opted in — the consent is captured server-side from the payment confirmation, not from an unticked box. Every marketing email carries an unsubscribe link. Replying STOP to an SMS or WhatsApp message always works, even if the restaurant has switched its marketing off.

Children

The platform is not directed at children under 16, and we do not knowingly collect their data. If you believe a child's data has been submitted, contact us and we will remove it.

Changes to this policy

This page is versioned by its "Last updated" date. Material changes will update that date; while the draft banner is present, expect wording (not practice) to be refined by counsel.

Contact

Quantum AI WebApps Digital LLC · [registered address — to be inserted] · join@quantumaiwebapps.com. We aim to reply promptly, but we do not promise a specific response time here that we have not operationally committed to.