Privacy Policy

Introduction

gamelghf B.V. ("we," "our," or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website gamelghf.top, use our services, or interact with us in relation to our pop-up restaurant experiences.

Data Controller

gamelghf B.V. is the data controller for the purposes of the General Data Protection Regulation (GDPR) and applicable data protection laws. Our registered office is located at Schoolstraat 188, 3056 RR Rotterdam, South Holland, Netherlands. Company registration number: B63202536.

Data Collection

The data we collect includes personal information such as your name, email address, phone number, dietary requirements, event preferences, and any other information you provide when booking our services, contacting us, or using our website. We may also collect technical information about your device and how you interact with our website through cookies and similar technologies.

Information You Provide Directly

• Personal details (name, email, phone number, address)
• Booking and reservation information
• Dietary requirements and preferences
• Payment information (processed securely by third-party providers)
• Communications with our team
• Feedback and reviews

Information Collected Automatically

• IP address and location data
• Browser type and version
• Device information
• Website usage patterns
• Cookies and tracking technologies

How We Use Your Information

We explain how we use your information to provide our pop-up dining services, improve our offerings, and communicate with you. The use of your data is based on various legal grounds under GDPR, including contract performance, legitimate interests, and your consent where required.

Primary Uses

• Processing and managing your bookings and reservations
• Providing customer support and responding to enquiries
• Customising dining experiences based on your preferences
• Processing payments and managing billing
• Sending booking confirmations and event updates
• Improving our services and website functionality

Legal Basis for Processing

• Contract Performance: Processing necessary to fulfill our service agreements
• Legitimate Interests: Improving services, security, and business operations
• Consent: Marketing communications and optional services
• Legal Obligation: Compliance with applicable laws and regulations

Data Sharing and Disclosure

We may share your information with trusted third-party service providers who assist us in operating our business, such as payment processors, venue partners, and catering suppliers. All third parties are required to maintain the confidentiality and security of your information.

Third-Party Categories

• Payment processing companies
• Venue and catering partners
• Technology service providers
• Professional advisors (legal, accounting)
• Regulatory authorities when required by law

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy. Booking information is typically retained for 7 years for accounting and legal purposes. Marketing data is kept until you withdraw consent or for a maximum of 3 years of inactivity. Website analytics data is anonymised after 26 months.

Your Rights Under GDPR

As a data subject under GDPR, you have several rights regarding your personal data. These rights are fundamental to data protection and we are committed to facilitating their exercise.

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to processing based on legitimate interests
• Rights Related to Automated Decision Making: Protection from automated decisions

Cookies and Tracking

Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyse website usage. For detailed information about our cookie practices, please refer to our Cookie Policy.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption, secure servers, access controls, and regular security assessments.

International Data Transfers

Your data is primarily processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such information, we will take steps to delete it promptly.

Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please contact us using the information below:

Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the relevant supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens (Dutch Data Protection Authority).

This Privacy Policy is governed by Dutch law and the General Data Protection Regulation (GDPR). By using our services, you acknowledge that you have read and understood this policy.