PRIVACY POLICY
This Privacy Policy describes how FirstDine Private Limited (“FirstDine”, “Company”, “We”, “Us”, “Our”) collects, uses, processes, stores, and protects personal data when You access or use our web platform.
By accessing or using the Platform, you consent to the collection and processing of your personal data in accordance with this Policy.
For the purposes of the Digital Personal Data Protection Act, 2023 (“DPDP Act”), FirstDine acts as a Data Fiduciary.
1. COMPANY INFORMATION
Company Name
FirstDine Private Limited
CIN
U79900KL2025PTC096125
Registered Office
257/A8 Pallath Tower, North Kalamassery,
Kanayannur, Kalamassery,
Ernakulam – 683104, Kerala, India
2. APPLICABILITY
This Privacy Policy applies to:
- Users booking restaurants through FirstDine;
- Restaurant partners registering on FirstDine;
- Visitors browsing the Platform;
- Any individual interacting with FirstDine services.
This Policy is governed by:
- The Digital Personal Data Protection Act, 2023 (India);
- The Information Technology Act, 2000 and relevant rules;
- Other applicable Indian data protection laws.
3. DATA WE COLLECT
We collect personal data that you voluntarily provide and data automatically collected through your use of the Platform.
A. User Information
- Full Name
- Email Address
- Mobile Number
- Login Credentials
- Real-time Location (active booking)
- Booking history
- Reviews and ratings
- Device information (IP, browser)
- Razorpay transaction reference
- Communication records
We do not store credit or debit card details.
B. Restaurant Partner Information
- Business Name
- GST Number
- PAN
- FSSAI License
- Bank Account Details
- Authorized Representative details
- KYC document
- Compliance certifications
C. Automatically Collected Data
- IP Address
- Device identifiers
- Browser type and version
- Usage logs
- Cookies and analytics data
- Session data
4. LOCATION DATA
Real-time location data is collected only when users actively use booking or proximity-based features.
We do not track background location.
Location permissions can be disabled through device or browser settings; however, certain services may not function properly.
5. PAYMENT INFORMATION
Payments are processed through authorized third-party payment gateways such as Razorpay.
FirstDine:
- Does not store card numbers, CVV, or sensitive payment credentials;
- Does not directly process card transactions.
Payment processing is governed by the payment gateway’s privacy and security policies.
6. PURPOSE OF DATA PROCESSING
We use personal data for:
- Facilitating restaurant discovery and reservations;
- Processing advance payments and transactions;
- Onboarding and verifying restaurant partners;
- Sending booking confirmations and notifications;
- Customer support and dispute resolution;
- Fraud prevention and chargeback risk management;
- Marketing communications (with opt-out facility);
- WhatsApp notifications (with consent);
- Service updates and alerts;
- Improving platform performance and analytics;
- Legal compliance and regulatory reporting.
7. LEGAL BASIS OF PROCESSING
Under the Digital Personal Data Protection Act, 2023, we process personal data based on:
- User consent;
- Performance of a contract (restaurant booking and payment processing);
- Compliance with legal obligations;
- Legitimate business purposes including fraud prevention and risk management.
Users may withdraw consent at any time, subject to legal and contractual limitations.
8. SHARING OF PERSONAL DATA
We may share personal data with:
- Restaurant Partners (for booking fulfillment only);
- Payment Processors (e.g., Razorpay);
- Cloud Hosting Providers;
- SMS, Email, and WhatsApp service providers;
- Analytics providers;
- Government authorities or regulators when legally required.
All third-party service providers are contractually obligated to maintain confidentiality and security.
9. CROSS-BORDER DATA TRANSFER
Where required for service functionality, personal data may be processed or stored on servers located outside India, subject to applicable legal safeguards and compliance with the DPDP Act.
10. DATA RETENTION
We retain personal data:
- As long as your account remains active;
- For compliance with legal, tax, or regulatory obligations;
- For fraud prevention and dispute resolution purposes.
Inactive accounts may be anonymized or deleted after a reasonable retention period unless legally required to retain.
11. USER RIGHTS (DATA PRINCIPAL RIGHTS)
Under Indian law, you have the right to:
- Access personal data
- Request correction or update
- Request erasure
- Withdraw consent
- Grievance redressal
- Nominate another individual
Requests may be made to: [email protected]
We may verify identity before processing requests.
12. COOKIES POLICY
We use:
- Essential cookies (required for platform functionality);
- Analytics cookies (for performance improvement);
- Preference cookies.
You may disable cookies in browser settings; certain features may not function properly.
13. DATA SECURITY
We implement reasonable administrative, technical, and physical safeguards including:
However, no internet transmission is completely secure. Users acknowledge inherent digital risks.
14. DATA BREACH RESPONSE
In the event of a personal data breach, FirstDine shall:
- Assess impact promptly;
- Notify affected individuals where required by law;
- Inform relevant authorities in accordance with applicable legal requirements.
15. CHILDREN’S PRIVACY
The Platform is not intended for individuals under 18 years of age. We do not knowingly collect data from minors. If discovered, such data shall be deleted promptly.
16. GRIEVANCE OFFICER
Any complaints, abuse, or concerns with regards to content and or comment or breach of these terms shall be immediately informed to the designated Grievance Officer:
Ragindh K
Grievance Officer
[email protected]All grievances will be addressed in accordance with applicable laws and within a reasonable timeframe.
17. LIMITATION OF LIABILITY
To the maximum extent permitted by law, FirstDine shall not be liable for:
- Unauthorized access caused by user negligence;
- Third-party cyberattacks beyond reasonable control;
- Indirect or consequential losses arising from data misuse by third parties.
18. CHANGES TO THIS POLICY
We may update this Privacy Policy from time to time.
Updated versions shall become effective upon publication on the Platform.
Continued use constitutes acceptance of revised terms.
19. CONTACT US
FirstDine Private Limited
257/A8 Pallath Tower, North Kalamassery
Ernakulam – 683104, Kerala
[email protected]