Last Updated: August 1st, 2025

This privacy policy (“Policy”) describes how TableAura, Inc. (“TableAura,” “we,” “our,” or “us”) collects, uses, and discloses information about you, as well as your rights and choices regarding that information. It applies to your use of, access to, and interactions with the TableAura mobile application (“Application”), the www.tableaura.com website (“Website”), and any other online services operated by TableAura that link to this Policy (collectively, the “Service”). Together, the Website, Application, and Service are referred to in this Policy as the “TableAura Platform.”

Data protection laws distinguish between organizations that process information for their own purposes (known as “controllers” or “businesses”) and those that process information on behalf of others (known as “processors” or “service providers”). This Policy applies only when we act as a controller or business. It does not apply to any personal information we process on behalf of a client or partner as a processor or service provider; in those cases, the partner’s privacy policy will govern.

Certain states may require additional disclosures. If you are a resident of California, Colorado, Connecticut, Montana, Nevada, Oregon, Texas, Utah, Virginia, or another state with similar privacy laws, please refer to the applicable section at the end of this Policy.

If you have any questions or concerns about this Policy, you can contact us at privacy@tableaura.com.

We may modify or replace this Privacy Policy at any time in accordance with Section 11 (“Changes to this Privacy Policy”).

Information We Collect From You

We collect personal information from you in the course of providing the Service. “Personal information” means any information that can be used, directly or indirectly, to identify, locate, or contact someone. This includes name, physical and mailing addresses, email address, phone number, and other identifiers such as credit card details, IP addresses, or device IDs.

Examples include:

• Registration information like your name, email, phone number
• Linked payment card details (last four digits, transaction metadata)
• Your selected Rewards redemptions
• Messages or emails you send us
• Automatically collected data like IP address, device info, click behavior, and location

Demographic Information

We may ask you to provide your age, gender, birthday (day and month), and general geographical location.

Payment Information

To make a purchase, we may ask you to provide a payment card number along with expiration date and security code. This information is processed by third party payment processors.

Purchase Information

If you choose to make a purchase through TableAura Platform, including when you pay at a participating restaurant using TableAura or when you redeem rewards earned through the Platform, we may receive information about your transaction. This can include details such as the date and time of your visit, the amount spent, the items ordered, and other relevant data necessary to process the payment and apply rewards. We may also collect information you provide about your dining preferences and interests, along with insights from your use of the TableAura app, such as your visit history.

Dining Preferences

We collect information you choose to provide regarding your dining preferences, including allergy information and dietary restrictions.

Referral Information

We collect information you provide when you refer the Service to another person, which may include the recipient’s email address.

User Content

We may collect content, including profile pictures, within any messages you send to us (such as feedback or questions to customer support) or upload to your profile.

Job Application Information

If you apply for a job, we may ask you to provide information to evaluate you for the job and other open positions, including your employment and education history, transcripts, writing samples, and references.

Information From Your Browser or Device

When you use the TableAura on your mobile phone, computer, or other device, we may automatically collect information such as: (i) information your device sends or transmits, including your device type, your device ID number, and user settings (“Device Information”); (ii) information about your use and navigation of the TableAura Platform, such as offers viewed and/or used and pages visited (“Service Use Information”); and (iii) information about your general location (such as non-precise location data derived from an IP address).

We and the third parties we work with use tracking technologies to collect this information, including use of session ID and persistent cookies, data collection tags or directives such as “pixel tags,” Javascript scripts, API calls, and/or other technologies. A cookie is a small data file that is kept in your device’s memory for record-keeping purposes. A pixel tag is an electronic image, often a single pixel and often transparent, that is placed on a web page and may be associated with cookies on your device. For further information on how we use tracking technologies for analytics and advertising, and your rights and choices regarding them, see the “Analytics and Advertising” and “Your Rights and Choices” sections below.

Information From Third Parties and Publicly Available Sources

We also receive information about you from other sources. We are not responsible for the data practices of these other sources, and you should consult their privacy policies, as applicable.

Merchant Partners

We may receive information, such as your dining preferences, likes, dislikes, from our Merchant Partners.

Reservation Platforms

We may receive information regarding your reservations from platforms with which you interact.

Social Media

We may receive information when you interact with a social media platform.

