+45 35 55 91 56 [email protected]
Mon-Fri: 10:00 - 19:00

Privacy Policy

How we collect, use, and protect your personal information

Last updated: 15th January 2026

1. Introduction

tandrovika.top AS ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, and safeguard the data we collect from visitors to our website tandrovika.top and users of our restaurant customer loyalty analytics platform.

As a Danish company operating within the European Union, we comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This policy applies to all personal data processing activities conducted by tandrovika.top AS.

2. Data Controller Information

The data controller for your personal information is:

  • Company: tandrovika.top AS
  • Registration Number: CVR36251479
  • VAT Number: DK36742591
  • Address: Frederiksborggade 65, 1028 Copenhagen, Denmark
  • Email: [email protected]
  • Phone: +45 35 55 91 56

3. Data Collection

We collect various types of personal data to provide and improve our restaurant analytics services. The data we collect includes:

3.1 Information You Provide Directly

  • Contact Information: Name, email address, phone number, company name
  • Account Information: Username, password, profile preferences
  • Communication Data: Messages, inquiries, and feedback you send to us
  • Business Information: Restaurant details, POS system information, customer data (when using our platform)

3.2 Information Collected Automatically

  • Technical Data: IP address, browser type, operating system, device information
  • Usage Data: Pages visited, time spent on site, click patterns, feature usage
  • Analytics Data: Website performance metrics, user behaviour patterns

4. How We Use Your Information

We use the personal data we collect for legitimate business purposes, including how we use your information to provide and enhance our services:

4.1 Service Provision

  • Providing access to our restaurant analytics platform
  • Processing and analysing customer loyalty data for our clients
  • Delivering customer support and technical assistance
  • Managing user accounts and authentication

4.2 Business Operations

  • Processing payments and managing billing
  • Communicating about service updates and new features
  • Conducting market research and product development
  • Ensuring platform security and preventing fraud

4.3 Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: To fulfil our contractual obligations to provide services
  • Legitimate Interests: For business operations, security, and service improvement
  • Consent: For marketing communications and optional features
  • Legal Compliance: To meet regulatory and legal requirements

5. Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our cookie usage, please refer to our Cookie Policy.

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your data in the following circumstances:

6.1 Service Providers

  • Cloud hosting and infrastructure providers
  • Payment processing services
  • Analytics and marketing platforms
  • Customer support tools

6.2 Legal Requirements

  • Compliance with legal obligations
  • Response to court orders or government requests
  • Protection of our legal rights and interests
  • Prevention of fraud or security threats

7. International Data Transfers

As we operate within the European Union, your data is primarily processed within the EU. When we use service providers outside the EU, we ensure appropriate safeguards are in place, including:

  • Adequacy decisions by the European Commission
  • Standard Contractual Clauses (SCCs)
  • Binding Corporate Rules
  • Certification schemes approved by supervisory authorities

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy. Our data retention practices include:

  • Account Data: Retained for the duration of your account plus 7 years for legal compliance
  • Transaction Records: Retained for 7 years as required by Danish accounting laws
  • Marketing Data: Retained until you withdraw consent or for 3 years of inactivity
  • Website Analytics: Aggregated data retained indefinitely, personal identifiers removed after 26 months

9. Your Rights

Under GDPR, you have several rights regarding your personal data:

9.1 Access and Portability

  • Right of Access: Request a copy of the personal data we hold about you
  • Data Portability: Receive your data in a structured, machine-readable format

9.2 Correction and Deletion

  • Right to Rectification: Correct inaccurate or incomplete personal data
  • Right to Erasure: Request deletion of your personal data under certain circumstances

9.3 Processing Limitations

  • Right to Restriction: Limit how we process your data in specific situations
  • Right to Object: Object to processing based on legitimate interests or for marketing purposes

9.4 Exercising Your Rights

To exercise any of these rights, please contact us at [email protected] or call +45 35 55 91 56. We will respond to your request within one month of receipt.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and penetration testing
  • Access controls and employee training
  • Incident response and breach notification procedures

11. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe we have collected information about your child, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

13. Complaints and Supervisory Authority

If you have concerns about our data processing practices, you have the right to lodge a complaint with the relevant supervisory authority. In Denmark, this is:

  • Danish Data Protection Agency (Datatilsynet)
  • Website: www.datatilsynet.dk
  • Email: [email protected]

14. Contact Information

If you have any questions about this Privacy Policy or our data processing practices, please contact us:

  • Email: [email protected]
  • Phone: +45 35 55 91 56
  • Address: tandrovika.top AS, Frederiksborggade 65, 1028 Copenhagen, Denmark
  • Business Hours: Monday - Friday: 10:00 - 19:00

We are committed to addressing your privacy concerns promptly and transparently. Please don't hesitate to contact us if you need clarification about any aspect of our data processing activities.