oddtables

Privacy
policy.

Plain-English version: we collect what we need to seat you at a good table. Nothing more. We don't sell it. We delete what we can, when we can.

1.

What we collect

When you apply through /quiz, we collect:

  • ·Your name, age, neighborhood, and WhatsApp number — required.
  • ·Email — optional. We use it for receipts only.
  • ·A government ID photo (PAN, Aadhaar, Driving Licence, or Passport) — required for 18+ verification and member safety.
  • ·Your quiz responses and the five-dimension persona score they produce.
  • ·Referral source (if you came in through a friend's link).

When you attend a dinner, we collect your RSVP responses, attendance status, post-event ratings, and which members you'd like to see again. No photos or recordings of you are taken at events unless you've explicitly opted in.

When you subscribe, Razorpay collects payment metadata (card-level details remain with Razorpay, never with us — see Section 4).

2.

Why we collect it

  • ·Matching — your quiz score is the input to our algorithm.
  • ·Verification — government ID confirms you're 18+ and that you're a real, accountable person.
  • ·Communication — WhatsApp is the only channel we use to send invitations.
  • ·Refunds, support, dispute resolution — your contact info.
  • ·Improving matching over time — your post-event feedback feeds future tables.
3.

How long we keep it

  • ·Government ID photos — stored encrypted at rest for 90 days from upload, then deleted automatically. Earlier on request.
  • ·Quiz responses, persona scores, attendance, and feedback — for as long as you are an active member, plus 24 months after you cancel (for re-onboarding if you return).
  • ·Payment records — 7 years, per India's Income Tax Act requirements.
  • ·Backups — daily, kept for 14 days, then overwritten.
4.

Who else sees it

  • ·Razorpay — handles all payments. They see your contact info + amount. Card details never touch our servers. See razorpay.com/privacy.
  • ·Gupshup — sends our WhatsApp messages. They see your phone number + the message content (which is non-sensitive).
  • ·Our venue partners — see only your first name + your party of six's headcount. Never your contact info, age, or ID.
  • ·Our matching team (3 people) — see your full member record to curate tables.
  • ·Other members at your table — see only your first name and neighborhood on the night.

We do not sell your data. We do not share it with advertisers, brokers, or third parties for marketing.

5.

Where it lives

All member data is stored on our own servers in India (currently a private Postgres instance on a Hostinger VPS in Mumbai). We do not use any US-based or EU-based managed databases. Backups are encrypted and stored locally on the same VPS.

Government ID files are kept outside any web-accessible directory and are not served by any public URL. Retrieval requires SSH access, restricted to two named admins.

6.

Your rights under the DPDP Act

India's Digital Personal Data Protection Act 2023 gives you the right to:

  • ·Access — request a copy of everything we hold on you.
  • ·Correction — fix anything inaccurate.
  • ·Erasure — ask us to delete your record (we'll honour this except for transactions we're legally required to retain).
  • ·Withdraw consent — at any time. Your subscription auto-cancels and your ID is deleted within 7 days.
  • ·Grievance — write to our DPO at the address below. We respond within 30 days.

To exercise any of these rights, email privacy@oddtables.com.

7.

Cookies + tracking

We use one strictly-necessary cookie to keep you logged into your dashboard (the magic-link token). We do not use Google Analytics, Facebook Pixel, or any third-party tracker. Page-view counts are aggregated server-side from web-server logs without personal identifiers.

8.

Children

oddtables is strictly 18+. We verify age via government ID at signup. If we receive an application from a minor, we delete the record immediately.

9.

Changes to this policy

We'll update this page if our practices change. The "last updated" date in the sidebar reflects the most recent change. Material changes will be notified to active members via WhatsApp at least 14 days in advance.

10.

Who to contact

General enquiries: hello@oddtables.com
Data Protection Officer / privacy queries: privacy@oddtables.com
Postal: oddtables, Delhi, India.