Vendors

We may receive information from vendors we work with, including analytics and advertising providers, fraud prevention services, and others.

Publicly Available Information

We may receive information that is publicly available.

How Do We Use The Information

We collect and use information in accordance with the practices described in this Policy, including as follows:

Providing Service to You

We may use information about you to administer the TableAura Platform, including maintaining your account.

Communications in Response to Your Actions

We use information about you to communicate with you. When you sign up to TableAura Platform, make a purchase, earn rewards, redeem rewards, you will receive emails that confirm specific actions you have requested. You will receive notifications confirming your registration, the successful purchase of, and use of, reward or a membership, and follow-ups from us if you wish to use our services. These emails are a necessary part of the TableAura Platform. We may also send you responses to emails you send us, if appropriate. We may also contact you via SMS to verify that you are the true owner of your TableAura account when you sign in on a new device or apply to claim a TableAura offer (this process is known as two-factor authentication).

Communications about Updates and Security

We will send you email notifications from time to time. Typically we send these emails to notify you of a change in status for security purposes. For example, certain notifications are sent for your own protection to ensure that another person cannot make a change to your account without your knowledge, or to seek confirmation of an action you have taken. In other cases, these notifications involve changes to various legal agreements or website policies. Generally you may not opt out of such service-related emails.

Marketing Communications

We may at times send emails, texts, or push notifications through the Application to you. Standard text charges may apply. If you have opted-in to receive push notifications on your device, you can opt-out by adjusting your device settings or uninstalling our app. If you have opted-in to receive texts, you can opt-out by texting “STOP” in response to any text message you receive from us or by emailing privacy@tableaura.com and specifying you want to opt-out of text messages. Please note that your opt-out is limited to the device and phone number used.

Understanding Trends and Improving the Service

We may use information about you to understand trends and behaviors, determine the effectiveness of our content, marketing, and advertising initiatives, and improve the overall TableAura Platform and our other services, content, marketing and advertising initiatives.

Personalizing Your Experience

We may use information to personalize your experience with the TableAura Platform and present relevant content and offers.

Surveys and Feedback Requests

From time to time, we will send user surveys, feedback requests regarding user experience and website operations or marketing offers from us, or from us on behalf of our marketing partners. The completion of these surveys or requests for feedback or acceptance of any offer is strictly voluntary and you can opt out of receiving any such communications in the future by letting us know via the unsubscribe link included in any offer email you receive from us or by emailing us at privacy@tableaura.com.

Advertising

We may use information about you to advertise our products and services. Various third parties such as ad agencies, ad networks, publishers, social media platforms, and technology providers may be involved in this process. For example, we place ads on third party publisher websites and social media platforms. These ads incorporate tracking technologies to help serve the ads, measure their performance, detect ad fraud, limit the frequency of ads shown, and provide insights. If you visit the TableAura Platform after seeing an ad on a third party service, tracking technologies on the TableAura Platform help us attribute conversions and determine how effectively we use our ad budgets.

Some of the advertising we engage in may be “targeted advertising,” which is the practice of showing you more relevant or personalized ads based on your activity collected over time and across non-affiliated services. Targeted advertising often involves us incorporating third party tracking technology into the TableAura Platform or providing (often hashed) contact or device identifiers to a third party, which then matches common factors between our data and their data (or a partner’s data) to serve ads to you or individuals like you. For example, we incorporate the Meta pixel on our Website to serve ads to audiences created by Meta based on the data we provide.

Referrals or Gifts

We may use information you provide when you refer others to invite them to the TableAura Platform at your request.

Merchant Partners

We may use information about you to provide you with information about Merchant Partners, facilitate and improve the services at local businesses and for Merchant Partners, and match your information with transactions to identify you to Merchant Partners as a VIP. This may include providing exclusive invitations to events.

Security

We may use your information to protect the rights, property, life, health, security and safety of us or anyone else.

At Your Direction

We use your information at your direction, such as generating your purchase orders and making reservations on your behalf through our reservation system.

With Your Consent

We may use your information for additional purposes with notice to you and with your consent.

Notwithstanding the above, we may use information that does not identify you (including information that has been aggregated or de-identified as those terms are defined by applicable law) for any purpose to the extent permitted by applicable law. For information on your rights and choices regarding how we use information about you, please see the “Your Rights and Choices” section below.

