Personal Chef Service Data Protection Policy Generator

Table & Thyme Private Dining operates inside clients' homes. The chef has the alarm code. The sous chef knows which child has the egg allergy. The administrative assistant has the gate PIN, the family's weekly schedule, and the credit card on file. No other food business operates with this level of access to private domestic life. This policy governs how Table & Thyme protects every piece of that data.

The personal chef entering client homes, sous chefs or prep assistants who receive client dietary briefs, administrative staff managing bookings and client profiles, delivery drivers transporting prepared meals to private residences, and any subcontracted sommelier or nutritional consultant are all covered.

Private clients provide names, home addresses, household member details including children, medical dietary restrictions, food preferences, security access information, billing details, and lifestyle information shared during consultations. Corporate clients commissioning private dining share company contacts, guest lists, and venue details. Referring parties such as concierge services provide contact details and commission arrangements. Suppliers furnish contact and payment credentials. Employees and subcontracted professionals have payroll records, food safety certificates, DBS or background check results, and vehicle details on file.

Table & Thyme complies with data protection legislation in its operating jurisdiction. Operating within private residences heightens privacy expectations. Household member data, including children's dietary needs and medical conditions disclosed for menu planning, may constitute sensitive personal data. The relevant supervisory authority has been identified.

Table & Thyme is the data controller. Third-party processors are limited given the personal nature of the service but may include booking management software, accounting platforms, payment processors, and background check providers. Each operates under a written agreement with enhanced confidentiality provisions reflecting the private household context.

A Record of Processing Activities documents all data categories with particular attention to household member data and residential security information. Impact assessments precede client dietary profiling apps, household pantry inventory systems, or automated meal planning platforms requiring detailed family health information. Staff training is intensive, covering the obligation to treat all information observed or received in clients' homes as confidential, secure handling of residential access codes, appropriate disposal of shopping lists and meal plans containing personal dietary details, and the strict prohibition on photographing client residences or family members without explicit written consent.