Privacy Policy

1. Overview and Scope

This privacy policy explains how personal data is processed when you use this restaurant website, ordering, delivery, pickup, table reservation, contact, customer account, payment, map, security or cookie functions.

Personal data means any information relating to an identified or identifiable natural person, such as name, contact details, delivery address, order and reservation data, payment information, device and usage data and online identifiers.

Last updated: 23 April 2026

2. Controllers, Roles and Contact

Restaurant offer:
Restaurant Aagaman

prakashthapa96@hotmail.com

Technical platform / Letzdine:
Virtuma UG (haftungsbeschränkt)
Managing Director: Klein Adrien
Petersberg 12, 54457 Wincheringen, Deutschland
Email: info@letzdine.eu

For restaurant services, food, drinks, prices, deliveries, pickups, table reservations and restaurant-related communication, the restaurant is generally the controller. Letzdine provides the technical system and processes data, depending on the purpose, either as processor for the restaurant or as an independent controller, in particular for the Letzdine account, consent management, platform security, technical system analytics, central support and evidence obligations and its own legal obligations.

Where the restaurant and Letzdine exceptionally jointly determine purposes and means of processing, processing is based on a joint controller arrangement under Art. 26 GDPR. The essential information will be provided on request where it is not already apparent from this policy.

No data protection officer is currently appointed for Letzdine.

3. Data Processed

Depending on use, the following data may be processed in particular:

  • identity and contact data such as name, email address, phone number, delivery address, billing address, company details and voluntary notes,
  • account and login data such as customer account, password hash, login times, language settings, customer status and linked restaurant websites,
  • order and reservation data such as restaurant, products, extras, quantities, prices, payment method, delivery or pickup type, desired time, number of persons, status, vouchers, loyalty points, tips, notes and complaints,
  • payment data such as payment method, payment status, amount, currency, transaction references, billing or payment information and technical security information provided by payment providers,
  • communication data such as contact form content, emails, support requests, system messages, order notifications and restaurant replies,
  • technical data such as IP address, access date and time, pages accessed, referrer, browser, operating system, device type, language, time zone, logs, errors, cookie and consent data, cart, wishlist, filters and form states,
  • map, location and search data such as entered address, postcode, city, search terms, geocoding results and map interactions.

4. Purposes and Legal Bases

Data is processed to provide the website, receive and handle orders and reservations, manage customer accounts, enable payments, answer requests, provide support, manage vouchers and loyalty points, prevent abuse, comply with legal obligations and technically secure and improve the platform.

Contract and pre-contractual measures
Art. 6(1)(b) GDPR, in particular for account, order, reservation, delivery, pickup, payment and communication.
Legal obligations
Art. 6(1)(c) GDPR, in particular for commercial, tax, accounting, security and evidence obligations.
Legitimate interests
Art. 6(1)(f) GDPR, in particular for security, fraud and abuse prevention, error analysis, legal defence, technical stability and proper platform provision.
Consent
Art. 6(1)(a) GDPR and Sec. 25(1) German TDDDG, in particular for cookies, Local Storage, analytics, marketing and comparable technologies requiring consent.

5. Website Access, Server Logs and Security

When the website is accessed, technical access data is processed so the page can be delivered, errors can be detected, attacks can be prevented and platform security can be ensured. This may include IP address, time, URL, referrer, browser, operating system, device type, response status, loading times and error events.

6. Customer Account, Registration and Login

If you create an account or log in, the required account, contact and login data is processed. The account can be used on Letzdine and participating restaurant websites. It may therefore be visible that an account exists via Letzdine or a participating restaurant website.

7. Orders, Deliveries, Pickups and Reservations

For orders and reservations, the data required for processing is processed and transmitted to the restaurant. This includes in particular name, email address, phone number, delivery address, restaurant, products, extras, quantities, prices, delivery, pickup or reservation time, number of persons, notes and status information.

The restaurant uses this data to check, accept, prepare, deliver or provide the order or reservation, ask questions and comply with legal obligations. Letzdine processes this data for technical execution, display, notifications, documentation and error handling.

8. Payments via Stripe, PayPal and Other Payment Methods

Depending on the restaurant and selected payment method, online payments may be processed by payment providers such as Stripe, PayPal or other supported providers. The data required for payment is transmitted to the relevant provider, for example name, email address, amount, currency, order reference, payment status, transaction identifier, billing or payment data and technical security information.