When Do We Disclose Information?

TableAura discloses information about you to third parties in certain circumstances including: (a) with your knowledge and consent; (b) as described in this Privacy Policy; (c) as may be required by law, regulatory authorities, or legal process; (d) as permitted to protect the rights, property, safety, confidentiality, or reputation of TableAura or its users; (e) to enforce our terms and conditions; (f) to prevent fraud or cybercrime; or (g) to permit us to pursue available remedies or limit the damages that we may sustain.

We may disclose information about you to the following categories of persons:

Service Providers

Under the protection of appropriate agreements, we may disclose information about you to service providers we use to perform various tasks on our behalf including data storage, consolidation, retrieval, analysis, marketing and advertising services, or other processing, as well as for the purposes of effective management of customer information and to help us communicate with you. To the extent required by applicable law, these service providers are prohibited from using information about you for other purposes, provided that we may permit them to use information that does not identify you (including information that has been aggregated or de-identified as those terms are defined by applicable law) to the extent permitted by applicable law.

Related Companies

We may disclose information about you to our affiliate, parent, or related companies so that they may use information for their own purposes in accordance with their privacy policies, and to provide the additional services of those group companies. TableAura remains responsible for the management of this information.

Third Party Vendors and related Third Parties

Some of the third parties we work with independently control the purposes and means of processing your information. For example, we disclose information to ad networks, technology providers, and other third parties that help provide targeted advertising. For these third parties, we encourage you to familiarize yourself with and consult their policies and terms of use.

Merchant Partners and Transaction Providers

If you choose to participate in the TableAura Platform, we disclose Personal Information and the payment card information you entered to the appropriate transaction provider, for example, to our tip processor (Stripe), to a Merchant Partner’s reservation platform (like SevenRooms), or to a Merchant Partner’s point of sale system operator (like Clover or Toast).

Merger or Acquisition

As our business continues to grow and change, we might restructure, buy, or sell subsidiaries and/or business units. In these transactions, customer information is often one of the transferred assets, remaining subject to promises made in the prevailing privacy policy. In the event TableAura, or substantially all of its assets or stock, is acquired, transferred, or disposed of (in whole or in part and including in connection with any bankruptcy or similar proceedings), information about you will as a matter of course be one of the transferred assets.

Security and Compelled Disclosure

We may disclose information to comply with the law or other legal process, and where required, in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. We also disclose information to protect the rights, property, life, health, security and safety of TableAura or anyone else.

Facilitating Requests

We disclose information where you direct us to disclose the information.

Notwithstanding the above, we may disclose information that does not identify you (including information that has been aggregated or de-identified as those terms are defined by applicable law) to the extent permitted by applicable law. For example, we may disclose such information for the purposes of industry analysis, demographic profiling, investor reporting, and similar purposes with third parties or the public. We may disclose such information in an industry white paper or press article.

Your Rights and Choices

Jurisdictional Rights

In addition to these rights and choices, you may have rights based on your jurisdiction. If you are a California, Colorado, Connecticut, Montana, Nevada, Oregon, Texas, Utah, or Virginia resident, please see the disclosures at the end of this Policy.

Account Management

You may review, update, correct or delete certain Information about you in your account by making the appropriate modifications in your account preferences.

You can make changes in the Application by clicking on Settings and making changes.

To remove a Payment Card, in the Application, go to “Account,” and tap on “Payment Methods,” tap on the card you wish to remove and follow the steps to unlink it.

If you completely delete all such information, then your account may become deactivated. If you would like us to delete your Account and/or remove your records from our system, in the Application, go to “Account,” tap on “Settings,” then choose “Delete Account.” Alternatively, please contact us and we will delete your account within 45 days. Please note that we will retain and use information about you as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Tracking Technology Management

The TableAura Platform may place cookies on your browser. At any time, through your browser settings, you may instruct your device to stop accepting cookies or to prompt you before accepting a cookie from websites you visit by changing your device’s settings. If you use multiple browsers on your device, you will need to instruct each browser separately. Your ability to limit cookies is subject to your browser settings and limitations. Please note that if you do not accept cookies, you may lose some functionality of the TableAura Platform.

