Privacy Policy
1. Introduction
At Favorite Place Restaurant (“we,” “us,” or “our”), accessible via favoriteplacerestaurant.com (the “Website”), we are committed to safeguarding the privacy and personal data of all users and customers. We understand the importance of transparency, control, and trust when it comes to the handling of your personal data. This Privacy Policy outlines how we collect, use, disclose, and protect your information in accordance with applicable data protection laws, including the European Union General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and customers entering, browsing, or utilizing our Website. We act as the “Data Controller” for the purposes of the GDPR and as the “Business” under the CCPA with respect to the personal information collected via the Website, including any associated services. Where we process personal data provided to us by a third party, we act as a Data Processor and comply with processor obligations therein.
3. Categories of Data Processed
We collect, use, store and transfer different types of personal data, grouped into the following categories:
a. Usage Data:
Includes data about how you use our Website such as IP address, browser type, unique device identifiers, access times, pages viewed, referring websites, and session logs.
b. Account Data:
Includes information submitted directly by you during account creation, contact forms, reservations, or signups including your full name, email address, postal address, and phone number.
c. Profile Data:
Includes your food preferences, order history, loyalty program status, interaction patterns with our Website, and behavioral insights collected via analytics tools.
d. Communication Data:
Includes messages, contact history, customer support queries, feedback submissions, and any other correspondence exchanged between you and us whether electronically or otherwise.
e. Technical Data:
Includes device type, operating system, browser type and version, screen resolution, language settings, and mobile network data. These are collected via automated technologies when you engage with the Website.
f. Transaction Data:
Includes payment method details (processed via secure third-party payment processors), billing/delivery address, purchase records, reservation or event bookings, and related financial transactions.
g. Preference Data:
Includes your preferences in receiving marketing communications from us and third parties, language and location preferences, interest categories, and cookie consent choices.
4. Legal Bases for Processing
Under the GDPR, we rely on the following legal bases to process your personal data:
– Consent: When you explicitly provide us permission (e.g., subscribing to newsletters or accepting non-essential cookies).
– Contractual Necessity: When processing is required to fulfill a contract with you, such as handling a reservation or order.
– Legal Obligation: Where we are required to comply with applicable law.
– Legitimate Interests: When processing is necessary for our legitimate interests in managing our business, enhancing services, and securing our Website, provided those interests are not overridden by your rights.
In the context of the CCPA, we do not sell your personal information. Any disclosures made are strictly limited to the permitted purposes as outlined in this Policy.
5. Your Rights
If you are a resident of the European Economic Area (EEA), the United Kingdom, or California, you have the following individual rights with respect to your personal data:
– Right to Access: You may request a copy of your personal data we hold.
– Right to Rectification: You may ask us to correct inaccurate or incomplete information.
– Right to Erasure: You may request we delete your personal data under certain conditions.
– Right to Restriction: You may request we limit the processing of your personal data.
– Right to Data Portability: You may request that your personal data be provided to you or a third party in a structured, commonly used, machine-readable format.
– Right to Withdraw Consent: Where we rely on consent, you can withdraw it at any time.
– Right to Opt-Out of Sale (California Residents): We do not sell your personal information. However, under the CCPA, you may request to opt out of any potential future sale of your personal information.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate administrative, physical, and technical measures to secure your personal data from accidental loss, unauthorized access, use, alteration, and disclosure. These measures include encryption of sensitive information, access controls, routine audits and logging, secure server environments, regular staff training on privacy responsibilities, and offsite data backups.
7. International Transfers
If you are located outside the United States, your data—including personal information—may be transferred to and stored on servers located in the United States or other countries. Where such transfers occur, we ensure that adequate safeguards are in place in accordance with applicable law, including the use of Standard Contractual Clauses, data localization practices, and robust security protocols.
8. Data Retention
We retain your personal data for only as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting obligations. Retention periods generally follow these guidelines:
– Usage Data: up to 12 months.
– Account and Profile Data: for the duration of the user relationship and up to 6 years thereafter.
– Transaction Data: retained for a minimum of 7 years to fulfill tax and financial compliance.
– Communication Data: retained for 3 years following the last correspondence.
– Preference Data: retained until you update or revoke your preferences.
We periodically review and securely delete data that is no longer required.
9. Cookie Policy
Our Website uses cookies and similar tracking technologies to enhance user experience and analyze website performance. Cookies may be categorized as follows:
– Essential Cookies: Necessary for the operation of the Website.
– Functional Cookies: Enable enhanced personalization and experience-based features.
– Analytical Cookies: Used to aggregate insights into user behaviors and improve content relevance.
– Performance Cookies: Monitor system performance to ensure optimal uptime and speed.
10. Cookie Management and Compliance with GDPR and CCPA
Upon first visit to favoriteplacerestaurant.com, users are presented with a cookie consent banner allowing granular consent management. You may accept, reject, or manage cookies via the settings tool provided on the Website. Users can also modify preferences by adjusting their browser settings. California residents may also exercise opt-out rights in accordance with the CCPA using our designated “Do Not Sell My Info” section.
11. Special Protections for Children Under 13
Our Website and services are not intended for individuals under the age of 13. We do not knowingly solicit or collect personal data from children. If we become aware that data of a child under 13 has been collected without verified parental consent, we will take steps to delete such information. Parents or guardians who believe we may have inadvertently collected data from a child should contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to revise this Privacy Policy at any time. Changes will be reflected through updated content on this page. Where appropriate, we will notify you of material changes via prominent notice on the Website or via email. Continued use of the Website following changes indicates your agreement to the revised terms.
13. Contact
For any questions, concerns, or requests related to this Privacy Policy or your personal data, please contact our privacy team at:
Email: [email protected]
We are fully committed to protecting your privacy and adhering to all relevant legal obligations. Please do not hesitate to contact us with any concerns regarding how your data is collected, used, or retained.