TableChime

Legal

Privacy policy

Last updated: June 2026

This Privacy Policy describes how TableChime (“TableChime,” “we,” “us,” or “our”) collects, uses, stores, and protects personal information when you use our QR-based ordering service (the “Service”). TableChime is operated by Mikail Rana.

By using the Service, you consent to the practices described in this Policy. If you do not agree, please do not use the Service.

Information We Collect

Information You Provide

  • Display name — the name you enter when opening or joining a tab.
  • Phone number — provided when you receive an SMS for tab resume, order confirmation, or related transactional purposes.
  • Order selections — the menu items and quantities you add to your cart and the orders you submit.
  • Contact form submissions — name, email, and message contents when you contact us through the website.

Information Collected Automatically

  • Session metadata — the venue, table, and time-of-day for each ordering session.
  • Device information — browser type, operating system, and similar non-identifying technical data.
  • Aggregated behavioral data — anonymized patterns of menu browsing and ordering used to improve the Service and provide analytics to venue operators.

Payment Information

TableChime does not collect, store, or transmit payment-card data. All card processing is handled by Square, Inc. through Square’s PCI-compliant Web Payments SDK. We receive only tokenized references to a card (e.g., card brand and last four digits) for the purpose of displaying a card-on-file confirmation on your subsequent orders.

SMS Communications

Use Case

TableChime sends SMS messages for transactional purposes only:

  • Tab resume links so you can return to an open tab.
  • Order confirmations after submitting an order.
  • Account-related notifications you have specifically opted into.

We do not send marketing or promotional SMS without explicit, separate opt-in.

Opt-In

When you enter your phone number to open or join a tab, you consent to receive transactional SMS messages from TableChime for the duration of that session and for tab-resume purposes. Consent is voluntary and never required to complete a purchase in-venue.

Message Frequency

Message frequency varies based on order activity. A typical visit results in five or fewer messages (open-tab confirmation, order receipts, tab-close confirmation).

Opt-Out

You may opt out of SMS messages at any time by replying STOP to any TableChime message. Reply HELP for assistance. Standard message and data rates from your carrier may apply.

SMS Data Sharing

We do not share your phone number or SMS opt-in information with third parties for marketing purposes. Your phone number is shared only with our SMS service provider (Twilio) for the purpose of message delivery.

How We Use Information

  • To provide the Service: render the menu, process orders, send confirmations.
  • To allow you to resume an open tab from a new device via SMS.
  • To save a card on file at your option for faster reorders within the visit.
  • To provide venue operators with aggregated, non-identifying analytics about orders placed at their venue.
  • To protect against fraud, abuse, and unauthorized access.
  • To comply with legal obligations and respond to lawful requests.

Information Sharing

We share information only as follows:

  • With the venue you are ordering from.Your display name, items ordered, and total are visible to the venue’s staff so they can prepare and deliver your order.
  • With service providers. We use vetted third parties to operate the Service, including Square (payments), Twilio (SMS), Clerk (identity), and Google Cloud (infrastructure). These providers are contractually restricted from using your information for their own purposes.
  • For legal reasons. We may disclose information when required by law, subpoena, or to protect our rights or safety.

We do not sell personal information. We do not share personal information with third parties for their marketing purposes.

Data Retention

  • Order and session data is retained for up to 24 months for operator analytics and legitimate business purposes.
  • Phone numbers are retained for up to 12 months from the last use or until opt-out, whichever is sooner. After opt-out, your phone number is retained only as required to honor the opt-out request and prevent future messages.
  • Payment tokens (card-on-file references) persist for the duration of the visit only and are not retained after the visit closes.
  • Contact form submissions are retained for up to 24 months.

Your Rights

Subject to applicable law, you have the right to access, correct, or delete personal information we hold about you, and to opt out of certain processing. To exercise these rights, contact us at contact@tablechime.ai.

Security

We use commercially reasonable safeguards to protect your information, including encrypted transport (TLS), encrypted storage at rest, role-based access controls, and audit logging. Payment data is handled exclusively by Square’s PCI-compliant infrastructure. No method of transmission or storage is perfectly secure; we cannot guarantee absolute security.

Children

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us and we will delete it.

Changes to This Policy

We may update this Policy from time to time. The “Last updated” date at the top of this page reflects the most recent revision. Material changes will be highlighted in the Service or by other reasonable means.

Contact

Questions about this Privacy Policy or our privacy practices can be sent to contact@tablechime.ai.