PRIVACY POLICY
Last Updated 7th October 2021
Your information is your information and we understand that, which is why we are committed to respecting the privacy of anyone who visits our restaurants (our “Services”) or our website (the “Site”).
Just to let you know the Site is not intended for children, specifically anyone under the age of 16, so if you are under this age please do not use our Site.
This privacy policy (“Privacy Policy”) explains our approach to any personal information we might collect from you (or where a third party has collected it on our behalf) because we want to ensure that you understand this. It also explains what our purpose is when we process this information and your rights surrounding this.
Who are we and what do we do?
The Site and our Services are operated by Coco di Mama Limited trading as Coco di Mama Ltd (“we”, “us” or “our”).
How to contact us?
If you have any questions about this Privacy Policy or wish to exercise your rights set out in this Privacy Policy, please contact our friendly Data Privacy Manager by:
- sending an e-mail to privacy@cocodimama.co.uk; or
- writing to us at Coco di Mama Limited, 3rd Floor Capital House, 25 Chapel Street, London NW1 5DH.
What personal information do we collect and how do we use it?
*Update 11th December 2020 – Requirements for information collection relating to the Governments Track & Trace system. Along with all businesses in the hospitality industry, we are required to collect the contact details of all our diners for the purposes of public health relating to the current health emergency. Where requested by the appropriate authorities, we will pass on customer’s name and contact telephone number for the purposes of identifying other people at risk. We will keep details collected for this purpose for a period of 2 months. You can contact our Data Privacy manager at privacy@cocodimama.co.uk.
We collect and use your personal information in a variety of ways, for example, to provide you with the Services that you have requested from us such as making a table booking or to send you marketing.
We have set out below the ways in which we collect your personal information and the reasons why we use it.
Marketing
We carry out the following marketing activities using your personal information:
Any other purposes for which we wish to use your personal information that are not listed above, or any other changes we propose to make to the existing purposes will be notified to you using your contact details.
How do we share your personal information?
We do not sell any of your personal information to any third parties. Your privacy is important to us. However, we will share your personal information with a variety of companies, where it is necessary to do so, in order to enable us to provide the services to you as set out in this Privacy Policy.
We may share your personal information with the following types of companies:
Reason | Categories of Companies |
---|---|
Fulfilment of services (e.g. to enable you to book a restaurant table, verify any card payments, deliver products, provide you with WiFi in our restaurants, send to you any purchased gift cards or provide the Site). |
Providers of booking software tools, credit card companies and other payment providers, delivery and courier companies, WiFi providers, gift card providers and website developers such as Design My Night, Stripe, Wireless Social, Eagleeye, Savvy, Hotjar, and Propeller.
|
Customer services (e.g. if you send us a query or make a complaint or if we ask for your feedback on our products or services). |
Survey companies, who assist us with administering any surveys such as Yumpingo.
|
Customer insight and analysis (e.g. to analyse your interactions with our Site, email communications to you and/or with our products and services in our restaurants). |
Third party data analytics companies such as Loop11. Some of our third party providers are located in the USA and their use of your personal information is governed by the EU-U.S. Privacy Shield.
|
Marketing (e.g. to send you email marketing or serve you with online advertisements). |
Marketing agencies, advertising partners, email marketing providers and any other providers who help us with our marketing such as Acteol. Your encrypted email address is also shared by us or our third party service providers with Facebook, Instagram and Google under the terms of their Facebook Customer Audiences / Facebook Lookalike Audiences and Google Customer Match / Google Similar Audiences services respectively. Some of our third party providers are located in the USA and their use of your personal information is governed by the EU-U.S. Privacy Shield.
|
Competitions and games (e.g. running prize draws or competitions for you to enter). |
Competition prize draw providers and online game providers such as 3Radical and ViralSweep
|
Refer a friend (e.g. where you can spread our offers). |
Refer a friend scheme providers such as 3Radical
|
Business administration and legal compliance (e.g. the boring, but important stuff such as complying with any legal obligations we may have). |
Professional advisers such as lawyers, accountants and government or regulatory authorities.
|
Recruitment (e.g. to hire great people to join our team). |
External recruiters such as Fourth.
|
International transfers
Where necessary in order to deliver our services, we will transfer personal information to countries outside the EEA. When doing so, we will comply with our legal and regulatory obligations in relation to the personal information including having a lawful basis for transferring personal information and putting appropriate safeguards in place to ensure an adequate level of protection for the personal information.
How do we obtain your consent?
Where our use of your personal information requires your consent, you can provide such consent:
- at the time we collect your personal information following the instructions provided; or
- by informing us by e-mail, post or phone using the contact details set out in this Privacy Policy.
Our use of cookies and similar technologies
Our Site uses certain cookies, pixels, beacons, log files and other technologies of which you should be aware. Please see our Cookie Policy to find out more about the cookies we use and how to manage and delete cookies.
Third party links and services
Our Site contains links to third party websites and services. Please remember that when you use a link to go from our Site to another website or you request a service from a third party, this Privacy Policy no longer applies.
How long do we keep your personal information for?
Regarding personal information we have processed in connection with the supply of our products and services to any customer, we will retain personal information relevant to that supply of products or services for six years from the date of supply and in compliance with our obligations under the EU General Data Protection Regulation (or similar legislation around the world). We may then destroy such files without further notice or liability.
Regarding any other personal information we have processed, we will retain relevant personal information for a period of three years from the date of our last interaction with you.
If you have opted out of receiving marketing communications from us, we will need to retain certain personal information indefinitely so we do not send you marketing communications again.
If your information is only useful for a short period e.g. for specific marketing campaigns we may delete it at the end of that period.
Confidentiality and security of your personal information
We are committed to keeping the personal information you provide to us secure and we will take reasonable precautions to protect your personal information from loss, misuse or alteration.
How to access your information and your other rights?
You have the following rights in relation to the personal information we hold about you:
Changes to this privacy policy
We may make changes to this Privacy Policy from time to time.