Complete card or account details are generally processed directly by the payment provider and are not stored permanently by Letzdine. Payment providers may also process personal data as independent controllers.

9. Google Maps, Google Places and Location Functions

Google Maps and Google Places may be used for address search, delivery area checks, restaurant search, geocoding, location determination or map display. IP address, browser and device information, search terms, entered addresses or locations, map interactions and technical usage data may be transmitted to Google.

10. Google reCAPTCHA

Google reCAPTCHA may be used to protect forms against abuse, spam and automated access. IP address, browser and device information, mouse and keyboard interactions, time spent, referrer and other technical data may be processed and transmitted to Google.

On restaurant pages, reCAPTCHA is loaded, where possible, only when a protected form is used.

11. Notifications, Firebase and System Messages

To process orders and reservations quickly, restaurants may receive technical notifications, for example about new orders, reservations or status changes. Push services such as Firebase Cloud Messaging as well as email or system messages may be used.

12. Cookies, Local Storage, Analytics and Marketing

This website uses necessary cookies and comparable storage technologies for session, language, cart, wishlist, security, form states and storing your cookie choice. Non-necessary analytics or marketing services are only activated after consent.

Analytics may include internal, pseudonymous or aggregated usage analysis and Google Analytics where enabled. Marketing may include Google Ads and Meta Pixel where enabled. Details are provided in the cookie policy and cookie settings in the footer.

13. Recipients and Processing on Behalf

Data may be shared with the restaurant, its staff, delivery or service personnel, Letzdine / Virtuma UG, hosting, IT, maintenance and email providers, payment providers, Google services for Maps, Places, reCAPTCHA or Firebase, analytics and marketing providers such as Google or Meta where consent is given, and tax advisors, authorities, banks, debt collection or legal advisors where required or permitted.

Where service providers act on our behalf, processing is based on a data processing agreement under Art. 28 GDPR. Where providers act as independent controllers, their own privacy information also applies.

14. Third-Country Transfers

For some services, especially Google, Meta, Stripe or PayPal, data may be transferred to countries outside the EU or EEA. Such transfers only take place where the requirements of Art. 44 et seq. GDPR are met, for example through an adequacy decision, certification under the EU-US Data Privacy Framework, standard contractual clauses or necessity for contract performance.

15. Retention and Deletion

Data is stored only as long as required for the relevant purpose, legal retention obligations exist or legitimate interests justify further storage. Order, payment and invoice data may generally be retained for six to ten years due to commercial and tax law obligations.

Account, contact, reservation, log, consent, analytics and support data is deleted or anonymised once no longer needed for the purpose, evidence or legitimate claims.

16. Your Rights

Under the GDPR, you have rights of access, rectification, erasure, restriction of processing, data portability, objection to processing based on legitimate interests and withdrawal of consent.

For privacy requests about the restaurant offer, please contact the restaurant using the details above. For Letzdine or platform-related requests, contact us at info@letzdine.eu.

17. Objection, Withdrawal and Complaint

You may object to processing based on Art. 6(1)(f) GDPR on grounds relating to your particular situation. You may object to direct marketing at any time without giving reasons.

You may withdraw consent at any time with effect for the future. Processing before withdrawal remains lawful. Cookie, analytics and marketing consent can be changed or withdrawn through the cookie settings in the footer.

You also have the right to lodge a complaint with a data protection supervisory authority. For Letzdine, this is in particular the Landesbeauftragte für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz. A different authority may be competent for the restaurant.

18. Requirement to Provide Data

Providing personal data is generally voluntary. However, certain data is required for certain functions. Without required contact, delivery, payment or reservation data, the relevant order, delivery, pickup, payment, reservation or request cannot be carried out.

19. Automated Checks and Security

Automated checks or rule sets may be used for security, abuse detection, fraud prevention, payment protection and technical prioritisation. No solely automated decision with legal effect is made where this is prohibited by law.

Letzdine and the restaurant take technical and organisational measures to protect data against loss, misuse, unauthorised access and unauthorised disclosure.

20. Changes to this Privacy Policy

This policy may be updated if functions, services, legal bases, providers or legal requirements change. The version published on this restaurant website applies.