Privacy Policy for Fiddlers Bistro
1. Introduction
Fiddlers Bistro is committed to safeguarding the privacy and personal data of our users. We recognize the importance of transparency, accountability, and user control regarding the information we collect and process. This Privacy Policy outlines how we collect, use, disclose, and manage your personal data in compliance with the General Data Protection Regulation (EU GDPR), UK GDPR, and the California Consumer Privacy Act (CCPA). We prioritize privacy by design and by default, and we strive to provide you with meaningful control over your information.
2. Scope of this Policy and Data Controller Role
This Privacy Policy applies to all users who visit or interact with the Fiddlers Bistro website (fiddlersbistro.com), including customers, visitors, and subscribers. Fiddlers Bistro is the data controller for all personal data processed through the website, meaning we determine the purposes and methods of data processing.
If you have any questions regarding our privacy practices, you may contact us at: [email protected].
3. Categories of Data Processed
We may collect and process the following types of personal data:
a) Usage Data
We collect data about how users interact with our website and services, which may include IP addresses, browser types, access dates and times, page interactions, session duration, and referral URLs.
b) Account Data
When you create an account, subscribe to a mailing list, or place an order, we collect data such as your full name, postal address, email address, and telephone number.
c) Profile Data
We collect information about your product preferences, shopping behavior, cuisine interests, dietary considerations, and past purchases to enhance your user experience.
d) Communication Data
If you contact us via email, contact forms, or customer support, we may retain records of those communications, including message contents, dates, and our responses.
e) Technical Data
This includes device-specific information such as operating system, device type, browser version, screen resolution, language settings, and system configurations to ensure compatibility and optimize performance.
f) Transaction Data
When you make a purchase on fiddlersbistro.com, we collect billing and shipping addresses, payment method details (excluding full payment card data which is securely processed via compliant third-party gateways), and order history.
g) Preference Data
We may collect information regarding your communication preferences, marketing opt-ins, and consent to receive promotional material, as well as noted areas of interest (e.g., events, product offerings).
4. Legal Bases for Processing
We process your data under the following lawful bases:
– Consent: Where you have voluntarily given explicit consent, such as subscribing to our newsletter.
– Performance of a Contract: Where processing is required to fulfill a service you have requested, for example, placing an order or booking a reservation.
– Legitimate Interests: To improve our services, conduct analysis, prevent fraud, and ensure network security—provided such interests are not overridden by your rights.
– Legal Obligation: Where we are required by law to collect or disclose certain types of information.
5. Your Rights
If you are located within the European Economic Area or certain other jurisdictions, you may have the following rights under applicable data protection laws:
– Right of Access: Obtain confirmation of processing and access to your personal data.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your data, subject to legal and contractual obligations.
– Right to Restriction: Limit our processing of your personal information.
– Right to Data Portability: Receive your personal data in a structured, machine-readable format.
– Right to Object: Object to processing carried out on the basis of our legitimate interests or for direct marketing.
– Right to Withdraw Consent: You may withdraw your consent at any time where processing is based solely on your consent.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational safeguards to ensure the security and confidentiality of your data, including:
– AES-256 encryption for data in transit and at rest
– Role-based access controls and secure administrator authentication
– Firewall and anti-malware systems with regular updates
– Data redundancy through secure backup protocols
– Staff training in data protection and privacy procedures
7. International Data Transfers
Some of our service providers may operate in jurisdictions outside your country of residence. In such cases, we ensure compliant data transfers through Standard Contractual Clauses approved by the European Commission or other recognized legal mechanisms. We also assess the receiving country’s data protection framework before proceeding with any transfer.
8. Data Retention
Fiddlers Bistro retains personal data only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law.
– Account and Profile Data: Retained for the duration of the account’s activity and for 12 months thereafter.
– Transaction Data: Retained for 7 years for financial and tax audits.
– Communication Data: Retained for 2 years following last interaction.
– Cookie and Technical Data: Retained according to cookie type (see Cookie Policy below).
Once data is no longer necessary, it is securely deleted or anonymized.
9. Cookie Policy
Our website uses the following categories of cookies:
– Essential Cookies: Necessary for site operation, including session management and access control.
– Functional Cookies: Enable enhanced features such as remembering user preferences or settings.
– Analytics Cookies: Collect anonymous data on usage patterns via tools like Google Analytics to help us improve performance and usability.
– Performance and Marketing Cookies: Track interaction with advertisements and content to deliver personalized experiences.
All cookies are used in compliance with applicable laws and do not store personally identifiable data unless consented to.
10. Cookie Management and GDPR/CCPA Compliance
On your first visit, and periodically thereafter, you will be prompted to manage your cookie preferences through our Consent Management Platform (CMP). Under the GDPR and CCPA, you have the right to:
– Opt-in or out of non-essential cookies
– Revoke consent at any time
– Access cookie-related data upon request
Instructions for managing cookies are provided within your browser settings or accessible directly through our on-site cookie preferences page.
11. Special Protections for Children Under 13
Fiddlers Bistro does not knowingly collect or process personal data from children under the age of 13. If we become aware that such data has been inadvertently collected, it will be deleted promptly. We encourage parents and guardians to monitor children’s online activities.
12. Policy Updates and User Notifications
We may, from time to time, update this Privacy Policy to reflect changes in legal obligations, business practices, or user feedback. We will notify users of material changes through prominent notices on fiddlersbistro.com, and where appropriate, via email. Continued use of our services constitutes your agreement to the revised terms.
13. Contact Us
If you have any questions, requests, or concerns pertaining to this Privacy Policy or your Personal Data, please contact us at:
Email: [email protected]
Website: https://fiddlersbistro.com
Fiddlers Bistro is dedicated to maintaining full compliance with applicable privacy laws, including GDPR and CCPA. We remain at your service for any inquiries or concerns regarding your data and how it is handled.