Table8
Last Updated: 4/29/2026

Privacy Policy

We value your privacy and are committed to protecting your personal data.

Purpose and Scope

  • This Privacy Policy explains how Guagee Solutions, Lda. collects, uses, stores, discloses and protects personal data in the context of making the TABLE8 platform available and operating it, including the website, back office, management modules, digital menus, QR codes, orders, bookings, room service, technical support, service communications and related functionalities.
  • This Policy applies, in particular, to website visitors, persons requesting contact, a proposal or a demonstration, TABLE8 business clients, authorised users of those business clients and end customers, guests, consumers or other end users who interact with TABLE8 interfaces made available by a business client.
  • This Policy supplements the TABLE8 Terms and Conditions, the Cookie Policy and, where applicable to business clients, the Data Processing Agreement made available separately, as well as, where relevant, the terms and policies of payment providers and other integrated third parties.

2. Identification of the Controller

  • The entity responsible for processing personal data, whenever it determines the purposes and means of processing, is Guagee Solutions, Lda., with registered office at Rua Henrique Franco Pintor 12, Ed. Solar dos Barreiros 4.º V, 9000-767 Funchal, Portugal, Corporate Tax ID 515582859, telephone +351 291 600 023, email guageesolutions@gmail.com and website www.table8.io.
  • For matters relating to privacy and data protection, the preferred contact point is guageesolutions@gmail.com.
  • As no separate data protection officer has been designated, requests relating to privacy should, at this stage, be sent to the contact indicated above. Should a data protection officer whose contact details must be disclosed be appointed, this Policy will be updated accordingly.

3. Role of Guagee and Allocation of Responsibilities

  • TABLE8 operates in different data processing contexts. For that reason, Guagee may act as controller when it processes data for its own commercial, contractual, technical, administrative, security, invoicing, debt collection, compliance and rights protection purposes, or as processor when it processes personal data on behalf of and in accordance with the documented instructions of the business client.
  • As a general rule, where a hotel, restaurant or other participating establishment uses TABLE8 to manage digital menus, orders, bookings, room service, communication with guests or end customers, its own invoicing or the commercial operations of its business, that establishment acts as the controller in relation to the data of its end customers.
  • In such cases, Guagee generally acts as processor, without prejudice to the autonomous processing strictly necessary for security, integrity, availability, technical logs, fraud prevention, its own invoicing, contractual management and the defence of rights.
  • Unless mandatory law requires otherwise, Guagee does not assume the position of controller in relation to the personal data that the business client enters, or instructs to be entered, into the platform for the purposes of its own establishment.

4. Categories of Personal Data Processed

  • Depending on the context and the module used, the data processed may include, in particular, identification and contact data, account and authentication data, contractual, commercial and invoicing data, transactional and operational data, support, audit and incident data, and data provided by the business client relating to its own customers, guests, visitors or end users.
  • TABLE8 has been designed in accordance with the principle of data minimisation, and Guagee therefore seeks to limit processing to the data that are strictly necessary for the legitimate and proportionate purposes pursued.
  • TABLE8 is not intended, by design, for the systematic processing of special categories of personal data. The business client should not use free-text fields, notes, observations or other TABLE8 functionalities to collect or enter sensitive data, unless this is strictly necessary, lawful, proportionate and supported by a valid legal basis.
  • Whenever, at the initiative of the end customer or due to an operational requirement of the business client, information liable to reveal allergies, medical restrictions, disability, religious beliefs or other specially protected data is entered, the business client assumes primary responsibility for the lawfulness of that processing and for providing the information due to the data subject.

5. Purposes and Legal Bases for Processing

  • Personal data may be processed, depending on the context, for the purposes of responding to contacts and requests, managing demonstrations and proposals, onboarding clients, providing and operating the platform, authenticating users, managing subscriptions, processing payments through integrated providers, customer support, fraud prevention, information security, legal compliance, invoicing, contractual management, service communications, service improvement and the exercise or defence of rights.
  • Processing may be based, as applicable, on steps prior to entering into a contract, performance of a contract, compliance with legal obligations, legitimate interests pursued by Guagee or, where legally required, the consent of the data subject.
  • Where processing is based on legitimate interests, Guagee seeks to ensure that such interests are not overridden by the fundamental rights and freedoms of the data subject.
  • Where consent constitutes the legal basis, the data subject may withdraw it at any time, without affecting the lawfulness of processing carried out before withdrawal.

6. Sharing of Personal Data

  • Personal data may be shared, strictly where necessary and proportionate, with hosting providers, infrastructure providers, technical service providers, communications providers, authentication providers, integrated payment providers such as Stripe, subcontractors, professional advisers, auditors, insurers, competent authorities or courts where required by law, and other processors acting on behalf of Guagee under appropriate safeguards.
  • Where TABLE8 is used by a business client in relation to end customers or guests, personal data may also be made available to that business client as controller, in accordance with the service logic and the instructions associated with the functionality used.
  • Guagee does not sell personal data and does not disclose personal data to unrelated third parties for their independent direct marketing purposes.

