Privacy Policy


In effect since: MAY 26, 2018


1.1 (hereinafter "") and ZENCHEF (hereinafter " ZENCHEF ") (Hereinafter together referred to as the "controllers"), respect the privacy of its users (hereinafter, the " Users ").  

1.2 The controllers process the personal data that are available to them transmitted in accordance with the legislation in force, and in particular Regulation 2016/679 of 27 April 2016 on the protection of individuals with regard to the treatment of personal data and the free movement of such data, applicable from 25 May 2018 (hereinafter the " General Data Protection Regulation ").

1.3 Access to the site (hereinafter, the "  Site ") implies the full and unreserved acceptance by the User of the this Privacy Policy (hereinafter referred to as "the Privacy Policy ") and its terms and conditions of use (hereinafter the " T & Cs ") and the cookie policy (hereinafter, the " Cookie Policy ").

1.4 The User acknowledges having read the information below and authorizes the Managers of the treatment to be treated, in accordance with the provisions of the confidentiality, the personal data which it communicates on the Site in the part of the service made available by the controllers on its Site (hereinafter the " Service ").

1.5 The Privacy Policy is valid for all pages hosted on the Site and for the registrations of this Site. It is not valid for pages hosted by third parties which Processors may refer and whose confidentiality policies may differ. The controllers can not therefore be held responsible any data processed on these sites or by them.


2.1 Access to the Website takes place without having to provide any personal data, such as in particular, surname, first name, postal address, e-mail address, etc.

2.2 As part of the Service, the User may be required to transmit certain data Personal. In this case, those responsible for processing this data are:

Zenchef, SAS with a capital of 12,500 €,

Registered at the Paris Trade and Company Register under the number 528 389 794,

Headquartered at 63 avenue de Villiers 75017 Paris.

Registered in the RCS of under number ,

Headquartered at .

2.3 Any question or request regarding the processing of this data may be addressed to the following address: .


3.1 By completing the registration form on the Site and / or using the Service, the User allows in particular to the controllers to record and keep for the purposes mentioned in point 4, the following information:

- identification data, such as first and last name, e-mail address, postal code, message and phone number;

- communications between the user and the controllers;

3.2 The User also authorizes Processors to register and keep, for the purposes mentioned in point 4:

- information voluntarily transmitted by the User for a specific purpose in the Privacy Policy, the terms and conditions of use (hereinafter, the Terms of Use "), the Cookie Policy, on the Site or on any other communication medium used by the controllers;

- additional information requested by the Processors to the User in order to identify or prevent it from violating any of the provisions of confidentiality;

3.3 In order to facilitate the navigation on the Site as well as to optimize the technical management, the Site can use "cookies". These "cookies" record in particular:

- User's browsing preferences;

- the date and time of access to the Site and other traffic data;

- the pages viewed;

All information relating to "cookies" is included in the Cookie Policy of Responsible for treatment.

3.4 When the User accesses the Site, the servers consulted record automatically some data, such as:

-the type of domain with which the User connects to the Internet;

-the IP address assigned to the user (when connected);

-the date and time of access to the Site and other traffic data;

-location data or other data related to the communication;

- the pages viewed;

-the type of browser used;

-the platform and / or operating system used;

- the search engine and the keywords used to find the Site;

- navigation preferences;

- communication preferences.

3.5 No nominative data identifying the User is collected through the channels cookies and servers consulted. This information is only kept for statistics and website improvement.

3.6 We use GoCardless software to manage bank debits. Additional information how GoCardless manages personal information and rights relating to the protection of data - including the right of objection - are available at .


4.1 The Website collects, stores and uses the data of its Users for the following purposes:

- to establish, carry out and conduct the contractual relationship with the User;

- to analyze, adapt and improve the content of the Site;

- to provide the Service;

- to allow the user to receive messages;

- to facilitate the availability and use of the Site

- to personalize the user's experience on the Site;

- to respond to requests for information;

- for possible marketing actions and promotions proposed by the controllers Users who have given their consent;

- to inform them about the evolution of the Site and its features;

- for any other purpose for which the User has given his consent express.


5.1 According to the regulations on the processing of personal data, the User has the following rights:

  • Right to be informed purposes of the treatment (see above) and the identity of the person in charge of the treatment.
  • Right of access and verification of data : the User can at any time time to have access to the data that Treatment Managers have about him or her check whether it is included in the data controller database.
  • Right of opposition : the User can at any time oppose the use of data by the Treatment Managers and its active partners, including restaurant owners partners.
  • Cancellation and / or modification right : the User can at any time communicate with Responsible for the processing of corrections to be made to the data concerning him and, where appropriate, request the deletion of his personal data.
  • Processing Limitation Right : The User may in particular obtain the limitation of the when he objected to the processing, when he disputes the accuracy of the data, when he considers that the treatment is illegal.
  • Portability The User has the right to receive the personal data he has communicated to the controllers and may also ask him to transmit these data to another controller.

