DinerTech Privacy Policy

Last Updated: March 13, 2026

DinerTech ("we", "us", "our"), operated by AlphBerlin Technologies, is a restaurant operating system powering QR ordering, table reservations, payments, kitchen display, POS, AI dining assistant (ai.dinertech.app), and guest reviews. This policy describes how we collect, use, and protect personal data for restaurants, staff, and guests — including data collected through our MCP endpoint at ai.dinertech.app/mcp.

1. Data We Collect

Account Data

Name, email address, phone number, and authentication identifiers.

Organization Data

Restaurant name, branding assets, menus, table configurations, operating hours, and settings.

Reservation & Guest Contact Data

When making a reservation via app, QR code, or AI assistant (ai.dinertech.app/mcp), we collect your name, email address, and contact phone number to confirm bookings, send reminders, and allow the restaurant to manage seating.

Transactional Data

Order details, pricing, taxes, modifiers, and payment status. Full card numbers are never stored; card processing is handled by PCI-compliant processors.

AI Interaction Data

Queries and responses from our AI assistant may be logged to improve quality and prevent misuse. Do not enter sensitive personal data into AI prompts.

Usage & Device Data

IP address, device type, browser, session duration, and interaction logs for security and improvement.

Review & Feedback Data

Ratings and reviews submitted after a dining experience, linked to your account and potentially displayed publicly.

Push Notification Tokens

Device tokens for delivering order updates and reservation reminders (opt-in only; revocable at any time).

2. How We Use Data

Operate QR ordering, table reservation, kitchen display, POS, and analytics features.
Confirm reservations, send email/SMS reminders, and notify the restaurant of upcoming bookings.
Power the AI assistant (ai.dinertech.app) and MCP integrations for conversational reservations and menu discovery.
Process payments securely through PCI-compliant third-party processors.
Send push notifications for order updates and promotions (with consent).
Display guest reviews publicly on restaurant profiles.
Prevent fraud and keep accounts secure.
Meet legal, tax, and accounting obligations (including India DPDPA 2023, GDPR, and CCPA where applicable).

3. AI Assistant & MCP Integration

The MCP endpoint at ai.dinertech.app/mcp enables third-party AI clients to make table reservations on behalf of guests. When a reservation is submitted via MCP, we collect the guest's email address and contact phone number for booking confirmation and restaurant communication. This data is stored in our reservation system and governed by this policy. MCP integrators must disclose data collection to their end users.

4. Data Sharing & Security

We do not sell personal data. We share data only with providers necessary to operate the platform:

Infrastructure & Database (Supabase / PostgreSQL)
Payment Processors (Razorpay, Stripe)
AI Model Providers (OpenAI, Anthropic — for AI features only)
Email & SMS Delivery (transactional notifications)
Analytics Services (aggregated, anonymised data)
Push Notification Services (FCM / APNs)
Restaurants you book with (reservation contact details)

All providers operate under data processing agreements. Data is encrypted in transit (TLS 1.2+) and at rest. Access is restricted to authorised personnel.

5. Reservations & Guest Contact Retention

Reservation contact data (name, email, phone) is retained for up to 90 days after your reservation date and then deleted, unless you have an active account. Restaurants must not use reservation contact data for unsolicited marketing.

6. Your Rights

Depending on your jurisdiction, you may request: access, correction, deletion, restriction, portability, or object to processing of your personal data. To exercise these rights, email dinertech@alphberlin.com. We will respond within 30 days.

7. Cookies

We use strictly necessary cookies for authentication and session management. We do not use third-party advertising or cross-site tracking cookies.

8. Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect data from minors.

9. Changes to this Policy

We update this policy as features evolve. Material changes will be communicated via email or in-app notice. Continued use after changes constitutes acceptance.

10. Contact

Data Privacy: dinertech@alphberlin.com
General: ajith@alphberlin.com
Website: dinertech.app

This policy is reviewed periodically and is intended to meet applicable data protection obligations including India's DPDPA 2023, GDPR, and CCPA. For jurisdiction-specific compliance advice, consult qualified legal counsel.