heyjob

Privacy policy heyjob

Last updated: April 2026

heyjob B.V. ("heyjob", "we", "us") respects the privacy of everyone who uses the platform and ensures that personal information is handled confidentially. This privacy policy applies to the use of heyjob.nl and all related services.

1. Who we are

heyjob B.V. is the controller for the processing of personal data as described in this privacy policy.

  • Company name: heyjob B.V.
  • Chamber of Commerce (KvK) number: 98190113
  • Email: job@heyjob.nl
  • Website: https://heyjob.nl

2. What data we collect

We process the following categories of personal data:

Account data (restaurant owners and staff)

  • Name, email address, phone number
  • Business name and address
  • Role within the restaurant

Guest data (via the reservation system)

  • Name, email address, phone number
  • Reservation history and preferences
  • Feedback and review data

Technical data

  • IP address, browser type, device information
  • Cookies and similar technologies
  • Platform usage data

Third-party integrations

  • Google Business Profile reviews (after explicit OAuth authorisation by the restaurant owner)
  • WhatsApp messages (via 360dialog)
  • Telephony data (via Twilio)

3. How we use your data

  • Providing and improving our services
  • Managing reservations and guest profiles
  • Collecting and displaying reviews and feedback
  • Sending operational notifications and alerts
  • Providing AI-assisted suggestions (e.g. review replies)
  • Reporting and analytics for restaurant owners
  • Complying with legal obligations

4. Legal bases

  • Performance of a contract (providing our SaaS service)
  • Legitimate interests (service improvement, security)
  • Consent (where applicable, e.g. marketing)
  • Legal obligation (e.g. tax retention requirements)

5. Sharing with third parties

We only share personal data with third parties when necessary to deliver our services:

  • Supabase (database hosting, EU region)
  • Vercel (hosting, edge network)
  • Twilio (telephony)
  • 360dialog (WhatsApp Business)
  • Google (Business Profile API, after authorisation by the restaurant owner)

We never sell personal data to third parties.

6. Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Encrypted connections (TLS/SSL)
  • Row Level Security at database level
  • Separate API surfaces for public and admin traffic
  • Regular security reviews

7. Retention

We retain personal data no longer than necessary for the purposes for which it was collected. Account data is deleted within 30 days after the subscription ends, unless a legal retention obligation applies. Guest data is retained while the restaurant actively uses the platform.

8. Your rights

Under the GDPR you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erasure (“right to be forgotten”)
  • Restrict processing
  • Data portability
  • Object to processing
  • Lodge a complaint with your supervisory authority (in the Netherlands: Autoriteit Persoonsgegevens)

To exercise your rights, contact us at job@heyjob.nl.

9. Cookies

heyjob uses functional cookies required for the platform to work. Analytical cookies are only placed with your consent. More information is available in our cookie policy.

10. Changes

We may update this privacy policy. Changes will be published on this page. For material changes we will notify active users by email.

11. Contact

Questions about this privacy policy? Contact us at job@heyjob.nl.