Privacy Policy
Privacy Policy
Effective Date: [Insert Date]
Introduction
This Privacy Policy governs the manner in which Berezka Restaurant LLC and Chalet Berezka Catering Services LLC ("we", "our", "us") collect, use, maintain, and disclose information collected from users ("User" or "Users") of our mobile application and website (https://www.berezka.ae/) ("Service"). This Privacy Policy applies to the Service and all products and services offered by Berezka Restaurant LLC and Chalet Berezka Catering Services LLC.
1. Company Details
Entities Covered: Berezka Restaurant LLC and Chalet Berezka Catering Services LLC
Address: West Roof Top, Nakheel Mall, Palm Jumeirah, PO 282332
Contact Information: https://www.berezka.ae/
2. Types of Data Collected
We collect various types of personal information from Users, including but not limited to:
Contact Information: Email address, phone number.
Identity Information: Name, date of birth, gender.
Delivery Information: Delivery addresses.
We do not collect sensitive personal data such as health information, financial data, or identification numbers.
3. Methods of Collection
Personal data is collected from Users through:
Mobile Applications: Information provided through our mobile applications.
Website Forms: Information provided through forms on our website.
We do not use cookies or other tracking technologies to collect data.
4. Purpose of Data Collection
We collect and use Users' personal information for the following purposes:
Functionality: To implement the functionality of our mobile application, including delivery services.
Marketing: To send Users information they agreed to receive about topics we think will be of interest to them.
Customer Service: To respond to Users' customer service requests and support needs more effectively.
Order Processing: To process and deliver orders that Users place with us.
Analytics: To understand how our Users as a group use the services and resources provided on our Site.
5. Data Minimization and Purpose Limitation
We collect only the personal data necessary for the specified purposes and do not process data for any other incompatible purposes without explicit consent.
6. Data Integrity and Accuracy
We take reasonable steps to ensure that the personal data we process is accurate, complete, and current, and we update it as necessary to maintain accuracy.
7. Legal Basis for Processing Personal Data (GDPR Compliance)
Under the General Data Protection Regulation (GDPR), we process personal data based on the following legal grounds:
Consent: Where Users have provided explicit consent for the processing of their personal data.
Contractual Necessity: Where processing is necessary for the performance of a contract with the User.
Legal Obligation: Where processing is necessary for compliance with a legal obligation.
Legitimate Interests: Where processing is necessary for our legitimate interests and those interests are not overridden by the User's data protection rights.
8. Data Sharing
We share personal data with third parties only in the ways described in this Privacy Policy:
Syrve: An all-in-one POS & Restaurant Management Software, used to facilitate our services.
Third-Party Data Processors: We may also work with payment processors, cloud service providers, and other third-party service providers who adhere to data protection standards.
We do not sell personal data to third parties.
9. Data Storage and Retention
Storage Location: Personal data is stored in cloud storage.
Retention Period: We retain personal data for the duration of the provision of our services. Once the data is no longer necessary for the purposes for which it was collected, it will be securely deleted.
10. Security Measures
We implement several security measures to protect personal data, including:
Encryption: Encrypting personal data during transmission and storage.
Access Controls & Authentication: Restricting access to personal data to authorized personnel only.
Logging & Monitoring: Keeping logs of access to personal data and monitoring for unauthorized access.
Backups: Regularly backing up data to prevent data loss.
11. User Rights
Users have the following rights regarding their personal data:
Right to Access: Users can request access to their personal data.
Right to Rectification: Users can request corrections to inaccurate or incomplete personal data.
Right to Erasure: Users can request the deletion of their personal data.
Right to Restrict Processing: Users can request restrictions on how their personal data is processed.
Right to Data Portability: Users can request a copy of their personal data in a commonly used format.
Right to Object: Users can object to the processing of their personal data under certain circumstances.
Users can access, update, or delete their personal data through the functionality of the mobile application. We aim to respond to requests within 30 days.
12. Consent and Opt-Out
User Consent: We obtain user consent for data collection and processing through a mandatory agreement with the service rules and privacy policy at the registration stage.
Opt-Out: Users can opt-out of data collection or marketing communications by deleting their account through the functionality of the mobile application.
13. International Data Transfers
If we transfer personal data to countries outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect the data, such as Standard Contractual Clauses (SCCs) or other legal mechanisms recognized under GDPR.
14. Legal Compliance
Regulations: We comply with relevant data protection regulations, including GDPR, CCPA, CPRA, and PIPEDA, as well as applicable UAE data protection laws.
Data Breaches: In the event of a data breach, we will implement our disaster recovery plan and notify affected users promptly upon discovering the breach.
15. Data Breach Notification Process
In the event of a data breach, we will:
Notify affected users within 72 hours of becoming aware of the breach.
Provide information on the nature of the breach, the affected data, and the steps taken to mitigate the breach.
Offer guidance on what users can do to protect themselves.
