Privacy Policy
Welcome to DotYourSpot – We provide the user („You“) with hardware and software solutions and we connect guests and venues through our Services. This Privacy Policy applies to Your access or use of the websites, mobile sites, applications and especially our reservation management system (collectively, “DotYourSpot Sites” or “Sites”) and all services and content (the “Services”) made available by DotYourSpot company. Site is a service of DotYourSpot d.o.o., a corporation registered in Croatia with the personal identification number: 93631185592 (“DotYourSpot”, “We” or “Us”). By clicking “Accept” or “Agree” You are affirming DotYourSpot's Privacy Policy, and this way acknowledge that You have read, understood, and agree to be bound by the said Privacy Policy. Also, this way You represent and warrant that You are of legal age and not prohibited by law from accessing or using the Services. We keep records of every version of the Privacy Policy and suggest You do so as well. If You wish to receive a written copy of the actual or any previous version, please feel free to contact Us at any moment per e-mail: dotyourspot@dotyourspot.com
If it is not emphasized differently in this Privacy Policy, the Privacy Policy applies equally to both:
An owner of a venue or any other of DotYourSpot’s commercial clients including their representatives;
Any end customer, guest or party using our services in any non-commercial manner.
On what basis are we processing your personal data?
We are fully complied with EU law, especially the General Data Protection Regulation (GDPR) and process data in accordance with the law. We process your personal data on various legal bases, including your consent, the need to fulfill our contractual obligations to you, compliance with our legal obligations, and our legitimate interests in providing effective services and improving them continuously. Specific details regarding the legal basis for each processing activity are available upon request.
Why do We process your personal data?
We at DotYourSpot care about your privacy while processing your personal data. In order for You to use, and for Us to provide, our reservation management system especially and all other Services of DotYourSpot in general, We will need to process your personal data for different purposes.
We process your personal data to administrate the registration or use of your account on any of our Sites which means that we especially use your data:
To enable You to create a personal profile
To show previous and upcoming reservations as well as statistics;
To show information about reservations;
To collect information concerning You from our connected partners;
To send newsletters or surveys to You in order to improve Service we offer You;
To analyze how our Sites are used;
We do not sell personally identifiable data, but We might need to share your data with our partners, IT-suppliers, or the suppliers of the analytic services We use. We furthermore use and might share aggregated data that has previously been anonymized. In certain situations, your personal data will possibly be processed outside the EU but only when We can ensure an appropriate level of protection for your personal data.
Who is responsible for processing your personal data?
DotYourSpot d.o.o., a corporation registered in Croatia with the personal identification number: 93631185592 is responsible for the processing of your personal data. Please note that We also process data on behalf of our partners and venues. If You have any questions regarding this or if You wish to exercise any of your rights under data protection legislation, please contact Us via our e-mail address or write Us to our postal address both stated at the end of this Privacy Policy.
From where do We collect your personal data?
We collect your personal data directly from You when You register on our Sites or when You use DotYourSpot Sites. Some data is collected automatically, while other data is contributed directly by You. For example, when You make a visit on our website or if you log in to one of our Sites or if You choose to up-date or add to your account information. A significant part of the information We collect comes from what You personally provide Us with, and the more information You choose to contribute, the better functionalities You will receive when using Sites. Data we collect automatically is for example when and how you use our Sites. Such data is collected automatically and added to the data you provided us with. We will also collect your personal data from other sources. For example, if You use DotYourSpot Sites with your personal Facebook, Google or Apple account, We will gain access to data related to your accounts. More on third party data we collect is described in detail bellow.
Who can gain access to your personal data and why?
Your personal data is primarily processed by DotYourSpot as said above, which means that your personal data will be handled by our employees and representatives, but only to the extent needed for them to conduct their work. Certain information about You may be visible to others. Whether information is public or not is noted within our Sites and You can control this through your account or by the choices you make when using DotYourSpot Sites. However, certain information must be visible to others in order for You to use certain Services on Our Sites. You are generally required to use your real name when using our Sites, because all activities made through our Sites and especially through our reservation management system will have its consequences in real life. In certain cases, We need to share your personal data with our suppliers and partners in order to conduct our business efficiently. We are responsible for any sharing of your personal data to such suppliers and partners in order to make sure your personal data is safe when shared with these third parties, although it is implied that You agree to everything above by clicking „Accept” to this Privacy Policy.
We may share your personal data with the following third parties:
Our IT suppliers, who will process your personal data on our behalf as our processors. Your personal data is shared only to the extent necessary to fulfill the obligations of our suppliers.
