Privacy Policy

Introduction

teresmgcid B.V. ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website teresmgcid.top or use our services at our restaurant located at Eikenlaan 267, 3057 IJ Rotterdam, Netherlands.

Data Controller

teresmgcid B.V. acts as the data controller for the personal information processed under this Privacy Policy. Our company is registered in the Netherlands with registration number B63202532 and VAT number NL63256325B02.

Data Collection

The data we collect includes personal information such as your name, email address, phone number, and any other information you provide when contacting us, making reservations, or using our services. We may also collect technical information about your device and how you interact with our website, including IP address, browser type, and usage patterns.

We collect this information through various means including our contact forms, reservation systems, cookies, and analytics tools. All data collection is done in accordance with applicable data protection laws and regulations.

How We Use Your Information

We explain how we use your information to provide and improve our services, process reservations, respond to inquiries, and communicate with you about our offerings. Your personal data is used for legitimate business purposes including customer service, marketing communications (with your consent), and operational requirements.

The use of your data is based on various legal grounds including contract performance, legitimate interests, and consent where applicable under GDPR regulations.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Contract performance: To provide our restaurant services and process reservations
• Legitimate interests: To improve our services and communicate with customers
• Consent: For marketing communications and non-essential cookies
• Legal obligation: To comply with applicable laws and regulations

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information with trusted service providers who assist us in operating our business, such as payment processors, reservation systems, and IT service providers. These parties are bound by confidentiality agreements and are only permitted to use your information for the specific services they provide to us.

Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

• Right of access: Request a copy of your personal data
• Right to rectification: Correct inaccurate or incomplete data
• Right to erasure: Request deletion of your personal data
• Right to restrict processing: Limit how we use your data
• Right to data portability: Receive your data in a portable format
• Right to object: Object to certain types of processing
• Right to withdraw consent: Withdraw consent for consent-based processing

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Customer contact information is typically retained for up to 3 years after your last interaction with us, unless you request earlier deletion or we are required to retain it longer by law.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, and regular security assessments.

Cookies and Tracking

Our website uses cookies and similar technologies to enhance your browsing experience and analyse website usage. For detailed information about our cookie practices, please refer to our Cookie Policy.

International Data Transfers

As we operate within the European Union, your personal data is primarily processed within the EU. Any transfers outside the EU are conducted in accordance with GDPR requirements and appropriate safeguards.

Children's Privacy

Our services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding your personal data, please reach out to us:

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).