16. Data Protection Officer (DPO)
If applicable, our Data Protection Officer (DPO) can be contacted at:
Name: [DPO Name]
Email: [DPO Email]
17. Children's Privacy
Our services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information. If you are aware that a child has provided us with personal information, please contact us.
18. User Feedback and Complaints
Users can provide feedback or complaints regarding their data privacy by contacting us at:
Phone: +971553761895
Email: app@berezka.ae
We will address and resolve user concerns promptly.
19. Policy Review and Update
This policy will be reviewed and updated at least annually or when significant changes occur in data protection laws or company practices. Users are encouraged to review the policy periodically for any changes.
20. Language and Accessibility
This Privacy Policy is drafted in English. If you require the policy in another language or an accessible format, please contact us, and we will do our best to accommodate your needs.
21. Automated Decision-Making and Profiling
If our services use automated decision-making or profiling that significantly affects users, we will provide information about the logic involved and the potential consequences for users.
22. Data Protection Impact Assessments (DPIAs)
We conduct Data Protection Impact Assessments (DPIAs) to identify and mitigate risks related to our data processing activities, ensuring compliance with data protection regulations.
23. Rights of Users Under Specific Laws
Users have specific rights under laws such as the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know, the right to delete, the right to opt-out of the sale of personal information, and the right to non-discrimination.
24. Data Anonymization and Pseudonymization
We may anonymize or pseudonymize personal data to enhance privacy and security, ensuring that data cannot be attributed to a specific individual without additional information.
25. Data Retention Policy
We retain different types of data for specified periods, based on the nature of the data and the purpose of its processing. The criteria used to determine retention periods include legal requirements, business needs, and user expectations.
26. Health and Safety Information
We collect necessary health and safety data to ensure the safety of our customers and employees, including compliance with health procedures related to food preparation and delivery.
27. Allergy Information
We provide information about ingredients and allergens in the foods offered. Customers with specific dietary requirements or allergies are encouraged to contact us to verify ingredients.
28. Reservation Information
We collect reservation information to efficiently manage table bookings and provide a personalized experience for customers.
29. Loyalty Programs and Promotions
We collect and use personal data to offer loyalty programs and promotions that customers have agreed to participate in.
30. Third-Party Delivery Services
We may share delivery data with third-party delivery services to facilitate our services. We ensure our partners comply with data protection standards.
ConclusionWe are committed to safeguarding your privacy and ensuring that your personal data is protected. By using our services, you acknowledge that you have read and understood this Privacy Policy. If you have any questions or concerns, please do not hesitate to contact us.
Effective Date: [Insert Date]
Introduction
This Privacy Policy governs the manner in which Berezka Restaurant LLC and Chalet Berezka Catering Services LLC ("we", "our", "us") collect, use, maintain, and disclose information collected from users ("User" or "Users") of our mobile application and website (https://www.berezka.ae/) ("Service"). This Privacy Policy applies to the Service and all products and services offered by Berezka Restaurant LLC and Chalet Berezka Catering Services LLC.
1. Company Details
Entities Covered: Berezka Restaurant LLC and Chalet Berezka Catering Services LLC
Address: West Roof Top, Nakheel Mall, Palm Jumeirah, PO 282332
Contact Information: https://www.berezka.ae/
2. Types of Data Collected
We collect various types of personal information from Users, including but not limited to:
Contact Information: Email address, phone number.
Identity Information: Name, date of birth, gender.
Delivery Information: Delivery addresses.
We do not collect sensitive personal data such as health information, financial data, or identification numbers.
3. Methods of Collection
Personal data is collected from Users through:
Mobile Applications: Information provided through our mobile applications.
Website Forms: Information provided through forms on our website.
We do not use cookies or other tracking technologies to collect data.
4. Purpose of Data Collection
We collect and use Users' personal information for the following purposes:
Functionality: To implement the functionality of our mobile application, including delivery services.
Marketing: To send Users information they agreed to receive about topics we think will be of interest to them.
Customer Service: To respond to Users' customer service requests and support needs more effectively.
Order Processing: To process and deliver orders that Users place with us.
Analytics: To understand how our Users as a group use the services and resources provided on our Site.
5. Data Minimization and Purpose Limitation
We collect only the personal data necessary for the specified purposes and do not process data for any other incompatible purposes without explicit consent.
6. Data Integrity and Accuracy
We take reasonable steps to ensure that the personal data we process is accurate, complete, and current, and we update it as necessary to maintain accuracy.
7. Legal Basis for Processing Personal Data (GDPR Compliance)
Under the General Data Protection Regulation (GDPR), we process personal data based on the following legal grounds:
Consent: Where Users have provided explicit consent for the processing of their personal data.
Contractual Necessity: Where processing is necessary for the performance of a contract with the User.
Legal Obligation: Where processing is necessary for compliance with a legal obligation.
Legitimate Interests: Where processing is necessary for our legitimate interests and those interests are not overridden by the User's data protection rights.