5.2 The User may at any time request access to his personal data, to verify, transfer, limit, in certain cases, their treatment and the correct. The User can also request free rectification and if necessary request the deletion of all personal data from the database of the Responsible treatment - with the exception of those which the Treatment Managers would be obliged to to maintain - and oppose the use and where appropriate seek the limitation of these.

In order to exercise his rights, the User sends a written request, accompanied by a copy of his identity card or passport, to the controller:

- by email:

- by post: ZENCHEF

63 avenue de Villiers

75017 Paris

5.3 The controllers will then do what is necessary to meet this demand in the and in any case within one month from the date of the receipt of the request. If necessary, this period may be extended by two months, taking into account the complexity and the number of requests.


6.1 the Data Processors will keep the personal data of its Users throughout the entire duration necessary to achieve the objectives pursued ( cf. point 4).

6.2 Processors may also continue to hold personal data concerning the unsubscribed User, including any correspondence or request for assistance addressed to the Processing Managers, in order to be able to answer any questions or complaints that may be would be sent after the use of the Service, and in order to comply with all applicable laws, especially in tax matters.


The User is informed that he has the right to lodge a complaint with the National Commission for Informatics and Freedoms (CNIL) whose contact address is as follows:

National Commission for Computing and Freedoms

Complaints Department

3 Place Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07

An online claim form is available by clicking on the following link:


8.1 Processors have taken the appropriate organizational and technical measures to guarantee a level of security adapted to the risk and so that the servers hosting the processed personal data prevent, as far as possible:

- unauthorized access or changes to this data;

- the improper use or disclosure of these data;

- the illegal destruction or accidental loss of this data.

8.2 In this regard, the employees of the Controllers who have access to these data are subject to a strict obligation of confidentiality. The leaders of the However, treatment can not be held responsible for any misuse of these given by a third party despite the security measures adopted.

8.3 Users undertake not to commit acts that may be contrary to this Privacy Policy, the Terms of Use, the Cookie Policy or, so general, to the law. Offenses against confidentiality, integrity and availability of computer systems and data that are stored, processed or transmitted by those systems, or the attempt to commit any of those offenses, shall be punishable criminally.



9.1 Processors consider personal data as information confidential. It will not communicate them to third parties under conditions other than those specified by the Privacy Policy, as to achieve the intended objectives and defined in point 4, or under the conditions in which the law requires it.

9.2 Processors may transmit to third parties information of a users as far as this information is the execution of a contract with its Users. In this case, these third parties will not communicate these information to other third parties, except in one of two situations:

- the communication by those third parties of this information to their suppliers or subcontractors in the measure necessary for the performance of the contract;

- when these third parties are obliged by the regulations in force to communicate certain information documents to the competent authorities in the field of combating money laundering, in general, to any competent public authority.

9.3 The communication of this information to the aforementioned persons must, in all circumstances, be limited to what is strictly necessary or required by the applicable regulations.


Data controllers do not transfer data to a non-EU country only when that country provides an adequate level of protection within the meaning of in force, and in particular Regulation 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and to the the free movement of such data, applicable from 25 May 2018 (hereinafter the " General Data Protection Regulation ") Or within the limits allowed by the legislation in force, for example by ensuring the protection data by adapted contractual provisions.


11.1 Personal data will not be used for direct marketing purposes for articles or services other than those to which the User has already subscribed, unless the User has previously explicitly consented by checking the boxes provided for this purpose ("Opt-in").

11.2 When the User has given his consent for the use of this information for the purpose of direct marketing, the latter retains the right to oppose at any time, on request and to such use. It is sufficient for the User to communicate his request to the following address: .


People under 18 and people who do not have the full capacity are not allowed to use the Site. Processors ask them not to not give him their personal data.


For the information of the Users by means of an email, the Site or other, the Managers of the treatment may modify and adapt the Privacy Policy, in particular in order to respect any new legislation and / or regulations applicable (as in the case of General Data Protection Regulation applicable from 25 May 2018), the recommendations of the CNIL, the guidelines, the recommendations and the good practices of the European Data Protection Board and the decisions of the courts and tribunals in the field of material.


14.1 The abstention of the controllers to take advantage, at a given moment, of a provision of the Privacy Policy, shall not be construed as a renunciation to further assert his rights under it.

14.2 The nullity, nullity or unenforceability of all or part of one of the preceding or following provisions shall not result in the invalidity of the whole of the Privacy policy. The provision wholly or partially void, obsolete or not enforceable will be deemed unwritten. the controllers are committed to to substitute for this provision another which will, as far as possible, pursue the same objective.


15.1 The validity, interpretation and / or execution of the Privacy Policy are subject to French law, to the fullest extent permitted by the rules of international law applicable.

15.2 In the event of a dispute as to the validity, interpretation or execution of the confidentiality, the Courts and Tribunals of Paris are exclusively competent, to the full extent permitted by the applicable rules of private international law and civil procedure.

15.3 Before taking any step towards the judicial resolution of a dispute, the User and the Treatment Managers undertake to attempt to resolve it to amicably. To this end, they first contact each other before resorting, the case appropriate, mediation, arbitration, or any other alternative means of dispute resolution.