Privacy Policy for Niavaran AB (www.niavaran.se)
Last updated: 18th October 2024
Niavaran AB (“we,” “us,” or “our”) is committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, store, and share your personal data when you visit www.niavaran.se (the “Website”), in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
1. Data Controller
The data controller responsible for your personal data is:
Niavaran AB
Mörbylund 13b, 18230 Danderyd, Stockholm, Sweden
Email: info@niavaran.se
2. Information We Collect
We may collect and process the following types of personal data:
- Personal Data You Provide:
- When you contact us through our website, subscribe to our newsletters, or make an inquiry, we may collect your name, email address, phone number, and other information you provide.
- Automatically Collected Data:
- Information about your usage of our website, such as your IP address, browser type, device type, pages visited, time spent on the site, and how you interact with our website (e.g., clicks, scrolls).
- Cookies and similar tracking technologies (see Section 9 on cookies).
3. How We Use Your Data
We use your personal data for the following purposes:
- To Respond to Inquiries:
- If you contact us with questions or requests, we use your personal data to respond and provide assistance.
- To Provide Services:
- To manage your interactions with our restaurant (e.g., table reservations, inquiries, feedback).
- Marketing and Communication:
- With your explicit consent, we may use your contact details to send newsletters, updates, or promotional materials about our restaurant.
- Website Improvements and Analytics:
- We use automatically collected data to monitor and analyze how visitors interact with our website to improve its performance and user experience.
4. Legal Basis for Processing
Under the GDPR, we must have a lawful basis for processing your personal data. We rely on the following legal grounds:
- Consent: When you voluntarily provide personal data (e.g., subscribing to our newsletters), we process it based on your explicit consent.
- Contract: Processing may be necessary to fulfill contractual obligations or to take steps at your request prior to entering a contract (e.g., making a reservation).
- Legitimate Interests: We may process your personal data where it is necessary for our legitimate interests, such as improving our website’s performance, analyzing usage data, and maintaining security.
- Legal Obligation: We may process your data to comply with legal and regulatory obligations.
5. Sharing Your Data
We do not sell, rent, or trade your personal data to third parties. However, we may share your data in the following circumstances:
- Service Providers:
We may share your personal data with trusted third-party service providers who assist us in operating our website, conducting our business, or providing services on our behalf (e.g., web hosting, marketing services). These providers are bound by confidentiality agreements and are required to handle your data in compliance with applicable data protection laws. - Legal Requirements:
We may disclose your data if required by law or in response to legal requests from authorities or to protect our legal rights.
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations. The retention periods may vary depending on the nature of the data and our legal obligations. Once your data is no longer required, we securely delete or anonymize it.
7. Your Rights Under GDPR
As a data subject under the GDPR, you have the following rights regarding your personal data:
- Right of Access: You have the right to request access to the personal data we hold about you.
- Right to Rectification: You may request that we correct inaccurate or incomplete data.
- Right to Erasure (“Right to be Forgotten”): You have the right to request the deletion of your personal data in certain circumstances.
- Right to Restrict Processing: You can ask us to restrict the processing of your data under certain conditions.
- Right to Data Portability: You have the right to receive your data in a structured, commonly used, and machine-readable format and to transfer that data to another controller.
- Right to Object: You can object to the processing of your data in certain situations, including for direct marketing purposes.
- Right to Withdraw Consent: If you have provided consent for the processing of your data, you may withdraw it at any time.
To exercise any of these rights, please contact us at info@niavaran.se. We will respond to your request within one month, in accordance with GDPR requirements.
8. Data Security
We take appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. While we strive to use commercially acceptable means to protect your data, no transmission over the internet is completely secure. Therefore, we cannot guarantee absolute security.
9. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to collect information about your browsing activity on our website. Cookies are small data files stored on your device that help us enhance your user experience and analyze traffic to our website.
- Types of Cookies We Use:
- Essential cookies (necessary for website functionality)
- Analytical cookies (to monitor website performance)
You can manage your cookie preferences through your browser settings. However, disabling certain cookies may affect your ability to use some features of our website.
10. Third-Party Links
Our website may contain links to third-party websites or services. Please note that we are not responsible for the privacy practices or content of these third-party websites. We encourage you to read their privacy policies before interacting with them.
11. International Transfers of Data
If we transfer your personal data to a third party or service provider outside the European Economic Area (EEA), we ensure that appropriate safeguards, such as Standard Contractual Clauses, are in place to protect your data in accordance with GDPR requirements.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated date. We encourage you to review this policy periodically to stay informed about how we protect your data.
13. Contact Us
If you have any questions or concerns regarding this Privacy Policy or how we handle your personal data, please contact us at:
Niavaran AB
Mörbylund 13b, 18230 Danderyd, Stockholm, Sweden
Email: info@niavaran.se
By using our website, you acknowledge that you have read and understood this Privacy Policy and consent to our collection, use, and sharing of your data as described.