8. Data Sharing
We share personal data with third parties only in the ways described in this Privacy Policy:
Syrve: An all-in-one POS & Restaurant Management Software, used to facilitate our services.
Third-Party Data Processors: We may also work with payment processors, cloud service providers, and other third-party service providers who adhere to data protection standards.
We do not sell personal data to third parties.
9. Data Storage and Retention
Storage Location: Personal data is stored in cloud storage.
Retention Period: We retain personal data for the duration of the provision of our services. Once the data is no longer necessary for the purposes for which it was collected, it will be securely deleted.
10. Security Measures
We implement several security measures to protect personal data, including:
Encryption: Encrypting personal data during transmission and storage.
Access Controls & Authentication: Restricting access to personal data to authorized personnel only.
Logging & Monitoring: Keeping logs of access to personal data and monitoring for unauthorized access.
Backups: Regularly backing up data to prevent data loss.
11. User Rights
Users have the following rights regarding their personal data:
Right to Access: Users can request access to their personal data.
Right to Rectification: Users can request corrections to inaccurate or incomplete personal data.
Right to Erasure: Users can request the deletion of their personal data.
Right to Restrict Processing: Users can request restrictions on how their personal data is processed.
Right to Data Portability: Users can request a copy of their personal data in a commonly used format.
Right to Object: Users can object to the processing of their personal data under certain circumstances.
Users can access, update, or delete their personal data through the functionality of the mobile application. We aim to respond to requests within 30 days.
12. Consent and Opt-Out
User Consent: We obtain user consent for data collection and processing through a mandatory agreement with the service rules and privacy policy at the registration stage.
Opt-Out: Users can opt-out of data collection or marketing communications by deleting their account through the functionality of the mobile application.
13. International Data Transfers
If we transfer personal data to countries outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect the data, such as Standard Contractual Clauses (SCCs) or other legal mechanisms recognized under GDPR.
14. Legal Compliance
Regulations: We comply with relevant data protection regulations, including GDPR, CCPA, CPRA, and PIPEDA, as well as applicable UAE data protection laws.
Data Breaches: In the event of a data breach, we will implement our disaster recovery plan and notify affected users promptly upon discovering the breach.
15. Data Breach Notification Process
In the event of a data breach, we will:
Notify affected users within 72 hours of becoming aware of the breach.
Provide information on the nature of the breach, the affected data, and the steps taken to mitigate the breach.
Offer guidance on what users can do to protect themselves.
16. Data Protection Officer (DPO)
If applicable, our Data Protection Officer (DPO) can be contacted at:
Name: [DPO Name]
Email: [DPO Email]
17. Children's Privacy
Our services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information. If you are aware that a child has provided us with personal information, please contact us.
18. User Feedback and Complaints
Users can provide feedback or complaints regarding their data privacy by contacting us at:
Phone: +971553761895
Email: app@berezka.ae
We will address and resolve user concerns promptly.
19. Policy Review and Update
This policy will be reviewed and updated at least annually or when significant changes occur in data protection laws or company practices. Users are encouraged to review the policy periodically for any changes.
20. Language and Accessibility
This Privacy Policy is drafted in English. If you require the policy in another language or an accessible format, please contact us, and we will do our best to accommodate your needs.
21. Automated Decision-Making and Profiling
If our services use automated decision-making or profiling that significantly affects users, we will provide information about the logic involved and the potential consequences for users.
22. Data Protection Impact Assessments (DPIAs)
We conduct Data Protection Impact Assessments (DPIAs) to identify and mitigate risks related to our data processing activities, ensuring compliance with data protection regulations.
23. Rights of Users Under Specific Laws
Users have specific rights under laws such as the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know, the right to delete, the right to opt-out of the sale of personal information, and the right to non-discrimination.
24. Data Anonymization and Pseudonymization
We may anonymize or pseudonymize personal data to enhance privacy and security, ensuring that data cannot be attributed to a specific individual without additional information.
25. Data Retention Policy
We retain different types of data for specified periods, based on the nature of the data and the purpose of its processing. The criteria used to determine retention periods include legal requirements, business needs, and user expectations.
26. Health and Safety Information
We collect necessary health and safety data to ensure the safety of our customers and employees, including compliance with health procedures related to food preparation and delivery.
27. Allergy Information
We provide information about ingredients and allergens in the foods offered. Customers with specific dietary requirements or allergies are encouraged to contact us to verify ingredients.
28. Reservation Information
We collect reservation information to efficiently manage table bookings and provide a personalized experience for customers.
29. Loyalty Programs and Promotions
We collect and use personal data to offer loyalty programs and promotions that customers have agreed to participate in.
30. Third-Party Delivery Services
We may share delivery data with third-party delivery services to facilitate our services. We ensure our partners comply with data protection standards.
ConclusionWe are committed to safeguarding your privacy and ensuring that your personal data is protected. By using our services, you acknowledge that you have read and understood this Privacy Policy. If you have any questions or concerns, please do not hesitate to contact us.