Privacy policy
Effective Date: [To be specified]
Last Updated: [To be specified]
Take a K2K, S.L. ("Take a Chef", "TAC", "we", "our", or "us") operates the Take a Chef Marketplace and the Private Chef Manager (PCM), a SaaS platform that helps chefs manage their business. This Privacy Policy explains how we collect, use, share, and protect your personal data when you use our services.
By using our Platform, including the Take a Chef marketplace and PCM tools, you agree to the practices described in this Privacy Policy.
1. Who We Are and What This Policy Covers
This Privacy Policy applies to data processed by Take a K2K, S.L., a Spanish company, in connection with:
- Take a Chef Marketplace – connecting clients with personal chefs for private dining experiences.
- Private Chef Manager (PCM) – a chef-facing service to manage bookings across multiple channels, including third-party integrations.
We act as a data controller under the GDPR and a business under the CCPA.
2. What Personal Data We Collect
We collect data in three main ways:
2.1. Data You Provide
- Account Details: Name, email, phone number, password, and location.
- Chef Profiles: Bio, images, menus, pricing, availability, experience, and payment info.
- Bookings: Event date, location, dietary preferences, guest count, and special requests.
- Messages & Support: Communications via our Platform and customer service interactions.
- Payment Information: Chef payout details and client payment data (processed via third parties).
2.2. Data Collected Automatically
- Device & Log Data: IP address, browser, device identifiers, OS, and access logs.
- Usage Data: Page views, time on page, search queries, clicks, etc.
Note: For cookies and tracking technologies, refer to our third-party cookie manager's policy (e.g., Cookiebot).
2.3. Data from Third Parties
- Platform Integrations: When you connect with services like Airbnb or Booking.com, we may receive availability, pricing, and reviews.
- Marketing Partners: Analytics from ad networks or social media.
- Identity Verification: To prevent fraud, we may collect data from trusted third-party services.
3. How We Use Your Data
We use personal data for the following purposes and legal bases:
| Purpose | Legal Basis |
|---|---|
| Providing services via TAC and PCM | Contract (GDPR Art. 6(1)(b)) |
| Managing chef-client bookings | Contract (GDPR Art. 6(1)(b)) |
| Creating & promoting chef profiles | Legitimate interest (Art. 6(1)(f)) |
| Sharing profiles with partners | Consent or legitimate interest |
| Processing payments | Contract / Legal obligation |
| Improving services and support | Legitimate interest |
| Marketing and promotions | Consent |
| Fraud prevention and compliance | Legal obligation |
3.1 Profile Visibility for Partnerships
With your consent, we may share chef profiles on major platforms (Airbnb, Booking.com, etc.). For smaller partners, profiles may appear by default, with opt-out available.
You can manage profile-sharing preferences in Account Settings or by contacting us (see Section 9).
4. How We Share Your Data
We do not sell personal data. We may share your data as follows:
| Recipient | Purpose |
|---|---|
| Partner Platforms | Display chef profiles, sync bookings (with consent) |
| Clients (for chefs) | Share booking details |
| Payment Providers | Secure payment processing |
| Service Providers | Hosting, analytics, support tools |
| Legal Authorities | Where required by law (e.g., fraud, tax) |
5. Data Retention
| Type of Data | Retention Period |
|---|---|
| Active Accounts | As long as the account is active |
| Chef Profiles (after deactivation) | Up to 12 months (for SEO, credibility) |
| Marketing Content | Retained indefinitely, unless removal is requested |
| Transaction Data | Retained for 6 years (legal/tax) |
| Inactive Accounts | Deleted or anonymized after 2 years |
You may request deletion via Account Settings or by contacting us (Section 9).
6. Your Rights (GDPR & CCPA)
Depending on your jurisdiction, your rights may include:
| Right | GDPR | CCPA |
|---|---|---|
| Access personal data | ✅ | ✅ |
| Correct data | ✅ | ✅ |
| Delete data | ✅ | ✅ (some limits) |
| Opt-out of marketing | ✅ | ✅ |
| Object to processing | ✅ | ❌ |
| Data portability | ✅ | ❌ |
| Opt-out of data sale | ❌ (not applicable) | ✅ |
To exercise your rights, email [email protected].
7. Data Security
We implement industry-standard measures, including:
- SSL/TLS encryption
- Access controls
- Routine security audits
8. International Data Transfers
If you're outside the EU, your data may be transferred to Spain or the U.S. We use Standard Contractual Clauses (SCCs) for GDPR compliance.
9. Contact Us
For any privacy-related questions or requests:
- Email: [email protected]
- Mail: Take a K2K, S.L., Calle Valcarlos 36, 3º B, 28050 Madrid, Spain