COUVERTBook a walkthrough
Legal

Privacy

Last updated 14 June 2026

Couvert is a reservation platform for restaurants. This notice explains what personal data we process, why, and the rights you have. It covers the Couvert house product (this site, the host stand, and the studio console). Each restaurant using Couvert is the data controller for its own guests; Couvert acts as their processor.

Who we are

Couvert is operated from Latvia. For any privacy question, write to privacy@couvert.app. Where Couvert processes guest data on behalf of a restaurant, that restaurant is the controller and Couvert the processor under a data processing agreement.

What we process

  • Reservation data: name, contact details, party size, date and time, table or zone, notes, and language preference.
  • Operator accounts: staff names and emails for the host stand and studio.
  • Payment data: handled by our payment processor. Couvert never stores card numbers.
  • Technical data: minimal logs needed to run and secure the service.

Why we process it

  • To take and manage reservations, send confirmations and reminders, and let guests modify or cancel.
  • To run the host stand and studio for restaurant staff.
  • To secure the service, prevent abuse, and meet legal obligations.

Our lawful bases are the performance of a contract (your reservation), the legitimate interests of the restaurant in running its service, and consent where required.

Sub-processors

We use a small set of trusted providers, each under a data processing agreement:

  • Supabase · database and authentication (EU region).
  • Stripe · payment processing, including any deposits a restaurant chooses to take.
  • Resend · transactional email (confirmations, reminders).
  • Vercel · hosting and delivery.

Some providers may process data outside the EU under appropriate safeguards such as Standard Contractual Clauses. A current list is available on request.

Retention

Reservation data is kept while it is needed for the restaurant to run its service and meet its obligations, then deleted or anonymised. Restaurants can configure their own retention with us.

Your rights

Under the GDPR you may request access, correction, deletion, restriction, portability, and you may object to certain processing. For guest data, contact the restaurant you booked with, or write to us and we will route your request. You may also complain to the Latvian Data State Inspectorate (Datu valsts inspekcija).

Changes

We will update this notice as the service evolves and note the date at the top. Material changes will be made clear to the restaurants we serve.