Your browser or extension may allow you to automatically transmit preference signals regarding tracking technologies to online services you visit. We respond to such signals, where required by law. If you choose to opt-out from sale or sharing without the use of a global preference signal, you can also submit this request through the “Your Privacy Choices” link here as well.

You can stop all collection of information via an app by uninstalling the app. For Apple iOS, we will only receive access to your device’s Ad ID (known as an IDFA) if you provide consent. You can reset your device’s Ad ID at any time through your device settings, which is designed to allow you to limit the use of information collected about your device.

Third Party Opt-Out Tools

Google provides tools to allow you to opt out of the use of certain information collected by Google Analytics at https://tools.google.com/dlpage/gaoptout and by Google Analytics for Display Advertising or the Google Display Network at https://www.google.com/settings/ads/onweb/.

The companies we work with to provide you with Interest-based Advertising may be participants of the Digital Advertising Alliance (“DAA”) and/or the Network Advertising Initiative (“NAI”). For details, visit https://www.networkadvertising.org/choices/ and https://youradchoices.com/control. We are not responsible for the effectiveness of their tools.

Please note that the above opt outs only apply to the specific browser or device from which you opt out. We are not responsible for the effectiveness of any opt outs offered by other entities.

International Data

We are based in the United States and the information we collect is governed by United States law. If you are outside the United States, your information will be stored and maintained on computers located outside of your state, province, country or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction. If you choose to provide information to us, TableAura collects information in the United States and processes it there and in other jurisdictions. Your use of the TableAura Platform represents your agreement to this collection, storage, and processing.

Links to Other Sites

The TableAura Platform may contain links or APIs (e.g. data or content exchange interfaces) to external services or websites of third parties. If you click on a button, banner ad, or other type of third party link, you will be directed to that third party’s resources. The fact that we may link to or incorporate a third party’s services, functionality, or website, or present a banner ad or other type of advertisement, is not an endorsement, authorization, or representation of our affiliation with that third party, nor is it an endorsement of their privacy or information security policies or practices. We do not exercise control over third party services, functionality, websites or other resources, including their use of information, and you should exercise caution when deciding to disclose any information to a third party. We encourage you to read the privacy policies or statements of the other websites you visit to learn more about their privacy practices.

Children’s Information

The TableAura Platform is not directed to children. We do not knowingly collect personal information from children under 13. If you are under 13 years of age, please do not provide any information. If you are a parent or guardian that has become aware that your child has provided us with information, please contact us (privacy@tableaura.com). If we become aware that a member is under the age of 13 and has provided us with their information, we will delete such information from our files.

Data Security

We implement and maintain reasonable administrative, physical, and technical security safeguards to help protect information about you from loss, theft, misuse and unauthorized access, disclosure, alteration and destruction. Nevertheless, transmission via the internet is not completely secure and we cannot guarantee the security of information about you.

Changes to this Policy

From time to time, TableAura may update this Policy. Any changes will be effective immediately upon posting of the revised Policy. If we make material changes to our Privacy Policy, we will issue an updated version of this Privacy Policy with an updated date legend and/or notify you via email, the Website, Application, or by other appropriate means if it is a significant change. You should review this Policy regularly to ensure you are familiar with any changes to it. Your continued use of our Services indicates your consent to the Policy then posted.

How To Contact Us

If you have questions or concerns regarding this Privacy Policy, please contact TableAura at privacy@tableaura.com.

California

California provides additional rights to California residents, including through the California Consumer Privacy Act as replaced by the California Privacy Rights Act as amended by the California Privacy Rights Act (“CCPA”). This section addresses those rights and only applies to California residents.

Sensitive Personal Information

To the extent any of the personal information we collect is sensitive personal information, we collect, use, and disclose such sensitive personal information only for the permissible business purposes for sensitive personal information under the CCPA. We do not sell or share sensitive personal information.

Retention

We retain each category of personal information for the length of time that is reasonably necessary for the purpose for which it was collected, and as necessary to comply with our legal obligations, resolve disputes, prevent fraud, and enforce our agreements.

Right to Know, Correct, and Delete

You have the right to know certain details about our data practices. In particular, you may request the following from us:

• The categories of personal information we have collected about you;
• The categories of sources from which the personal information was collected;
• The categories of personal information about you we disclosed for a business purpose or sold or shared;
• The categories of persons to whom the personal information was disclosed for a business purpose or sold or shared;
• The business or commercial purpose for collecting or selling or sharing the personal information; and
• The specific pieces of personal information we have collected about you.

