SERVA Global ("SERVA", "we", "us") operates the SERVA app for discovering and booking restaurants, carrying a loyalty membership, and sharing visits. This policy explains what personal data we collect, why, the legal bases we rely on, who we share it with, and the rights you have. We are the data controller. Contact us at privacy@servaglobal.com.
The SERVA app is operated by SERVA Technologies LLC, based in Dubai, United Arab Emirates.
For any privacy question or to exercise your rights, contact our privacy team at privacy@servaglobal.com.
Account: your mobile number and name. Your membership and identity are keyed to your phone number.
Profile: your @handle, optional bio, and dietary preferences.
Reservations: the venue, date, time, party size, and any notes you add.
Community content: photos, written reviews, star ratings, the members you follow, and reports you submit.
Loyalty: your SERVA Privé points, tier, and reward redemptions.
Location: approximate location, only at the moment you tap “Use my location” to find the nearest venue. We do not collect location in the background.
Device & usage: basic device, app version, and diagnostic data needed to operate the app and prevent abuse.
Communications: messages you send us (e.g. support requests).
Linked to you: phone number, name, profile, reservations, photos & reviews, follows, loyalty, and member ID.
Used only in-use, with permission: approximate location (to detect the nearest venue).
Used to run the app: device & diagnostic data.
We do NOT sell your data, we do NOT use it for cross-app tracking, and we do NOT serve third-party advertising.
To provide the service — bookings, loyalty, profiles, and the community feed (legal basis: performance of our contract with you).
To keep the community safe — reviewing reports, moderating content, and enforcing our terms (legitimate interests, and legal obligation where applicable).
To detect your nearest venue when posting (consent, which you give via the system location prompt).
To send booking confirmations and reminders (performance of contract); marketing messages, if any, only with your consent.
To secure the app and prevent fraud and abuse (legitimate interests / legal obligation).
Photos, reviews, and ratings you post are shown to other members on the relevant venue, on your profile, and in the community feed.
You can delete any post, and deleting your account removes your content. Copies may remain briefly in backups and in records we must keep for safety or legal reasons.
Restaurants you book with, so they can honour and manage your reservation.
Service providers acting on our instructions under contract — for example cloud hosting and infrastructure (Amazon Web Services) and communications providers.
Authorities or third parties where required by law, to enforce our terms, or to protect the rights, property, or safety of members, venues, or the public.
A successor entity in the event of a merger, acquisition, or asset sale, subject to this policy.
We do not sell your personal data.
We may process and store data in countries other than yours, including the United States and the UAE. Where we transfer personal data internationally, we use appropriate safeguards such as standard contractual clauses or an equivalent lawful transfer mechanism.
We keep your data while your account is active and as needed to provide the service, comply with legal obligations, resolve disputes, and enforce our agreements. You can delete your account at any time from Account → Delete account, which erases your membership, posts, follows, and bookings from the live service.
We use appropriate technical and organisational measures to protect your data, including encryption in transit and access controls. No system is perfectly secure, but we work to protect your data and will notify you and the relevant regulator of a material breach where the law requires.
Subject to your local law, you may request access to, correction of, or deletion of your data; object to or restrict certain processing; request portability; and withdraw consent at any time. Account deletion is available in-app; for other requests email privacy@servaglobal.com.
If you are in the UAE, you may have rights under the Personal Data Protection Law (Federal Decree-Law No. 45 of 2021) and may lodge a complaint with the UAE Data Office. If you are in the EU/UK, you have rights under the GDPR and may complain to your local supervisory authority. If you are in California, you have rights under the CCPA/CPRA, including the right to know and to delete, and the right not to be discriminated against for exercising them; we do not sell or “share” personal information as those terms are defined.
The app stores data on your device (local storage) to keep you signed in and remember your preferences. This is functional storage, not advertising or cross-site tracking. We do not use third-party tracking cookies.
SERVA is not directed to children under 13 (or the minimum age in your country), and we do not knowingly collect their data. If you believe a child has provided us data, contact us and we will delete it.
We do not make decisions that produce legal or similarly significant effects about you based solely on automated processing.
We will post changes here and update the date above; we will highlight material changes in the app.
Questions or requests: privacy@servaglobal.com. Operator: SERVA Technologies LLC, Dubai, United Arab Emirates.