top of page

Privacy, Cookies, and GDPR Policy

Effective Date: {DATE}

1. Introduction

Welcome to Kumerica African Cuisine & Takeaway Joint. Your privacy and data protection are of utmost importance to us. This Privacy, Cookies, and GDPR Policy explains how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR), the Data Protection Act 2018, and other applicable UK laws.

By accessing or using our website, placing an order, or using our services, you agree to this policy. If you have any questions or concerns, please contact us at kumericaafricanrestaurant@gmail.com.

 

2. Scope of the Policy

This policy applies to:

  • All personal data collected via our Website, mobile applications, and services.

  • Information provided during communications (e.g., email, phone, or support requests).

  • Data obtained through third-party integrations, partners, or cookies and tracking technologies.

 

3. Data We Collect

We may collect the following categories of personal data:

3.1 Personal Identification Information

  • Name, address, email address, phone number, and other contact details.

3.2 Account and Transaction Data

  • Username, password, purchase history, subscription details, and payment preferences.

3.3 Payment Information

  • Credit/debit card details, bank account information, and payment platform identifiers (e.g., PayPal).

3.4 Technical and Usage Data

  • IP address, browser type, device information, operating system, and usage statistics.

3.5 Marketing and Communication Preferences

  • Data about your preferences for receiving marketing materials and records of communications.

3.6 Cookies and Tracking Data

  • Information collected via cookies, web beacons, and similar technologies. See Section 8 for details.

 

4. How We Use Your Data

We process your data for the following purposes:

4.1 Providing Services

  • To process orders, manage collections, and deliver products or services.

  • To enable account registration and provide customer support.

4.2 Improving Our Services

  • To analyze user behavior, monitor website performance, and enhance functionality.

  • To ensure the security and integrity of our systems.

4.3 Marketing and Communication

  • To send newsletters, promotions, and updates (with your explicit consent).

  • To personalize your user experience and recommend products or services.

4.4 Legal Compliance and Fraud Prevention

  • To comply with applicable laws, tax regulations, and court orders.

  • To detect, investigate, and prevent fraud, unauthorized activities, or violations of terms.

 

5. Legal Basis for Processing

Under GDPR, we process your personal data based on:

5.1 Consent

  • When you explicitly agree (e.g., for marketing communications).

5.2 Contractual Necessity

  • To fulfill a contract with you (e.g., order fulfillment).

5.3 Legal Obligations

  • To meet legal or regulatory requirements.

5.4 Legitimate Interests

  • For fraud prevention, service improvement, and customer support.

 

6. Data Sharing

We only share your personal data when necessary and in compliance with the law:

6.1 Service Providers

  • With trusted partners such as payment processors, delivery companies, and IT support services.

6.2 Legal and Regulatory Bodies

  • When required by law, to protect legal rights, or in response to lawful requests.

6.3 Marketing and Analytics Partners

  • With analytics providers (e.g., Google Analytics) or advertisers, ensuring data is anonymized where possible.

All third-party providers are contractually obligated to handle your data securely and in accordance with UK data protection laws.

 

7. Your Rights Under GDPR

As a UK-based user, you have the following rights under GDPR:

7.1 Access

  • Request a copy of the personal data we hold about you.

7.2 Rectification

  • Request corrections to inaccurate or incomplete data.

7.3 Erasure

  • Request deletion of your personal data, subject to legal and contractual obligations.

7.4 Restriction of Processing

  • Request that we limit the use of your data in specific circumstances.

7.5 Data Portability

  • Request your data in a structured, machine-readable format or transfer it to another data controller.

7.6 Objection

  • Object to processing based on legitimate interests or for marketing purposes.

7.7 Automated Decision-Making

  • Request human intervention if decisions significantly affecting you are made automatically.

To exercise any of these rights, contact us at kumericaafricanrestaurant@gmail.com. We will respond within 30 days, and you may be asked to verify your identity.

 

8. Cookies and Tracking Technologies

8.1 What Are Cookies?
Cookies are small text files stored on your device to enhance your user experience. They help us:

  • Remember your preferences.

  • Analyze website performance.

  • Deliver targeted advertisements.

8.2 Types of Cookies We Use

  • Essential Cookies: Necessary for basic website functionality (e.g., login sessions).

  • Performance Cookies: Measure website performance and user interactions.

  • Functionality Cookies: Save user preferences, such as language or location settings.

  • Advertising Cookies: Track browsing habits to deliver relevant ads.

8.3 Managing Cookies
You can manage or disable cookies via browser settings:

  • Chrome: Go to Settings > Privacy and Security > Cookies and other site data.

  • Firefox: Navigate to Options > Privacy & Security > Cookies and Site Data.

  • Safari: Open Preferences > Privacy > Manage Website Data.

  • Edge: Go to Settings > Cookies and Site Permissions.

You can also manage cookies via our Cookie Settings page: {LINK}.

8.4 Consent Withdrawal
You can withdraw consent to non-essential cookies at any time. Note that disabling certain cookies may affect website functionality.

 

9. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy:

  • Order and Transaction Data: Retained for 7 years for tax compliance.

  • Marketing Data: Retained until you withdraw consent.

  • Account Data: Retained until account deletion or inactivity for 3 years.

 

10. Data Security

We implement strong technical and organizational measures to protect your data, including:

  • Encryption (e.g., SSL/TLS protocols).

  • Secure storage with restricted access.

  • Regular audits and testing of our security infrastructure.

If a data breach occurs, we will notify affected users and the Information Commissioner’s Office (ICO) within the required timeframe.

 

11. International Data Transfers

When transferring data outside the UK or EEA, we ensure appropriate safeguards, such as:

  • Standard Contractual Clauses (SCCs).

  • Binding Corporate Rules (BCRs).

  • Certification under approved frameworks (e.g., Privacy Shield for US-based services).

 

12. Filing Complaints

If you believe we have violated your data protection rights, you can file a complaint with:

Information Commissioner’s Office (ICO):

  • Website: www.ico.org.uk

  • Phone: +44 303 123 1113

  • Address: Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF, UK.

 

13. Updates to This Policy

We may update this policy periodically to reflect changes in legal requirements or our practices. Updates will be posted on our website, and significant changes will be communicated via email or on-site notifications.

 

14. Contact Us

If you have questions about this policy or how we handle your data, please contact us at:

Address: 90 Queensway, Bletchley, Milton Keynes, MK2 2RU, UK

bottom of page