In addition, you have the right to correct or delete the personal information we have collected from you, subject to exceptions.

To exercise any of these rights, please email us at privacy@tableaura.com. If you have an account with us, we may require you to use the account to submit the request. In the request, please specify which right you are seeking to exercise and the scope of the request. We will confirm receipt of your request within 10 business days and respond to your request within 45 days. We may require specific information from you to help us verify your identity and process your request. If we are unable to verify your identity, we may deny your request. These rights may be subject to certain exceptions.

Right to Opt-Out of Sales and Sharing

To the extent we sell or share your personal information to third parties as those terms are defined under CCPA, you have a right to opt-out from the sale or sharing, which you can exercise through the “Your Privacy Choices” link here and in the footer of our website. In addition, you may exercise this right by turning on a recognized opt-out preference signal, such as Global Privacy Control, in your browser or extension.

Note that when you submit an opt-out, your opt-out will only apply to sales and shares of personal information through tracking technologies from the specific browser from which you submitted the opt-out because the connection between your browser identifiers and other personal information we have about you is not known to us. Opt-outs also apply to any pseudonymous profiles we maintain associated with your browser or device. If you want the opt-out to also apply to other personal information we have about you (such as your contact information), please use the link and provide your contact information as requested or make sure you are logged into your account when submitting the opt-out.

Authorized Agent

You can designate an authorized agent to submit requests on your behalf. Requests must be submitted through the methods listed above. Except for opt-out requests, we will require written proof of the agent’s permission to do so and may verify your identity directly. Requests must be submitted through one of the designated methods above.

Right to Non-Discrimination

You have the right not to receive discriminatory treatment by us for the exercise of any of your rights.

Shine the Light

Customers who are residents of California may request (i) a list of the categories of personal information (as that term is defined by Shine the Light) disclosed by us to third parties during the immediately preceding calendar year for those third parties’ own direct marketing purposes; and (ii) a list of the categories of third parties to whom we disclosed such information. To exercise a request, please write to us at the email or postal address set out in “Contact Us” above and specify that you are making a “California Shine the Light Request.” We may require additional information from you to allow us to verify your identity and are only required to respond to requests once during any calendar year.

Nevada

We do not sell and will not sell your covered information (as those terms are defined by NRS 603A.340).

Colorado, Connecticut, Montana, Oregon, Texas, Utah, and Virginia

For residents of Colorado, Connecticut, Montana, Oregon, Texas, Utah, and Virginia, our practices regarding the collection, use, disclosure, and retention of your personal data are set out in the main Privacy Policy above.

Some of our disclosures may be considered a sale under applicable law, which is often defined to include a disclosure for something of value. We may also process your personal data for purposes of targeted advertising. We do not process personal data for purposes of profiling in furtherance of decisions that produce legal or similarly significant effects concerning consumers.

Some of the personal data we collect may be considered sensitive personal data under applicable law. We collect sensitive personal data with your consent.

You have the following rights under applicable law:

• To confirm whether or not we are processing your personal data, and in some regions, confirm the categories of data we have processed
• To access your personal data
• To correct inaccuracies in your personal data
• To delete your personal data
• To obtain a copy of your personal data that you previously provided to us in a portable and readily usable format

If you are an Oregon resident, you also have the right to receive a list of the specific third parties to which we have disclosed personal data.

To exercise any of these rights, please email us at privacy@tableaura.com and specify which right you are seeking to exercise. We will respond to your request within 45 days. If you have an account with us, we may require you to use the account to submit the request. We may require specific information from you to help us confirm your identity and process your request. If we cannot verify your identity, we may deny your request in accordance with applicable law.

You also have the right to opt out of us selling your personal data or processing your personal data for purposes of targeted advertising. To exercise this right, click the “Your Privacy Choices” link here or in the footer of our website. In addition, you may exercise this right by turning on a recognized opt-out preference signal, such as Global Privacy Control, in your browser or extension.

