TipShare
Back to home

Privacybeleid

Privacy Policy TipShare

Last updated: March 2026

1. Who are we?

TipShare is a registered brand of H. Heijes Holding BV, established in the Netherlands and registered with the Dutch Chamber of Commerce. H. Heijes Holding BV is responsible for processing personal data as described in this privacy policy.

2. What data do we process?

We process the following personal data:

  • Account data: name, email address, password (hashed)
  • Restaurant data: business name, customer number
  • Employee data: name, department, role, hours worked
  • Tip data: amounts, distribution results per period
  • Review data: reviews from Google, TripAdvisor and TheFork linked to your restaurant (publicly available reviews, ratings and replies)
  • Google Business Profile data: business name, location information and reviews, only after explicit authorisation by the User via Google OAuth
  • Payment data: invoice data (via Mollie; we do not store credit card numbers)
  • Technical data: IP address, browser, login attempts

3. Why do we process data?

  • Performance of the agreement (calculating tip distribution, digital menu, review management, reservations)
  • Invoicing and payment processing
  • Security of your account
  • Review management: retrieving, displaying and managing reviews from external platforms (Google, TripAdvisor, TheFork) on behalf of the User
  • Legal obligations (tax administration)

4. Sharing data with third parties

TipShare does not share personal data with third parties, except:

  • Payment processing: Invoice and payment data is shared with Mollie B.V. (Netherlands) for processing subscription payments.
  • Hosting: Data is stored with our hosting provider within the European Union.
  • Legal obligation: If legally required, TipShare is obliged to cooperate.

Not shared with advertisers, marketing parties, or other third parties.

TipShare does not sell personal data and does not use it for profiling or targeted advertising.

Transfer outside the EEA: TipShare stores all data within the European Economic Area (EEA). No transfer takes place to countries outside the EEA, with the exception of API communication with Google (see below).

4b. Google API Services — Use of data

TipShare’s use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

What we retrieve via Google:

When you connect your Google Business Profile to TipShare, we request access to the business.manage scope. This allows TipShare to:

  • Retrieve your business information (name, address, location ID)
  • Retrieve your Google reviews (ratings, text, author name, date)
  • Post replies to reviews on your behalf

How we use this data:

  • Reviews are stored in your TipShare dashboard so you can manage them
  • TipShare optionally generates AI suggestions for review replies — the User always reviews and publishes these themselves
  • We use Google data solely to deliver the review management functionality to you

AI processing (sub-processors):

For generating reply suggestions and sentiment analysis, TipShare briefly invokes an external AI provider (Anthropic and/or OpenAI). The review text is sent, but no account data or Google OAuth tokens. These providers:

  • do not use the data sent to train their models (contractually guaranteed at API level)
  • retain the data for no more than 30 days for abuse monitoring and delete it afterwards
  • operate under the same Limited Use principles as TipShare

You can disable AI suggestions per restaurant if you do not want this processing.

What we do NOT do with Google data:

  • We do not sell Google data to third parties
  • We do not use Google data for advertising purposes
  • We do not use Google data to train AI models
  • We do not share Google data with third parties, except where necessary to deliver the service or where legally required

Revoking access:

You can revoke the Google connection at any time via your TipShare settings or via Google Account Permissions. After revocation, TipShare deletes the stored Google OAuth tokens within 24 hours. Reviews already retrieved remain available in your dashboard unless you also request their deletion.

5. Retention periods

Data Retention period
Account data Until 30 days after cancellation
Tip calculations 7 years (tax retention obligation)
Invoices 7 years (tax retention obligation)
Login attempts 6 months

6. Your rights

You have the right to:

  • Access your personal data
  • Correction of incorrect data
  • Deletion of your data (right to be forgotten)
  • Data portability (transfer of data)
  • Objection to processing

Contact us at [email protected].

7. Security

We take appropriate technical and organisational measures to protect your data:

  • Encrypted data storage: All data is stored encrypted (AES-256 encryption at rest)
  • Encrypted connections: All communication between your browser and our servers via HTTPS/TLS
  • Password security: Passwords are one-way hashed (bcrypt) and not readable, even by TipShare
  • Access restriction: Rate limiting on login attempts and role-based access control
  • Regular backups: To prevent data loss
  • CSRF protection: Protection against cross-site request forgery on all forms

8. Cookies

See our separate Cookie Policy.

9. Changes

We may update this privacy policy. Significant changes will be communicated by email.