Privacy Policy

1. Who We Are

Urban Plate B.V. is a casual dining restaurant located in Rotterdam, Netherlands. We are committed to protecting your privacy and handling your personal data in accordance with the General Data Protection Regulation (GDPR) and Dutch privacy laws.

2. Information We Collect

We collect and process the following types of personal information:

2.1 Information You Provide to Us

• Reservation Information: Name, phone number, email address, party size, date and time preferences, special requests
• Contact Form Data: Name, email address, phone number, message content, inquiry type
• Newsletter Subscriptions: Email address, name (optional), preferences
• Feedback and Reviews: Name, email, comments, ratings

2.2 Information Automatically Collected

• Website Usage Data: IP address, browser type, device information, pages visited, time spent on site
• Cookies and Tracking: As described in our Cookie Policy
• Security Footage: CCTV recordings for security purposes (restaurant premises only)

3. How We Use Your Information

We use your personal information for the following purposes:

• Service Provision: Processing reservations, managing bookings, providing dining services
• Communication: Responding to inquiries, sending booking confirmations, providing customer support
• Marketing: Sending newsletters, promotional offers, and updates (with your consent)
• Website Improvement: Analysing website usage to improve user experience and functionality
• Legal Compliance: Meeting regulatory requirements, handling complaints, maintaining business records
• Security: Protecting our premises, staff, and customers through CCTV monitoring

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Contract Performance: Processing necessary to provide our restaurant services and fulfill reservations
• Legitimate Interest: Website analytics, security monitoring, business communications
• Consent: Marketing communications, non-essential cookies, newsletter subscriptions
• Legal Obligation: Compliance with tax, health, and safety regulations

5. Information Sharing and Disclosure

We do not sell your personal information. We may share your information with:

• Service Providers: Third-party vendors who assist with website hosting, payment processing, email services
• Legal Authorities: When required by law, court order, or to protect our legal rights
• Business Transfers: In the event of a merger, acquisition, or sale of business assets

6. Data Retention

We retain your personal information for the following periods:

• Reservation Data: 2 years from the date of service for business analysis and customer service
• Contact Form Inquiries: 3 years or until resolved, whichever is longer
• Marketing Communications: Until you unsubscribe or withdraw consent
• Website Analytics: 26 months (Google Analytics default)
• CCTV Footage: 30 days unless required for security investigations
• Financial Records: 7 years as required by Dutch tax law

7. Your Rights Under GDPR

As an individual in the EU, you have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data (subject to legal obligations)
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests or for marketing purposes
• Right to Withdraw Consent: Withdraw consent for processing where consent is the legal basis

To exercise any of these rights, please contact us at privacy@melenalvqm.life. We will respond to your request within 30 days.

8. International Data Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption, secure servers, access controls, and regular security assessments.

10. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies. For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

11. Children's Privacy

Our services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. For significant changes, we may provide additional notice through email or prominent website notices.

13. Complaints and Supervisory Authority

If you have concerns about how we handle your personal data, please contact us first at privacy@melenalvqm.life. You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.

14. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us: