VITECHSPARK LTD, trading as BoxDine ("we", "us", or "our"), is committed to protecting your personal information and your right to privacy. This Privacy Policy outlines how we collect, use, share, and protect your information when you use our website, mobile app, and related services ("Services").

1. Who We Are

BoxDine is a UK-based food delivery platform operated by VITECHSPARK LTD, registered in England and Wales. We connect customers with local restaurants and independent delivery drivers. BoxDine acts as a broker and does not prepare, store, or handle food directly.

2. Information We Collect

A. Information You Provide to Us

Full name

Phone number

Email address

Delivery address

Payment information (processed securely via third-party providers)

B. Information We Collect Automatically

IP address

Device information

Order history and app usage

Location data (with your permission)

3. How We Use Your Information

We use your information to:

Process and deliver your orders

Enable communication between you, restaurants, and drivers

Provide customer support

Improve our services

Comply with legal obligations

Prevent fraud and protect security

4. When and Why We Share Your Data

A. With Restaurants

We share your name, delivery address, and phone number only during active orders so they can fulfill your request.

B. With Delivery Drivers

We share limited contact information only while the order is in progress to complete delivery.

Once the order is marked “Delivered,” all personal contact details are removed from restaurant and driver dashboards.

C. With Third-Party Service Providers

We may share data with trusted providers such as:

Payment processors (e.g., Stripe)

SMS/call masking services (e.g., Twilio)

Hosting and analytics services

These providers only access your data to perform specific tasks on our behalf and are obligated to protect it.

D. Legal Compliance

We may disclose your information to comply with the law or enforce our Terms of Service.

5. Data Retention

Personal data is retained only as long as necessary to fulfill your order and support-related queries.

Phone numbers and emails are automatically deleted from restaurant and driver views once the order is completed.

Order metadata (not personal data) may be retained for reporting, analytics, or legal compliance.

6. Data Security

We take data protection seriously and use:

Encrypted storage and transmission (SSL/TLS, AES-256)

Role-based access controls

Secure cloud infrastructure

Regular security reviews and monitoring

7. Your Rights Under UK GDPR

As a user, you have the right to:

Access your personal data

Correct inaccurate data

Request deletion ("Right to be Forgotten")

Restrict or object to processing

Withdraw consent at any time

Lodge a complaint with the Information Commissioner’s Office (ICO)

To make a request, email us at policy@boxdine.co.uk

8. Cookies and Tracking

We use cookies and similar technologies for:

Authentication

Session management

Analytics and service improvement

You can manage cookie preferences via your browser settings.

9. Third-Party Links

Our platform may link to external websites or services. We are not responsible for their privacy practices.

10. Policy Updates

We may update this Privacy Policy occasionally. Changes will be notified through the app or by email.