Privacy Policy

Introduction

digitalisera Ltd ("we", "our", or "us") is committed to protecting your privacy and personal data. This privacy policy explains how we collect, use, and protect your information when you visit our website or use our restaurant technology services. We are the data controller for the personal data we collect and process.

Data We Collect

The data we collect includes personal information you provide directly to us and information collected automatically through your use of our website and services:

• Contact Information: Name, email address, phone number, and company details when you contact us or request our services
• Communication Data: Records of correspondence, enquiries, and support requests
• Technical Data: IP address, browser type, device information, and website usage patterns
• Service Data: Information about your restaurant technology requirements and project specifications
• Marketing Data: Your preferences for receiving communications from us

How We Use Your Information

We use of your data is based on legitimate business interests and your consent where required. Specifically, we use your information to:

• Provide restaurant technology consultation and implementation services
• Respond to your enquiries and support requests
• Send you information about our services that may be of interest
• Improve our website functionality and user experience
• Comply with legal obligations and protect our business interests
• Analyse website usage to enhance our services and content

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about the cookies we use, please see our Cookie Policy.

Data Sharing and Third Parties

We do not sell your personal data to third parties. We may share your information with:

• Service providers who assist us in delivering our services (under strict confidentiality agreements)
• Professional advisers including lawyers, accountants, and consultants
• Regulatory authorities when required by law
• Analytics and advertising platforms (Google Analytics, Google Ads) in anonymised form

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption, secure servers, access controls, and regular security assessments. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

Your Rights

Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data in certain circumstances
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Request transfer of your data to another service provider
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: Withdraw consent for processing where applicable

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, and resolve disputes. Contact information is typically retained for seven years after our last interaction, whilst technical data may be retained for shorter periods. Marketing data is retained until you opt out of communications.

International Transfers

As we operate within the European Union, your data is primarily processed within the EU. If we need to transfer data outside the EU, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.

Children's Privacy

Our services are not directed to children under 16 years of age, and we do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child, we will take steps to delete such information promptly.

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by posting the updated policy on our website and updating the "last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions about this privacy policy, wish to exercise your rights, or have concerns about how we handle your personal data, please contact us:

You also have the right to lodge a complaint with the Cyprus Data Protection Commissioner if you believe we have not handled your personal data in accordance with applicable law.

Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR: legitimate business interests for providing our services and improving our offerings, contractual necessity for fulfilling service agreements, legal compliance where required by law, and your explicit consent for marketing communications and certain cookies. You may withdraw consent at any time without affecting the lawfulness of processing based on consent before withdrawal.