Privacy Policy – WeBook.today

Last updated: 19 January 2026

1. Introduction

WeBook.today (“we”, “us”, “our”) provides an online booking and management platform for restaurants and hospitality businesses. This Privacy Policy explains how we collect, use, store, and protect personal data in accordance with the EU General Data Protection Regulation (GDPR).

2. Data Controller

Company name: WeBook Today Norge
Organization number: 913 025 849
Website: https://webook.today
Email: [email protected]

Business address:
Moneheia 89 A
4656 Hamresanden
Norway

WeBook Today Norge is the data controller for personal data processed through this website and platform.

3. Personal Data We Collect

Depending on how you interact with our website or platform, we may collect the following personal data:

a) End users / guests
– Name
– Contact details (email, phone number)
– Booking information (date, time, venue)
– Technical data (IP address, browser type, device information)

b) Business customers (restaurants and partners)
– Company name
– Contact person details
– Login and account information
– Billing and transaction data

c) Support and contact
– Messages sent via contact or support forms
– Email correspondence

4. Purpose and Legal Basis

We process personal data for the following purposes and legal bases:

– Providing booking services (Contract)
– User accounts and authentication (Contract)
– Customer support (Legitimate interest)
– Billing and payments (Contract / Legal obligation)
– Marketing and analytics (where applicable) (Consent)
– Security and fraud prevention (Legitimate interest)

5. Cookies and Tracking

We use cookies and similar technologies to ensure essential website functionality and to improve our services.

Cookies may be used for:
– Essential website functionality
– Security and fraud prevention
– Marketing and analytics (e.g. Google, Meta/Facebook), only with user consent

You can manage or withdraw your consent at any time through our cookie banner.

For more information, please see our Cookie Policy.

6. Third-Party Services

We may share personal data with trusted third-party service providers, including:
– Payment processors (e.g. Stripe)
– Marketing platforms (e.g. Meta/Facebook, with consent)
– Hosting and infrastructure providers
– Analytics tools (only if consent is given)

All third-party processors operate under data processing agreements in compliance with GDPR.

7. International Transfers

Some service providers may process personal data outside the EU/EEA. In such cases, appropriate safeguards are applied, including Standard Contractual Clauses approved by the European Commission.

8. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy or as required by applicable law.

9. Your Rights

Under GDPR, you have the right to:
– Access your personal data
– Rectify inaccurate or incomplete data
– Request erasure (“right to be forgotten”)
– Restrict or object to processing
– Data portability
– Withdraw consent at any time

Requests regarding your rights can be sent to: [email protected]

10. Security

We apply appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, or alteration.

11. Changes

We may update this Privacy Policy from time to time. The most recent version will always be available on our website.