Note that when you submit an opt-out, your opt-out will only apply to sales and shares of personal information through tracking technologies from the specific browser from which you submitted the opt-out because the connection between your browser identifiers and other personal information we have about you is not known to us. Opt-outs also apply to any pseudonymous profiles we maintain associated with your browser or device. If you want the opt-out to also apply to other personal information we have about you (such as your contact information), please use the link and provide your contact information as requested or make sure you are logged into your account when submitting the opt-out.

You also have the right to revoke consent previously given to us for the processing of your personal data. To revoke consent, contact us as set out in the How To Contact Us section above (specifying the consent you wish to withdraw). If you withdraw consent, you may not be able to receive certain services related to that consent.

If we refuse to take action on a request, you may appeal our decision within a reasonable period of time by contacting us at support@tableaura.com and specifying your wish to appeal. Within 60 days of our receipt of your appeal, we will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions. If the appeal is denied, you may submit a complaint to your Attorney General as follows:

• For Colorado residents: https://coag.gov/file-complaint/
• For Connecticut residents: https://www.dir.ct.gov/ag/complaint/
• For Montana residents: https://dojmt.gov/consumer/
• For Oregon residents: https://justice.oregon.gov/consumercomplaints/
• For Texas residents: https://oag.my.salesforce-sites.com/CPDOnlineForm
• For Utah residents: https://attorneygeneral.utah.gov/contact/complaint-form/
• For Virginia residents: https://www.oag.state.va.us/consumercomplaintform

Updated August 1st, 2025.

Secondary uses of information

We may also use and disclose personal information about you for a purpose (the “secondary purpose”) other than the main purpose for which you gave us the information (the “primary purpose”) where:

• You would reasonably expect us to use or disclose the personal information for that secondary purpose and that secondary purpose is related to the primary purpose for which we collected the information (and directly related in the case of sensitive information);
• You have given us your consent for the personal information to be used or disclosed for the secondary purpose.
• Where there are reasonable grounds to believe that use or disclosure is necessary to prevent a threat to life or health;
• Where we suspect that unlawful activity is or has been engaged in and we use or disclose the personal information to investigate the suspected unlawful activity; or
• The use or disclosure is authorised by law or reasonably necessary to enforce the law.

Notifications

We will send you email notifications from time to time. These are a necessary part of the process of you loading a house account, such as seeking confirmation of an action you have taken. Typically we send these to notify you of a change in status for security purposes. For example, certain notifications are sent for your own protection to ensure that another person cannot make a change to your account without your knowledge. In other cases, these notifications involve changes to various legal agreements or website policies. Generally you may not opt out of such service-related emails.

View and Correct Your Information

You can access, review and update the personal information you submit at any time via the TableAura mobile app.

Web-Related Information Collection

Cookies

We use cookies on our website for various purposes. Cookies are small text files created by a website that store information on your computer, such as your preferences when visiting that website. We use cookies when you sign in, to keep track of your personal session, including some account identifiers so that we can ensure that you are the only person making changes to your account. We also use cookies to track your activity on our website as a unique person.

We use both session cookies and/or persistent cookies. We use session ID cookies to make it easier for you to navigate our website. Session ID cookies expire after two hours of inactivity or when you close your browser. We use a persistent cookie that remains on your hard drive for an extended period of time, so that we can recognize you when you return to our website. You can remove persistent cookies by following directions provided in your Internet browser’s “help” file or at Google’s Opt-Out Add-On Page; however, because we use cookies for our sign-in functionality, if you choose to disable cookies you will not be able to log onto the TableAura website.

We use tracking pixels and third party cookies on our sites from Google Analytics, DoubleClick, Facebook, Twitter and other third party vendors.

How We Use the Information We Collect

We use third-party tracking services (e.g. Google Analytics’ Demographic and Interests reporting) that use cookies to track non-personally identifiable information about visitors to our website in the aggregate (this enables us to gauge the effectiveness of our services, marketing programs and ad targeting). We use respective web beacons to gather information that lets us tune and improve our users’ browsing experience, as well as track user responsiveness to various advertising campaigns and promotional activities. As with cookies, the information these beacons collect is an aggregated, anonymous “click stream” and transactional data, and is not associated with any users as individuals. No personal or sensitive information is transmitted to advertising partners.

Links to Other Sites

If you follow any links that direct you away from our website, this Privacy Policy will not apply to your activity on the other websites you visit. We do not control the privacy policies or the privacy practices of any third parties.

