Privacy Policy
Last updated: March 01, 2026
1. Introduction
Fluxter Limited ("we", "us", or "our"), operating as Dinehere, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered restaurant website generation service.
We are registered in England and Wales (Company No. 13135508) and comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Information We Collect
Personal Information
When you use our Service, we may collect:
- Contact Information: Name and email address
- Business Information: Restaurant name, address, phone number, and opening hours
- Payment Information: Processed securely by Paddle (we do not store card details)
Content You Provide
- Images: Menu photos, restaurant photos, and logos you upload
- Menu Data: Menu items, descriptions, and prices extracted from your images
- Website Content: Any additional content you provide for your website
Automatically Collected Information
- Usage Data: Pages visited, time spent, and actions taken
- Device Information: Browser type, operating system, and device type
- IP Address: Used for security and regional customisation
3. How We Use Your Information
We use your information to:
- Provide our Service: Generate and host your restaurant website
- Process Payments: Complete transactions and send receipts
- Communicate: Send service updates, respond to enquiries, and provide support
- Improve our Service: Analyse usage patterns and enhance functionality
- Legal Compliance: Meet our legal and regulatory obligations
4. Legal Basis for Processing
Under UK GDPR, we process your personal data based on:
- Contract: Processing necessary to provide our Service to you
- Legitimate Interests: Improving our Service and communicating with you
- Legal Obligation: Compliance with applicable laws
- Consent: Where you have given explicit consent for specific processing
5. Third-Party Service Providers
We share your information with trusted third parties who help us operate our Service:
Paddle
Payment processing. Paddle acts as the Merchant of Record and processes payments on our behalf.
Anthropic (Claude AI)
AI processing for menu parsing and website generation. Your uploaded images and extracted content are processed by Anthropic's AI services.
Google (Gemini AI)
AI processing for menu parsing and website generation. Your uploaded images and extracted content may be processed by Google's Gemini AI services.
Cloudflare
Website hosting, CDN, and security services.
Google Analytics
Website analytics to understand how visitors use our site. Only activated with your consent.
These providers are contractually bound to protect your data and only use it for the purposes we specify.
6. Data Retention
We retain your data for the following periods:
- Website Content: For the duration of your hosting period (5 years) plus 30 days
- Account Information: Until you request deletion or 30 days after hosting ends
- Payment Records: 7 years for tax and legal compliance
- Uploaded Images: For the duration of your hosting period plus 30 days
7. Your Rights (UK GDPR)
Under UK data protection law, you have the right to:
- Access: Request a copy of your personal data
- Rectification: Request correction of inaccurate data
- Erasure: Request deletion of your data ("right to be forgotten")
- Restriction: Request limited processing of your data
- Portability: Receive your data in a portable format
- Objection: Object to processing based on legitimate interests
- Withdraw Consent: Withdraw consent at any time where processing is based on consent
To exercise these rights, please contact us at [email protected]. We will respond within one month.
8. International Data Transfers
Some of our third-party providers (such as Anthropic and Google) are based in the United States. When we transfer data outside the UK, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses approved by the UK Information Commissioner
- Adequacy decisions where applicable
- Binding corporate rules
9. Cookies
We use cookies and similar technologies to operate our Service and understand how you use it.
Essential Cookies
These cookies are necessary for the Service to function and cannot be disabled:
- Keep you signed in to your account
- Remember your preferences
- Ensure security of our Service
Consent Cookie
We use a cookie (dh_consent) to remember your cookie preferences. This cookie is stored for 180 days.
Analytics Cookies (Optional)
With your consent, we use Google Analytics to understand how visitors use our site. These cookies help us improve our Service by collecting anonymous usage data. Analytics cookies are only set if you click "Accept" on our cookie banner.
You can change your cookie preferences at any time by clearing your browser cookies and revisiting our site, where you will see the consent banner again.
10. Security
We implement appropriate technical and organisational measures to protect your data, including:
- Encryption of data in transit (HTTPS/TLS)
- Encryption of data at rest
- Regular security assessments
- Access controls and authentication
11. Children's Privacy
Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.
13. Contact Us
If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us:
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been violated: ico.org.uk