Our affiliated partners. Your personal data is shared only to the minimum extent required for our affiliated partners to fulfill their obligations to us or directly to you.
Our payment service providers for the administration of your payments.
Some of the recipients with whom we share your personal data include:
Google Tag Manager:
https://policies.google.com/privacy?hl=enGoogle Analytics:
https://policies.google.com/privacy?hl=enGoogle AdSense:
https://policies.google.com/privacy?hl=enMonri Payment:
https://monri.hr/zastita-osobnih-podataka/
Each of the aforementioned recipients independently regulates how they use and store your data. You can learn about their principles by reviewing their privacy policies, available on the recipients' websites.
Detailed description of why we process your personal data, which data is it and for how long:
The below information describes in detail why We process your personal data, which categories of personal data we process, and for how long We process your personal data. The legal basis is GDPR and other EU privacy regulations.
administrate your DotYourSpot account
provide You with our Services
provide You with the features of our Sites
provide support
send newsletters and inform You about the news and changes
handle any cancellations, complaints or claims
comply with EU and any other relevant legislation
share your IP address with Google or other partners if needed
show You your previous and upcoming reservations through our Site
send You reservation information
send You marketing materials
send You customer related information and provide You with the means to have contact with customers
produce and show You statistics
use analytics to better understand how You use our Services
suggest relevant activities or choices for You based on your use of our Sites and information about your business collected through especially reservation management system
enable You to see which customers have signed up for a visit to your venue
provide customer service and answer any question You may have in relation to your use of DotYourSpot Sites
enable communications with venues
improve our Services
show You purchases and reservations
provide services and information to venues
personalize your experience of using our Services
provide You with advertising
personalize advertising
try to avoid unauthorized and illegal actions
process your information using machine learning and AI tools
communicate with You via electronic messages ( email, phone messages or other)
send You information regarding our Services, products, and marketing materials
contact You, with your consent, at the mobile phone number that You provide Us with or to send text messages and push notifications
For related purposes and in order to protect our legitimate interests
As otherwise consented to by You and as required or permitted by applicable law
Company name
Restaurant name
Contact phone number
Contact email
VAT ID
Country and state
Restaurant type
Dress code type
External links(social media, website, etc.)
Photos of venue or else
About location
Payment methods
Additional tags
Description
Cuisine
Menu
Executive Chef
Popular dishes
Working days and hours
Average guest check
Information under section c) bellow is related to your venue
Other related information
a) Purpose of processing is to:
b) Data We process about a venue owner and venue itself:
c) Data We process about both customers/end users and commercial clients:
The list below applies to both our 1) commercial clients meaning venue owners and their venues and 2) customers/end users. When You visit or use Our Services, We collect the following categories of personal information directly from You:
Personal information
Personal information that We collect directly from You ( such as your name , surname and birthday, your email and postal address, phone number etc.)
Account information (such as account settings and completely encrypted passwords)
Link to your social media accounts
Dining information (such as current and past reservations made through our Services, dining preferences and frequently visited restaurants, requests You had, dining activity, favorite restaurant and meal type, cancellations, no-shows)
Your feedback (such as information You gave Us about You or your preferences through our Services and surveys or responses to our marketing)
Photos of You (such as photos that You add to your profile through our Services, and other photos You gave Us consent for)
Communications You send Us (such as any communication to Us through our Services or through other possible means)
Sensitive personal information such as:
- Health information
- Geolocation Data
We refrain from actively collecting sensitive personal information, such as health-related details except where explicitly requested. Namely, our Services might offer drop down menus or text fields for specifying your dining and dietary preferences or allergies or other information, all in order to upgrade Your experience using the Services and provide you with a better suited selection of venues. It's important to note that any information You provide in these fields may disclose sensitive details to Us and/or venues. This may include dietary restrictions, allergies, food intolerances or similar. This information isn't however utilized for any third-party marketing purposes but only for providing our services, tailoring our offering to you and improving your use of our Services as said above.
Additionally, some features of our Services may request access to your geolocation information. We only process this information with your consent. Once given, consent can be withdrawn within Your settings at any time or by contacting Us using the information provided in the section at the end of this Privacy Policy.
Personal information Generated By Us
“Personal information generated by Us" refers to data that is automatically collected or generated by our Sites through your interactions with the Sites. This can include information such as timestamps of visits, IP addresses, cookies, and other tracking mechanisms (other tracking technology). In essence, it's data that is produced as a result of your activities on the Sites rather than directly provided. With the above said We generate the following categories of personal information:
Our use of cookies and similar tracking technologies is detailed in our Cookie Policy, which explains how you can manage preferences and opt out of certain types of tracking. By continuing to use our Sites without adjusting your browser settings, you consent to our use of cookies as described in our Cookie Policy.
