Privacy Policy

Last updated: February 7, 2026

1. Introduction

Qutie ("we", "us", "our") operates the queue management service at qutie.io. This Privacy Policy explains how we collect, use, and protect your personal data in compliance with GDPR and UK data protection laws.

2. Data We Collect

For Restaurant Staff (Account Holders):

• Name, email address, phone number
• Restaurant/location information
• Payment information (processed by Stripe)
• Usage data and analytics

For End Customers (Queue Participants):

• Name (optional)
• Phone number (for SMS notifications)
• Device information (for push notifications)
• Queue position and wait time data

3. How We Use Your Data

• Service Provision: To provide queue management and notification services
• Communication: To send order status updates and service notifications
• Improvement: To analyze and improve our service
• Legal Compliance: To comply with legal obligations

4. Legal Basis for Processing (GDPR)

• Contract: Processing necessary to provide our service
• Consent: For marketing communications and optional features
• Legitimate Interest: For service improvement and fraud prevention
• Legal Obligation: For tax and regulatory compliance

5. Data Sharing

We share data only with:

• Stripe: For payment processing (PCI DSS compliant)
• Twilio: For SMS notifications
• Service Providers: Under strict data processing agreements

We do not sell your personal data to third parties.

6. Data Retention

• Account data: Retained while account is active
• Customer queue data: Deleted 90 days after order completion
• Payment records: Retained for 7 years (legal requirement)

7. Your Rights (GDPR)

You have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data
• Object to processing
• Data portability
• Withdraw consent

To exercise these rights, contact us at: privacy@qutie.io

8. Security

We implement appropriate technical and organizational measures including:

• Encryption in transit (TLS 1.3)
• Encryption at rest
• Regular security audits
• Access controls and authentication

9. International Transfers

Data is primarily stored in the UK/EU. Some service providers (e.g., Stripe US) may process data outside the UK. We ensure appropriate safeguards are in place for such transfers.

10. Cookies

We use essential cookies for service functionality. We do not use tracking cookies for advertising.

11. Changes to This Policy

We may update this policy. We will notify users of significant changes via email or in-app notification.

12. Contact Us

For privacy-related questions or to exercise your rights:

• Email: privacy@qutie.io
• Address: [Your Business Address]

13. Complaints

If you have concerns about our data handling, you may contact the UK Information Commissioner's Office (ICO) at www.ico.org.uk.