7. International Data Transfers

  • Where the use of providers or infrastructure implies transfers of personal data outside the European Economic Area, Guagee seeks to ensure that such transfers take place under a lawful transfer mechanism recognised by applicable law, such as an adequacy decision, standard contractual clauses or another legally valid safeguard.
  • Given that certain integrated providers may operate internationally, some data may transit through or be stored in jurisdictions outside the EEA, subject to the safeguards referred to above.

8. Data Retention

  • Personal data are retained only for the period necessary for the purposes for which they were collected, for the period required by law or for the period necessary for the establishment, exercise or defence of legal claims.
  • Retention periods may vary depending on the category of data, the context of processing, applicable legal obligations, accounting or tax requirements, security needs and limitation periods.
  • Where data are processed by Guagee as processor on behalf of a business client, retention and deletion may also be governed by the instructions of that client, contractual arrangements and the applicable data processing agreement.

9. Security Measures

  • Guagee seeks to adopt technical and organisational measures appropriate to the risks involved, including access controls, logical segregation, monitoring mechanisms, authentication measures, internal procedures and security practices proportionate to the nature of the service.
  • However, no method of transmission over the internet or electronic storage is entirely secure, and Guagee cannot guarantee absolute security or the elimination of all risks.
  • Users and business clients also play an essential role in protecting personal data, including by safeguarding credentials, using secure environments and promptly reporting suspected incidents.

10. Rights of Data Subjects

  • Subject to the conditions and limits established by applicable law, data subjects may have the right of access, rectification, erasure, restriction of processing, objection, portability and the right not to be subject to certain automated decisions, where applicable.
  • Where processing is based on consent, the data subject may withdraw consent at any time.
  • Requests relating to rights may be submitted through the contact details indicated in this Policy. Where Guagee acts only as processor on behalf of a business client, the request may need to be addressed to the relevant controller, although Guagee may provide reasonable cooperation where legally required.
  • Data subjects may also have the right to lodge a complaint with the competent supervisory authority, namely in Portugal the Comissão Nacional de Proteção de Dados (CNPD), without prejudice to any other administrative or judicial remedy.

11. Cookies and Similar Technologies

  • The TABLE8 website and certain platform components may use cookies and similar technologies for functionality, security, preferences, analytics and, where applicable and lawfully used, other purposes described in the Cookie Policy.
  • Information relating to the use of cookies, their categories, purposes and management options is provided in the separate Cookie Policy, which should be read together with this Privacy Policy.
  • Where consent is required for non-essential cookies, those technologies will be used only in accordance with the choices made by the user through the relevant consent mechanisms.

12. Data Relating to Minors

  • TABLE8 is designed primarily for business and hospitality use and is not directed to children.
  • Guagee does not knowingly collect personal data directly from children where such collection requires parental authorisation under applicable law.
  • If a person believes that personal data relating to a child have been provided inappropriately, Guagee should be contacted so that the matter can be assessed and appropriate action considered.

13. Third-Party Links and Services

  • The website or platform may contain links, integrations or references to third-party services, websites or applications that are not controlled by Guagee.
  • This Privacy Policy does not apply to those third parties, whose own privacy policies and practices should be consulted independently.
  • Guagee is not responsible for the privacy practices, content or security of third-party services outside its control.

14. Contact for Privacy Matters

  • Questions relating to this Privacy Policy or to the processing of personal data may be addressed to:
  • Guagee Solutions, Lda. Rua Henrique Franco Pintor 12, Ed. Solar dos Barreiros 4.º V 9000-767 Funchal, Portugal Email: guageesolutions@gmail.com Telephone: +351 291 600 023
  • Requests should contain sufficient information to allow the matter to be analysed and, where appropriate, the identity of the requester to be reasonably verified.

15. Automated Decision-Making and Profiling

  • Unless expressly stated otherwise, Guagee does not make decisions based solely on automated processing that produce legal effects or similarly significantly affect the data subject.
  • Certain third-party providers, in particular payment providers or anti-fraud mechanisms, may use their own automated logic in accordance with their contractual and privacy documentation.

16. Commercial Communications

  • Guagee may send communications strictly necessary for the functioning of the service, such as technical alerts, operational notifications, invoicing, security and support communications.
  • Guagee’s own commercial communications shall be sent only where there is valid consent or another legally permissible basis, and it shall always be possible to object or withdraw consent through the means made available for that purpose or through the privacy contact indicated in this Policy.

17. Minors

  • TABLE8 is not directed at minors for business contracting purposes.
  • Any processing of minors’ data in the context of the business client’s activities is the responsibility of that client, save to the extent that Guagee has its own direct involvement in the processing or where a specific legal obligation requires otherwise.

18. Amendments to this Policy

  • Guagee may update this Privacy Policy for legal, technical, operational, commercial or security reasons.
  • The version published on the website at any given time shall prevail, without prejudice to any additional communication duties where legally required.