Personal Information We recieve from Third Parties and merged information
We also receive information from third parties and merge this information with the information You provided us with, or we collected directly. Personal Information We get from Third Parties (such as social media information, websites, applications or else). Information that We may not possess can be supplied by our partners, venues and other third parties. In the event that You are already using our Services anyhow, We will merge this data with the information We gather directly through our Services. Subsequently, We will utilize and disclose it only for the purposes described in this Policy. The types of personal information We could acquire from third parties may include:
Aggregate Information
Aggregate information refers to data that has been combined from multiple sources to form a summarized view. It involves the analysis of data in a way that obscures individual details but provides insights into overall patterns and characteristics. We combine personal information obtained directly from You, data generated by our Services, and information acquired from third parties as described above with similar data from other users to identify trends, or to generate insights without revealing specific details about individual data points. Once information is aggregated it is also anonymized so it loses its status of a "personal information" and cannot anyhow be associated to You or any other entity.
d) Storage period:
We will process your personal data for the purposes described in this Policy until You choose to withdraw the consent You gave Us once You agreed to this Privacy Policy. You may also choose to delete the information You have chosen to enter on our Sites and You can do so by contacting Us and ask for help in this matter. You can decide to withdraw your consent for processing your data at any time without any restriction. We have completely aligned our business processes with GDPR and other EU regulations that otutline principles for data storage, including the principle of storage limitation. In accordance with said regulations We keep personal data in a form that allows your identification for no longer than is necessary for the purposes defined in this Privacy Policy. We regularly review legal provisions to ensure compliance with the GDPR and other EU regulations. As already said in this Privacy Policy, We delete and anonymize data once it is no longer needed for the purposes for which it was collected according to this Policy.
Processing which We and Venue owners each have our own responsibility for:
For certain data about customers who use our Sites for their personal and not business purposes, We serve as a processor of the mentioned data. This means that when a customer makes a reservation or participates in an activity on DotYourSpot Sites, We will forward information about their activity to venue owners but only if this doesn't represent a breach of customer's privacy regarding GDPR and other EU regulations. The data could help venue owners better understand the needs of their customers and improve business, while also enabling the customer to have a better experience at the venue.
How do we protect your data?
We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. This includes encryption, access control, secured data storage, and regular auditing of our security practices.
Detailed description of your rights regarding the process your personal data
You have certain rights regarding your personal data and We outline them below. If You want to know more or if You want better explanation of any of your rights, please contact Us and We will do our best to help. Our contact information can be found at the end of this Privacy Policy. Your rights:
You have the right to obtain confirmation as to whether We are processing personal data about You or not. Also, if You consider it is not transparent enough through our Sites, You can always request that We provide You with answers to questions such as : the purpose of the data processing, who recipients or categories of recipients to whom data can be shared with are, storage period or else.
All of your data is processed in accordance with the European Union law, and the law of Republic of Croatia, where our headquarters is located, as the member of the European Union which is relevant information if You want to lodge a complaint.
You have a right to correct any inaccurate personal data related to You that We may be processing and to ask Us to complete any data We have stored about You that You claim is incomplete. If possible and within reasonable efforts, We will inform recipients with whom the personal data has been shared in case of any corrective action We did. You also have the right to request the erasure of your personal data stored through our Sites at any time. If You request that We delete personal data about You or if You are a venue owner about your venue, We will handle your request in accordance with our own processing but should you also want our partners or third parties to stop processing your personal data, You must contact them directly and consider Us harmless regarding any data processing that may continue and does not originate directly from DotYourSpot.
You also have the right to ask for a copy of the personal data processed by DotYourSpot. If the information is requested via e-mail, You will receive the information in an e-format.
You have a right to receive your personal data from Us in a structured, and machine-readable format and, where technically possible, have your personal data transferred to another company. This right to data portability applies to data that You have provided in a structured, widely used and machine-readable format. Your right to data portability must not affect the rights and freedoms of others.
You have a right to object to our processing of your personal data and We will always consider your objection. With this in correlation you always have a right to withdraw any consent You have given us such as consent to use your data for our marketing purposes or for sending newsletters etc.
Contact and legal info
Stepinčeva 14, 21000 Split
dotyourspot@dotyourspot.com