Now Book It – Privacy Policy 

About this Privacy Policy

1. This is the Privacy Policy for Now Book It Pty Limited (AUS), Now Book It Limited (NZ), Services Now Book It (CA), Now Book It inc (USA), Now Book It LTD (UK) and PT Now Book It Indonesia (IDR)

• (Now Book It, us, we, our). This Privacy Policy outlines how Now Book It complies with the Privacy Act 1988 (Cth) (Australian Privacy Act), the General Data Protection Regulation (EU) 2016/679 (GDPR), the UK General Data Protection Regulation (UK GDPR), the California Consumer Privacy Act of 2018 (CCPA) and California Privacy Rights Act of 2020 (CPRA), the Personal Information Protection and Electronic Documents Act (PIPEDA) of Canada, and Law No. 27 of 2022 on Personal Data Protection (PDP Law) of Indonesia, along with other applicable privacy laws to ensure the protection of your personal information. A reference to ‘Personal Information’ in this policy is a reference to both ‘Personal Information’ as defined in the Privacy Act and to ‘Personal Data’ for the purposes of the GDPR (if it applies to you).
• This Privacy Policy sets out the different types of Personal Information we collect, why we collect it and what you can do if you would like to remove yourself from our mailing list, correct any details we may hold about you, or exercise other rights you have.
• We will update this Privacy Policy from time to time at our discretion, and we will notify you of updates. You can visit our website to see the latest copy of the Privacy Policy. This Privacy Policy was last reviewed on April 2026.
• By using our site, you consent to this Privacy Policy, our Terms of Service, and our Opt-Out & Data Preferences page.

2. What Personal Information Do We Collect?
   • We may collect the following Personal Information:
     • When making a booking:

     Name, email, telephone, IP address and name of the restaurant that you would like to book. How many times you have visited and what your personal dining preferences may be, as well as on some occasions, your spend and items that you are purchasing when dining.

     • When making a booking via Reserve with Google:

     When you book through Google’s Reserve with Google service (for example, by using the “Book Now” or “Reserve a Table” button on Google Search or Google Maps), Google collects your contact and booking details and shares them with Now Book It to fulfil your reservation. The information we receive from Google typically includes your name, email address, phone number, party size, date, time, and any special requests. Google’s own collection and handling of your data is governed by Google’s Privacy Policy. Once we receive your data, we handle it in accordance with this Privacy Policy.

     • When purchasing a Gift Card:

     Name, email, telephone, IP address and name of the restaurant that you are purchasing the Gift Card from.

     • When contacting us, applying for employment, dealing with us as a supplier or customer:

     Depending on the nature of the contact, we may collect names, addresses, telephone numbers, email addresses, IP addresses, and for employees: tax file numbers and other information required for employment.

     • When using our website:
       • Your IP address and our servers will attempt to place session cookies on your device so that the website will function effectively. These cookies are not persistent and are not used to identify you after the relevant web session. Cookies are used to collect standard internet log information and visitor behaviour information. When you visit our website, we may collect information from you automatically through cookies or similar technology.
       • We use cookies to operate and improve your experience on our site, including allowing you to sign in faster and keeping you signed in, and to track how the site is used.
       • If you do not allow cookies to be used, some or all of the website or other applications or tools on it might not be accessible to you and you may not be able to acquire services from us.
     • Collection Statement:
       Now Book It Pty Limited (ABN 33 607 322 092) and its related entities, Now Book It Indonesia, Now Book It inc (USA), NBI NZ Now Book It Limited (NZ), Services Now Book It (CA), Now Book It inc (USA), Now Book It LTD (UK) and PT Now Book It Indonesia (IDR) collect, hold, use and disclose the personal information that you provide to us in accordance with this Privacy Policy (nowbookit.com/privacypolicy), so that we can enable the restaurants you engage with to create and manage your reservations, and provide you with invitations and offers. We may also use the information to make improvements to our platform.
       • We may disclose your personal information to third party service providers who help us to provide our services, for example, technology service providers. Some of our third party service providers have servers located in the US, UK, and New Zealand.
       • You have a right to access the personal information we hold about you, and you may ask us to update, correct or delete that personal information.
       • For more information and assistance, please see this Privacy Policy or contact us at legal@nowbookit.com.
         
