Privacy Policy
Dine Karo ("we", "our", "us") is committed to protecting your personal information. This policy explains what we collect, how we use it, and your rights with respect to your data.
Information we collect
Account information
When you create a Dine Karo account, we collect your name, email address, phone number, and a password. This information is used to identify you and manage your reservations.
Reservation data
We collect details of every booking you make — restaurant, date, time, number of guests, and any special requests. This data powers your booking history and loyalty rewards.
Location information
With your permission, we collect device location to show nearby restaurants and personalise search results. You can revoke this permission at any time in your device settings.
Device and usage data
We collect information about the device you use, including device type, operating system, and app version. We also collect anonymised usage analytics to improve the product.
How we use your information
Delivering the service
Your information is used to process reservations, send booking confirmations and reminders, and provide customer support.
Personalisation
We use your dining history and preferences to recommend restaurants and experiences tailored to your taste.
Communications
We send transactional messages (booking confirmations, cancellations) and, with your consent, marketing communications about deals, new restaurants, and platform updates.
Safety and fraud prevention
We use data to monitor for fraudulent activity, enforce our terms of service, and protect the integrity of the platform.
Sharing your information
With restaurants
When you make a reservation, we share your name, phone number, and booking details with the restaurant so they can prepare for your visit. We do not share your payment details with restaurants.
With service providers
We work with trusted third-party providers for payment processing, cloud hosting, analytics, and customer support. These providers are bound by strict data processing agreements.
Legal requirements
We may disclose your information when required by law or in response to a valid legal process, such as a court order or government request.
Data retention
Account data
We retain your account data for as long as your account is active. If you delete your account, we delete your personal data within 30 days, except where retention is required by law.
Reservation history
Anonymised reservation data may be retained for analytics purposes after your account is deleted.
Your rights
Access and correction
You have the right to access the personal data we hold about you and request corrections if it is inaccurate or incomplete.
Deletion
You may request deletion of your account and personal data at any time through the app settings or by contacting us at [email protected].
Data portability
You can request a copy of your personal data in a machine-readable format.
Opt-out
You may opt out of marketing communications at any time by adjusting your notification preferences in the app or clicking the unsubscribe link in any email.
Security
How we protect your data
We use industry-standard encryption (TLS) in transit and AES-256 at rest. Access to personal data within our organisation is restricted to those who need it to perform their job.
Reporting a vulnerability
If you discover a security vulnerability, please disclose it responsibly to [email protected]. We aim to respond within 48 hours.
Changes to this policy
Notification of changes
We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or an in-app notice at least 14 days before the change takes effect.
Contact
Questions about privacy
If you have any questions or concerns about this Privacy Policy or how we handle your data, please contact us at [email protected] or write to us at our Lahore office.