At Aubergine, we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website [https://aubergine-restaurant.ro/] or interact with our services. Please read this privacy policy carefully to understand our practices regarding your personal data.
1. Data Controller
ZEL MEDIA is the data controller and is responsible for your personal data. If you have any questions regarding this policy or how your data is handled, you can contact us at:
Business Name: ZEL MEDIA
Email: [Insert email]
Address: [Insert full address]
2. Personal Data We Collect
We collect personal information that you voluntarily provide to us, including:
- Contact Information: such as your name, email address, phone number, and postal address when you make a reservation, contact us via our contact form, or subscribe to our newsletter.
- Order and Payment Information: such as details of your food orders, billing information, and payment card details.
- Website Usage Information: including IP address, browser type, device information, and pages visited through cookies and analytics tools.
- Preferences: details about your preferences, such as dietary restrictions or meal choices, if you provide them.
3. How We Use Your Data
We use the information we collect to:
- Process your bookings and provide the services you request.
- Communicate with you about your reservation, orders, or inquiries.
- Send marketing and promotional communications if you have consented to receive them.
- Improve our website and services through analytics and customer feedback.
- Comply with legal obligations and resolve any disputes or enforce our agreements.
4. Legal Basis for Processing
Under the GDPR, we process your personal data based on the following legal grounds:
- Consent: Where you have provided explicit consent to receive marketing communications or other services.
- Contractual Necessity: When we process your data to fulfill a contract with you, such as completing your order or reservation.
- Legitimate Interests: Where it is in our legitimate business interests, such as improving our services or detecting fraud, provided those interests are not overridden by your rights and interests.
- Legal Obligation: When we must comply with a legal or regulatory obligation.
5. How We Share Your Data
We do not sell or rent your personal data. However, we may share your personal information with trusted third parties, including:
- Service Providers: Such as payment processors, reservation systems, and marketing platforms who assist in delivering our services.
- Law Enforcement or Regulatory Authorities: Where required by law or to protect our legal rights.
- Business Transfers: In the event of a merger, acquisition, or sale of our business, personal data may be transferred as part of the transaction.
6. International Data Transfers
As ZEL MEDIA is based in the EU, we generally process personal data within the European Economic Area (EEA). However, if we transfer your data outside of the EEA (for example, to service providers in non-EEA countries), we ensure appropriate safeguards are in place to protect your privacy rights, such as the use of standard contractual clauses approved by the European Commission.
7. Your Rights Under GDPR
You have several rights concerning your personal data:
- Right to Access: You can request a copy of the personal data we hold about you.
- Right to Rectification: You can ask us to correct any inaccurate or incomplete data.
- Right to Erasure: You can request that we delete your personal data when it is no longer necessary for the purposes for which it was collected.
- Right to Restriction of Processing: You can request that we restrict the processing of your data in certain circumstances.
- Right to Data Portability: You can ask for your personal data to be transferred to you or another provider in a structured, commonly used format.
- Right to Object: You can object to the processing of your personal data where we rely on legitimate interests or direct marketing.
- Right to Withdraw Consent: If you have provided consent for processing, you may withdraw it at any time.
To exercise these rights, please contact us at [Insert email]. We will respond to your request in compliance with GDPR timelines.
8. Cookies and Tracking Technologies
Our website uses cookies to improve user experience and analyze website traffic. Cookies are small files stored on your device to track website activity. You can manage your cookie preferences in your browser settings.
For more information on our use of cookies, please refer to our Cookie Policy.
9. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including to satisfy any legal, accounting, or reporting requirements. When we no longer need your data, we will securely delete or anonymize it.
10. Security Measures
We take reasonable steps to protect your personal data from unauthorized access, disclosure, alteration, or destruction. This includes implementing technical and organizational measures such as encryption, secure servers, and access controls. However, no data transmission over the internet is entirely secure, so we cannot guarantee the absolute security of your information.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time in response to changes in legal, regulatory, or operational requirements. We will notify you of any significant changes by posting the new Privacy Policy on our website. Your continued use of the website after such updates will be deemed as acceptance of the revised policy.
12. Contact Us
If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us at:
Email: [Insert email]
Address: [Insert full address]