         
3. Restaurants

• Participating restaurants or the head office of restaurant groups will also collect personal information about you when you make a booking or otherwise deal with them. Those collection and use practices are the responsibility of the restaurants or restaurant groups.
  
  
• How Do We Collect and Store Your Personal Information?
  • We collect Personal Information in a number of ways, including:
    • Information submitted through our website
    • Information received from third-party booking platforms, such as Google’s Reserve with Google service
    • In some cases, through web analytics
    • Through communications with you, including emails and voice calls
    • In some cases, we are supplied information from third parties
  • We hold Personal Information:
    • In systems that we use in connection with our business, some of which may be owned and operated by our suppliers
    • In our hard copy files
    • In the databases associated with our website
  • Providing it is lawful and practical, we will give you the option of not identifying yourself, using a pseudonym, or not providing Personal Information when you enter into a transaction or deal with us. However, if you elect not to provide us with Personal Information then it is unlikely we are able to provide you with the information, products, services or support that you may want.
  • We may receive other unsolicited Personal Information in the course of our business. We will deal with this unsolicited Personal Information in accordance with this policy.
  • We will retain your Personal Information for as long as needed or permitted in light of the purpose(s) for which it was obtained. The criteria used to determine our retention periods include:
    • The length of time we have a relationship with you and provide services to you
    • The length of time we have a relationship with a restaurant
    • Legal obligations we may have to keep (or destroy) your data
    • Legal advice we receive (such as in regard to litigation, regulatory investigations or applicable statutes of limitation)
  • When your Personal Information is no longer required it is destroyed in a secure manner.
    
    
• What Do We Use Your Personal Information For?
  • We collect, hold, use and disclose Personal Information for the following purposes:
    • Supplying you with our services, including restaurant bookings and gift cards
    • Sending subscription emails
    • Sending SMS to confirm and/or edit your reservation
    • Improving the website experience of our visitors
    • Spend and visitation history to ensure that the restaurants can personalise your dining experience
  • We also use Personal Information for our own internal business purposes including:
    • Data analysis to improve our products and services
    • Auditing our internal processes to ensure they function as intended and that we comply with regulatory requirements
    • Fraud and security monitoring
    • Developing new products and services
    • Identifying usage trends so we can understand which of our services are of most interest to our customers
    • Determining the effectiveness of marketing campaigns so that we can adapt to the needs and interests of our customers
    • Operating and expanding our business activities such as understanding which of our services are of most interest to our customers, so we can focus on our customers’ needs
      
      

6. Do we share your information?
   • We will not sell your personal information or use it without your consent.
   • We may disclose Personal Information to a third party in the following circumstances:
     • To a licensed software partner for reporting and payment remittance purposes to venues; where we do share your information with a licence partner we contractually prevent their ability to sell, share or use your personal information, unless it is in relation to the outlined purposes above
     • With restaurants and venues to provide you with our services and permit bookings to be made
     • With third-party booking platforms (such as Google’s Reserve with Google) to the extent necessary to facilitate and confirm your reservation, and to process marketing preferences you set during the booking flow
     • Where required by a court or law
       
       

7. Data
   • We may store your information on third party services in the ordinary course of our business:
     • Where our website, or any hosting service we use to support our managed services, software or software as a service, is hosted by us or a third party, and the hosting facilities and/or the back-up/disaster recovery sites are located overseas. In some cases we have no control over where these third party providers host the website and it is impractical for us to be able to advise you of the countries where the Personal Information may be held or processed
     • Where a third party application is being used in connection with our interactions with you, e.g. when we use email, help desk or VoIP providers, the third party providers of the relevant application may have their applications hosted overseas. We have no control over where these third party providers host their applications and it is impractical for us to be able to advise you of the countries where the Personal Information may be held or processed
     • When we send Personal Information outside Australia for processing we will enter into formal contracts with those processors, which will contain privacy terms and conditions that allow us to meet our privacy obligations to you
     • No mobile opt-in data will be shared with third parties or affiliates
       
