Privacy Policy
1. Introduction
At Kastoori Restaurant (“we,” “our,” “us”), accessible at kastoorirestaurant.com, we are committed to safeguarding the privacy and personal data of our website visitors, customers, and all individuals who interact with our services. Your privacy is of paramount importance to us, and we are fully committed to maintaining the confidentiality, integrity, and security of your information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
This Privacy Policy outlines how we collect, use, disclose, and protect your personal data when you access or use our website or interact with us in any other manner.
2. Scope and Data Controller
This Privacy Policy applies to all users of kastoorirestaurant.com and covers all data we collect through the website, via email communication, or through other associated services. Kastoori Restaurant acts as the Data Controller for the processing of personal data described herein and determines the means and purposes of such processing in accordance with applicable privacy laws.
If you have any questions about our privacy practices, you may contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
– Usage Data: Includes information such as IP address, browser type and version, geographical location, time zone setting, session duration, website navigation paths, and other similar diagnostic data collected through cookies and analytics tools.
– Account Data: Includes information you provide when registering on our website or placing an order, such as your full name, postal address, telephone number, and email address.
– Profile Data: Includes your food preferences, order history, reservation details, loyalty program participation, behavioral data, and other preferences you share with us.
– Communication Data: Includes data from your correspondence with us, including support inquiries, survey responses, chat interactions, and contact forms submitted via kastoorirestaurant.com.
– Technical Data: Includes device-specific data such as operating system, unique device identifiers, browser plug-in details, network and hardware identifiers, and system configuration data.
– Transaction Data: Includes details related to purchases you make, payment card details (processed securely through third-party providers), delivery addresses, billing information, and transaction history.
– Preference Data: Includes your choices regarding marketing communications, your product interests, and other related settings and responses submitted to us through our website or services.
4. Legal Bases for Processing
We process your personal data only when we have a lawful basis to do so. These bases include:
– Legitimate Interests: To manage, analyze, and improve our website and services, prevent fraud, secure our systems, and enhance user experience in a way that does not override your fundamental rights.
– Contractual Necessity: To fulfill our obligations when you place an order, make a reservation, or otherwise engage in a contractual relationship with us.
– Consent: When you provide explicit consent, for instance, by opting into marketing communications or accepting non-essential cookies.
– Legal Obligation: When processing is necessary for compliance with applicable laws, such as regulatory reporting or responding to law enforcement requests.
5. Your Rights
You have the following rights under applicable privacy legislation:
– Right to Access: You may request confirmation of whether we hold personal data about you and obtain a copy of such data.
– Right to Rectification: You are entitled to request correction of inaccurate or incomplete personal data.
– Right to Erasure: Also known as the “right to be forgotten,” you may request deletion of your personal data.
– Right to Restriction of Processing: You may ask us to suspend the processing of personal data in certain circumstances.
– Right to Data Portability: You may request to receive your personal data in a machine-readable format or ask us to transmit it to another controller.
To exercise any of these rights, please contact us at [email protected]. We will respond in accordance with applicable legal requirements.
6. Security Measures
We implement a range of robust technical and organizational security measures to ensure the safety of your personal data. These include:
– End-to-end encryption for data transmission
– Secure storage and access control mechanisms
– Regular data backups and disaster recovery protocols
– Internal staff privacy training and policy adherence
– Secure third-party payment processing
– Strict role-based access to systems housing personal data
Despite our efforts, no transmission over the internet is entirely secure; thus, we cannot guarantee absolute security, but we endeavor to protect your data to the highest standard.
7. International Transfers
If your personal data is transferred outside the European Economic Area (EEA) or outside the United States, we ensure appropriate safeguards are in place. These may include Standard Contractual Clauses approved by the European Commission or equivalent contractual or regulatory protections recognized by relevant privacy laws.
8. Data Retention
We retain personal data only as long as is necessary for the purpose for which it was collected, including to satisfy legal, accounting, or reporting obligations. Typical retention periods include:
– Usage and Technical Data: 12 months
– Transaction Data: 7 years (to comply with financial regulations)
– Account and Profile Data: For the duration of your relationship with us, and up to 2 years post-termination
– Communication Data: 18 months from the last interaction
– Preference Data: Until marketing preferences are updated or consent is withdrawn
9. Cookie Policy
Our website uses cookies to ensure functionality and enhance your experience. Cookies on kastoorirestaurant.com fall into the following categories:
– Essential Cookies: Required for core functions like navigation, security, and checkout. Without these, services cannot be provided.
– Functional Cookies: Enable enhanced features such as remembering login preferences and user selections.
– Analytics Cookies: Help us understand how users interact with our website, enabling us to improve performance and usability. Data is collected in aggregated form.
– Performance Cookies: Assist with website load time and responsiveness monitoring.
10. Cookie Management (GDPR & CCPA Compliance)
Upon your first visit to kastoorirestaurant.com, we present a cookie consent banner allowing you to manage your cookie preferences.
You can withdraw or modify your consent at any time by accessing our cookie settings or adjusting your browser settings. Under GDPR and CCPA, you have the right to opt-out of the use of non-essential cookies and prevent data sharing with third parties.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If we become aware that a child under 13 has provided us with personal data, we will take prompt steps to delete such information. If you believe we have any information from or about a child under 13, please contact us immediately at [email protected].
12. Policy Updates
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in law, technology, or our business practices. When changes are made, we will inform users by updating the policy on kastoorirestaurant.com and, when appropriate, provide notification via email or on-site alerts.
We encourage you to review this Privacy Policy periodically to remain informed about how your personal data is protected.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
We are committed to full compliance with privacy and data protection regulations. You may contact us at any time to inquire about your rights or to report a concern regarding the handling of your personal data.