Private chef services in the comfort of your own home

PRIVACY POLICY

Effective Date: 26.05.2025

Last Updated: 26.05.2025

Welcome to Private Chef Anywhere ("PCA," "we," "our," or "us"). This Privacy Policy describes how we collect, use, disclose, and safeguard your personal data when you use our services, including the Private Chef Anywhere Marketplace and any related tools or platforms.

By using the PCA Platform, you acknowledge that you have read and understood this Privacy Policy and agree to be bound by it.

1. WHO WE ARE & WHAT THIS POLICY COVERS

Private Chef Anywhere Platform SRL is a Romanian company that provides:

Online Marketplace – Connecting clients with chefs and other culinary or hospitality professionals for private dining experiences, events, or auxiliary services.

Partner Tools – Chef- or partner-facing tools to manage bookings, communicate with clients, and handle payments.

We act as a data controller under the General Data Protection Regulation (GDPR) for individuals in the European Economic Area and the UK. We also strive to meet other relevant privacy regulations where applicable.

This Privacy Policy explains our approach to data collection and usage when you:

Create an account or profile on the PCA Platform.
Browse our website(s) or mobile applications.
Interact with us via customer service, email, or otherwise.
Connect with external service integrations (if offered).

2. WHAT DATA WE COLLECT

We collect information in several ways, including data you provide directly, data automatically gathered through technology, and data obtained from third parties.

2.1 Data You Provide Directly

Account Information: Including name, email address, phone number, password, and location.

Partner Profile: For those offering services, we may collect details about your experience, rates, menus, photos, biography, availability, etc.

Booking Details: Such as date, time, location of the event, dietary restrictions, guest count, or special requests.

Messages & Customer Support: Communications sent via our Platform or to our support channels.

Payment-Related Information: For clients, partial payment details (processed securely by third-party payment providers). For chefs/partners, payout details such as bank account or other financial information.

2.2 Data Collected Automatically

Device and Log Data: This may include your IP address, browser type, device identifiers, operating system, referral URLs, and timestamps.

Usage Data: Pages viewed, time spent on those pages, navigation paths, clicks, and search queries.

Error Tracking & Performance Data: We use Sentry to monitor application errors and performance issues. This includes technical information about errors, page load times, and user interactions (if performance cookies are accepted).

2.3 Data From Third Parties

Platform Integrations: If you link or integrate with a third-party platform (e.g., a booking site or social media), we may receive necessary data such as availability or profile information.

Analytics & Marketing Partners: Aggregated demographic or behavioral data that helps us improve our services or run targeted advertisements. This includes services like Google Analytics and Sentry for performance monitoring.

Identity Verification Services: To prevent fraud or confirm identity, we may use trusted external providers.

3. HOW WE USE YOUR DATA

We will use your personal data for the purposes and legal bases outlined below:

Purpose	Legal Basis
Provide and maintain our Marketplace and tools	Performance of a contract (GDPR Art. 6(1)(b))
Manage bookings between clients and chefs	Performance of a contract (GDPR Art. 6(1)(b))
Create or publish partner profiles	Legitimate interest (GDPR Art. 6(1)(f))
Share partner details with selected platforms	Consent or legitimate interest
Process client payments and partner payouts	Contract / Legal obligation
Improve services, user experience, and support	Legitimate interest
Conduct marketing and promotional campaigns	Consent (where required)
Prevent fraud and comply with legal obligations	Legal obligation

3.1 Profile Visibility and Partner Integrations

We may share or display partner profiles on integrated platforms (e.g., travel or booking websites) to expand your reach. In some cases, this may require your explicit consent. Where enabled by default, you will have the option to opt out by adjusting your account settings or contacting us (see Section 9).

4. RATE LIMITING

To ensure fair usage and protect our services from abuse, we implement rate limiting by monitoring the frequency of requests to our endpoints. We store IP addresses temporarily to track request counts and may restrict access if excessive requests are detected.