       

8. Use of Social Media
   • Our website includes links to social media, including blogs, Twitter/X feeds, Facebook, Instagram, and similar services. The nature of social media is that these applications actively enable exchange and disclosure of any information, whether personal or otherwise, that is included within those applications. All information, including Personal Information that you enter in those applications may be used, stored, handled and disclosed in any way that is consistent with the privacy policies of the relevant applications, if any. We have no control over those interactions.
     
     
9. Your Rights Regarding Your Personal Information
   • You have the right to access your Personal Information that we hold, and request that it be rectified or erased. If you want to access your Personal Information we hold, or you believe any of your Personal Information that is held by us is inaccurate, out of date, incomplete, irrelevant or misleading, or it is not necessary for us to continue to hold it, you can contact us, and we will either provide you with access to the Personal Information (in so far as we are required to do so by law) or we will correct it, as applicable, within a reasonable period. We may make a reasonable charge for giving you access to your Personal Information, but we will not charge for you making the request, correcting Personal Information or making a statement as to why we are not correcting your Personal Information.
   • In certain circumstances, if you raise a complaint on how we have handled your Personal Information, you may also request that we ‘restrict processing’, meaning that the data will be preserved from further processing ‘as evidence’ either while we investigate your complaint or to support your complaint to the Australian Information Commissioner.
   • Where you have provided your personal data directly to us that is processed by automated means and is done so solely on the basis of your consent, then you will have the right to obtain and reuse your personal data in an electronic format for your own purposes across different services.
   • You have the right to object to any aspect of our processing of your personal data under certain circumstances under the GDPR. ‘Processing’ is the term under that law that describes all uses of your personal data. This will include the collection, sharing, storage, retention and destruction of your data.
   • You may unsubscribe from our direct marketing at any time. We will not send you direct marketing without your consent and you can withdraw your consent at any time by selecting the ‘unsubscribe’ link within each email.
   • For detailed instructions on managing your SMS preferences, venue marketing communications, data deletion requests, and other opt-out options, please visit our Opt-Out & Data Preferences page.
     
     
10. Complaints
    • If you wish to complain about a breach of any Australian Privacy Principle that binds us, a registered privacy code that binds us, the GDPR or this Privacy Policy, then you should contact us using the information in the Contact Us section of this Privacy Policy
    • We will use our best efforts to respond to any complaint within 5 business days of the date of receipt. We will attempt to resolve your complaint to your satisfaction.
    • If you are not satisfied with how we deal with your complaint, you may contact the relevant regulator for your jurisdiction:
      • Australia: Office of the Australian Information Commissioner (OAIC) — www.oaic.gov.au
      • New Zealand: Office of the Privacy Commissioner — www.privacy.org.nz 
      • Canada: Office of the Privacy Commissioner of Canada — www.priv.gc.ca
      • United States: Federal Trade Commission (FTC) — www.ftc.gov, or your state Attorney General 
      • United Kingdom: Information Commissioner’s Office (ICO) — ico.org.uk 
      • European Union: Your local Data Protection Authority under the GDPR 
      • Indonesia: Ministry of Communication and Informatics (Kominfo)
        
        
11. Contacting Us
    • If you have any questions regarding this Privacy Policy or your information, we invite you to contact us by:
      • Email: legal@nowbookit.com
      • Using the contact web form on our website
      • Writing to Now Book It, 6/136 Willoughby Road, Crows Nest, NSW 2065, Sydney, Australia
        
        

12. Now Book It Personal Details Removal Process: