Personal Information Collection
Any data that you submit using our web form [firstname.lastname@example.org] will be held by us as a Data Controller and will be held securely and in accordance with [the General Data Protection Regulation][the Data Protection Act 2018] for [6 months] [12 months] before being securely and confidentially destroyed [unless you have consented to joining our mailing list in which case your contact details will be removed only when you unsubscribe].
Your data will not be disclosed to any third parties without your consent or as otherwise allowed by the relevant Data Protection legislation and will only be used for responding to your query (or purposes associated with that purpose).
You have the right to be informed about what data we hold about you along with other rights set out in the legislation. Further information about your rights under the data protection legislation can be found at www.ico.org.uk
Non-Personally identifying information
When a user interacts with our site, we may also collect information using cookies and log files which may include your Internet Protocol (IP), browser “user-agent”, pages viewed and other similar activities.
Cookies are a small amount of data sent from the server, which is then stored on your computer’s hard disc drive. We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual. For the same reason, we may obtain information about your general internet usage by using a cookie file that is stored on the hard drive of your computer. Cookies help us to improve our service and to deliver a better and more personalized service.
We may send you receive marketing communications from us, or from third parties used by us to send marketing communication on our behalf, if you have opted in to receive such material. Our marketing communications will always include the option for you to unsubscribe from receiving any further marketing communications.
You may change your mind about direct marketing from us at any time by writing to us at email@example.com.
We may also collect and use other information for internal purposes – for example, contact with our technical support or sales departments, accesses to your account and any reported violations of our terms and conditions that you or someone on your account may have committed. This is to help us fit the service to your individual needs, to help us diagnose problems you may be having and for system security.
Withdrawal of Consent
If you withdraw your consent to the processing of your personal data at any time, it may mean we will not be able to provide all or parts of the products or services you have requested from us. Please be aware that in these circumstances you will not be able to obtain a refund of any fees or monies you would have paid.
On the other hand, if for example you withdraw your consent to us sending you marketing communications, then such withdrawal should not have any affects.
Disclosure of information to others
We may disclose information about you, in the event we undergo re-organisation or are sold to a third party or, as necessary, to our suppliers for them to be able to supply certain items or services to you. We do not sell or pass your personal information to third parties (other than as already stated) unless you have given us permission or unless it is necessary to deliver the products and services ordered or used by you. Caravelli Restaurant LTD may also be obliged to disclose your personal information to meet any legal or regulatory requirements or obligations in accordance with applicable law.
Length of data retention and Data Maintenance
The time period for which we keep information varies according to what the information is used for. In some cases, there are legal requirements to keep data for a minimum period. Unless there is a specific legal requirement for us to keep the information, we will retain it for no longer than is necessary for the purposes for which the data was collected or for which it is to be further processed.
The data may be stored on one or more databases directly or indirectly maintained by Caravelli Restaurant LTD. We employ industry standard security measures to protect the confidentiality of the information, but whilst we cannot guarantee that any loss, misuse or alteration of data will not occur, every effort is made to prevent such occurrences. Any particularly sensitive information (such as credit card details) is encrypted prior to transmission to us and will only be stored in encrypted systems.
Providing Information about someone else
If you are providing personal data to us about someone else you confirm that they have appointed you to act for them, to consent to the processing of their personal data, and that you have informed them of our identity, of this Policy, and of the purposes (as set out in this Policy) for which their personal data will be processed.
Links to third party websites
Our websites, online services and mobile applications may, from time to time, contain links to and from websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites and any services that may be accessible through them have their own privacy policies and that we do not accept any responsibility or liability for these policies or for any personal data that may be collected through these websites or services. You are advised to please check these policies before submitting any personal data to these websites or using these services.
We may monitor or record telephone conversations to enhance your security and ours, to enable us to handle complaints efficiently, improve our client service and for staff training purposes. If your telephone conversation with us will be recorded then you will receive a message to this effect prior to the start of your conversation with us.
Access to your information
We will make your personal data available to you for review pursuant to a simple request from you. If you tell us that the personal data which we hold about you is incorrect or is used inappropriately, we will correct, update or delete such person data as appropriate. You also have other rights such as the right to request from us erasure of personal data or restriction of processing or to object to processing and the right to data portability. For information about how to get access to your personal data and for exercising your rights, please contact us at firstname.lastname@example.org.
If any of your information changes, it is your sole responsibility to notify us about the change as soon as possible. It is your sole responsibility to ensure that all usernames and passwords issued to you are kept safe and secure.
Further details about your rights under the GDPR can be accessed here.