5. COMMUNICATION AUTHORIZATION

By using the Platform, you authorize PCA and its authorized representatives to contact you via phone, SMS, email, or other communication methods for purposes related to your bookings, account activity, support inquiries, compliance checks, or Platform updates. Such communication may occur even if you have opted out of marketing communications, provided it is operational or service-related in nature.

6. HOW WE SHARE YOUR DATA

We do not sell or rent your personal data. However, we may share information under the following circumstances:

Clients & Partners: To fulfill bookings, clients may see necessary details (e.g., partner's name, profile, approximate location), and partners will see client or event details.

Payment Processors: Data needed to facilitate payments or payouts (processed securely).

Service Providers: Trusted third parties who help run our business (hosting, analytics, customer support, error tracking). These providers process data only under our instructions and in compliance with confidentiality obligations. Examples include AWS for hosting, Stripe for payments, and Sentry for error monitoring and performance tracking.

Compliance & Legal: When required by law, subpoena, or to protect our rights, property, or user safety.

Business Transfers: In connection with mergers, acquisitions, or any form of sale of some or all of our assets.

7. DATA RETENTION

We store personal data only for as long as necessary to provide our services, fulfill contractual or legal obligations, or for other legitimate business interests. Typical retention periods include:

Type of Data	Retention Period
Active Accounts	As long as the account remains in use
Partner Profiles (inactive)	Up to 12 months after deactivation, for historical or reference purposes (e.g., search engine caching, credibility)
Marketing Content	Indefinitely unless you request deletion
Transaction Data	Retained for 6 years (or as required by tax/accounting laws)
Inactive Accounts	Deleted or anonymized after 2 years of inactivity

You can request deletion or anonymization of your data at any time (see Section 9), but we may retain certain information if required to fulfill legal obligations or resolve disputes.

8. YOUR RIGHTS (GDPR & OTHER PRIVACY LAWS)

Depending on your location, you may have the right to:

Access: Request a copy of your personal data.

Rectification: Correct any inaccuracies in your information.

Deletion: Ask us to erase or anonymize your data.

Restriction: Limit how we process certain parts of your data.

Objection: Object to our legitimate interest processing or direct marketing.

Data Portability: Receive your data in a structured, machine-readable format (where applicable).

Withdraw Consent: Where consent is the legal basis, you can withdraw it at any time.

To exercise these rights, please contact us (see Section 9). We will respond within applicable legal deadlines. If you believe we have violated your data protection rights, you can lodge a complaint with your local data protection authority (e.g., ANSPDCP in Romania).

9. DATA SECURITY

We follow industry best practices to protect personal data, including:

Encryption: (HTTPS/SSL) for data in transit.
Access Controls: Role-based permissions and authentication mechanisms.
Security Audits: Periodic assessments to maintain and improve data protection.

However, no internet transmission is entirely secure; you assume some risk by using our services.

10. INTERNATIONAL DATA TRANSFERS

Because we are headquartered in Romania, your personal data will be processed there. If you reside outside Romania, your information may be transferred across borders. We use appropriate safeguards (such as Standard Contractual Clauses under GDPR) to ensure data protection when transferred to countries outside the EEA.

11. CONTACT US

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please reach out to us at:

Private Chef Anywhere Platform SRL

I C Bratianu 100, bloc SR2, ap 26, Constanta, Romania

privacy@privatechefanywhere.com

We may request proof of identity before fulfilling certain requests to protect your privacy and security.

12. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. The "Last Updated" date at the top indicates the most recent revision. We encourage you to review this Privacy Policy periodically for any updates or changes. If we make significant modifications, we may notify you via email or by posting a prominent notice on the PCA Platform.

By continuing to use our Platform after such changes become effective, you agree to be bound by the revised Privacy Policy.

Thank you for trusting Private Chef Anywhere. If you have questions or feedback about this Privacy Policy, please contact us at the email or address above.

Privacy policy