Cookie Policy

Version 1.0 Last update date: June 6, 2026 Effective date: June 6, 2026

1. Data Controller

This cookie policy ("Cookie Policy") is rendered by Dishup S.r.l., with registered office in "C.so V. Emanuele 49 - 65013 Città Sant'Angelo (PE) Italy", tax code and VAT number [●], PEC [●], e-mail privacy privacy@dishup.it ("Dishup").

The Cookie Policy describes the use of cookies, SDKs, local storage, pixels, online identifiers and similar tools ("Cookies" or "Instruments") on Dishup digital surfaces.

2. Covered surfaces

This Cookie Policy applies, as relevant, to:

1. public site and Dishup marketing pages;
2. customer webapp, including pages /dine;
3. customer accounts, wallets, notifications and payment pages;
4. dashboard manager and tools for restaurateurs;
5. internal console, if accessible via browser;
6. landing pages, public documentation or temporary pages managed by Dishup.

The banner or preference center can show different options based on the surface visited. For example, the marketing site can use analytics or advertising tools, while managers and consoles normally only use technical and security cookies.

3. What are Cookies

Cookies are small files or identifiers saved on your device or read by your browser to enable the site to function, remember preferences, measure usage, protect accounts or carry out marketing activities, if authorized.

Similar tools may include local storage, session storage, pixels, SDKs, passive fingerprinting, or other identifiers. Dishup uses these tools only to the extent indicated in this Cookie Policy and your preferences.

4. Categories of Cookies

Category	Description	Legal basis
Technical and necessary	They are used to make the site, login, security, cart, sessions, wallet, essential preferences and payments work.	They do not require consent; necessary for the service
Preferences	They store language, layout, settings, and non-essential user choices.	Consent, except for technical preferences requested by the user
Analytics	They measure traffic, performance, errors, funnels and product usage.	Consent if identifiable or non-anonymized; legitimate interest only if technical/aggregate within the permitted limits
Marketing and advertising	They measure campaigns, remarketing, conversions, audiences, pixels and personalized ads.	Consent
Third party integrations	They enable third-party provider features, such as maps, video, chat, payment, login, or social.	It depends on the function; consent if not technically necessary
Security and anti-fraud	They detect abuse, bots, anomalous access, fraud, chargebacks and risks.	Necessary or legitimate interest, as the case may be

5. Surface use

5.1 Public site

The public site can use:

1. Technical cookies for navigation, security and consent management;
2. analytics to understand the use of the site and improve content;
3. Marketing cookies or pixels for campaigns, remarketing and conversion measurement, only with prior consent;
4. form, CRM, newsletter or demo tools.

5.2 Customer Webapp

The customer webapp mainly uses:

1. Technical cookies for session, authentication, security and operational status;
2. local/session storage for cart, session, preferences and experience continuity;
3. tools necessary for payments, wallets, notifications and assistance;
4. product analytics only if configured in a compliant manner and, where required, with prior consent.

Dishup avoids using invasive tracking marketing within order, payment or wallet flows, unless explicitly configured and consented to.

5.3 Dashboard manager

The dashboard manager normally uses:

1. Technical cookies for login, session, authorizations and security;
2. operational preferences and interface settings;
3. logs and diagnostics for stability and support;
4. product analytics tools only if necessary or permitted.

Cookie advertising should not be used in the dashboard manager, unless otherwise communicated and consented where required.

5.4 Internal console

The internal console uses technical cookies, security, authentication, audit and operational preferences. It is not intended for marketing purposes.

6. First and third party cookies

First-party Cookies are set directly by Dishup. Third-party cookies are set by external providers integrated into the services, for example payment, authentication, analytics, security, advertising, video, maps, chat or CRM providers.

Third parties may process data as independent controllers or processors according to their respective policies. You should also consult the policies of third-party providers when applicable.

7. Cookie Inventory

Actual Cookie inventory may vary based on domain, environment, country, browser, consent and active features. Dishup keeps the list updated in the banner or cookie preference center.

Name	Providers	Category	Purpose	Duration	Surface
[●]	Dishup	Technical	Authentication/session	[●]	Webapp/Manager
[●]	Dishup	Technical	Consent preferences	[●]	All
[●]	Stripe	Technical/Safety	Payments and fraud prevention	[●]	Payments
[●]	[●]	Analytics	Traffic or product measurement	[●]	[●]
[●]	[●]	Marketing	Conversions/remarketing	[●]	Public site

Before publishing, this inventory must be aligned to the CMP, actual tags and scripts actually in production.

8. Consent management

Upon first access, where non-technical cookies or tools subject to consent are used, Dishup displays a banner or other equivalent mechanism that allows you to:

1. accept all non-necessary Cookies;
2. reject unnecessary Cookies;
3. customize preferences by category;
4. access the Cookie Policy.

Consent is optional and can be revoked at any time via the "Manage cookie preferences" link or button available in the footer or in another easily accessible location: [●].

Failure to consent to non-necessary Cookies does not prevent the use of essential services, but may limit non-essential functionality, measurement, personalization or third-party content.

9. How to disable Cookies from your browser

The user can configure the browser to block or delete Cookies. Blocking technical cookies can prevent logins, orders, payments, wallets, preferences and other essential functions.

Useful links:

1. Chrome: https://support.google.com/chrome/answer/95647
2. Safari: https://support.apple.com/guide/safari/manage-cookies-and-website-data-sfri11471
3. Firefox: https://support.mozilla.org/kb/enhanced-tracking-protection-firefox-desktop
4. Edge: https://support.microsoft.com/microsoft-edge

10. Do Not Track and browser signals

Some browsers send "Do Not Track" signals or similar controls. There is no uniform technical standard for all services. Dishup manages preferences via its banner/CMP and, where applicable, via legally recognized or technically supported signals.

11. Updates

Dishup may update this Cookie Policy to reflect technical, regulatory, organizational or vendor changes. The updated version will be published on Dishup surfaces.

12. Contacts

For questions about Cookies and privacy, the user can write to [●].