Security Policy

We are committed to maintaining the security and confidentiality of your personal and financial information.

We control access to your information via secure web pages and limit access to employees and third parties on a need-to-know basis. We will take reasonable steps to destroy or de-identify personal information when it is no longer required for the purposes for which we collected it or for legal requirements.

We employ firewalls and other security technologies to protect our servers from external attack. We enable our servers with Secure Socket Layer (SSL) technology to establish a secure connection between your computer and our servers, creating a private “conversation” that cannot be viewed or accessed by other parties. We test our systems regularly to ensure that our security mechanisms are up to date.

We also employ session time-outs to protect your account. You will be logged out of the website automatically after a specified period of inactivity. This time-out feature reduces the risk of others being able to access your account if you leave your computer unattended.

Federal and state regulations may require that we maintain and report aggregate demographic information on members who participate in transactions. We may also maintain information, including personally identifiable information of our members, for a period of seven years or more.

We will properly dispose of all paper files, letters and any other hard copy documents that contain personal information that is no longer required. All information stored in electronic form that is no longer needed will be deleted from our systems. While TableAura employs advanced data encryption technology when interfacing with its customers, suppliers and other partners, users should be aware that there is a residual risk in transmitting any data electronically. This risk is inherent in all Internet dealings.

What you can do

You can take several precautions to protect the security of your computer and personal information:

• log out of our website and close the internet browser when you finish a session
• install security software (antivirus and firewall) to protect your computer from external attacks

We also send automatic notifications if certain actions are taken on your account, such as an OTP, and verify email, so you can be sure nobody else is making changes without your knowledge. This will be undermined if other people have access to your email account so it might be prudent to restrict access to this account and/or change its password frequently.

If you use a computer that is accessed by other people, such as in a public library or Internet cafe, we recommend that you take special precautions to protect the security of your account and personal data. When accessing our website from a public computer (library or internet café) we recommend you end your session by logging out completely, then closing the browser window and clearing the browser’s cache files.

Business Transfers

If any or all of the TableAura assets are acquired by, or merged with those of another entity, or in the event of a bankruptcy, we may disclose, share or transfer some or all of our users’ data, to or with the relevant entity in connection with the transaction, so that the successor entity can continue providing our services to our users. If the data handling practices of that entity do not meet the substance of this Privacy Policy, you will be given the opportunity not to continue to use our website.

Updates

This Privacy Notice may be updated from time to time in order to reflect changes in our practices. We will notify you of any material changes by posting the new Privacy Policy on the website, and will obtain the necessary consents as required under applicable law if we seek to collect, use or disclose personal data for purposes other than those for which consent has been obtained.

Except as stated above, all changes will apply to the personal data that is already collected, and to personal data that is collected after the effective date of the revised policy. If any proposed change is unacceptable to you, you will have the right to terminate your relationship with us. You are advised to consult this Privacy Policy regularly for any changes.

Accessing your personal information

We will take all reasonable steps to ensure that all information we collect, use or disclose is accurate, complete and up-to-date. Please contact us if your details change or if you believe the information we have about you is not accurate or complete.

We will, on request, provide you with a reasonable opportunity to access your personal information and to request that it be corrected or updated within a reasonable time of the request being made. A fee may apply to such access (but not to the making of the request). Exceptions to your access rights include:

• Where providing access will pose a serious threat to the life or health or any individual or pose an unreasonable impact on the privacy of an individual;
• Your request for access is frivolous or vexatious;
• Where the information relates to existing legal proceedings between TableAura and you and the information would not be discoverable in the process of those legal proceedings; or
• Where providing access would be unlawful, may prejudice an investigation of possible unlawful activity, may prejudice enforcement of laws, or denying access is specifically authorised by law.

In some circumstances we are permitted to refuse to give access or to correct your personal information. If this occurs, we will provide you written reasons (unless it would be unreasonable to give reasons) and if required, advise you of your right to complain.

You will be required to satisfy identity validation procedures to prove that you and the individual requesting the personal information are one and the same.

How To Contact Us

If you have an access request or if you have any questions or complaints about the manner in which your personal information has been collected or handled by us, or about this Privacy Policy, please contact TableAura at privacy@tableaura.com. Any complaints will be handled in the order in which they were received and we will respond to you via email to notify you of what action has been taken.